On Wed, 11 Aug 2010 08:43:12 -0700
Bradley Giesbrecht <bradley.giesbre...@gmail.com> wrote:
>
> On Aug 10, 2010, at 1:06 PM, Stevan Bajić wrote:
>
> > On Tue, 10 Aug 2010 10:45:05 -0700
> > Bradley Giesbrecht <bradley.giesbre...@gmail.com> wrote:
> >
> > [...]
> >>>> I guess to be more helpful I should start using the Web-UI. I don't
> >>>> have apache2-suexec installed. Guess I'll get that going so I can
> >>>> be a
> >>>> better dspam citizen.
> >>>>
> >>> I don't have apache2-suexec installed too nor do I need it for
> >>> running my
> >>> DSPAM Web-UI. :)
> >>
> >> Oh, I read somewhere that it was required.
> >>
> >> /opt/local/var/dspam/webui/cgi-bin/
> >>
> >> What would a dspam.pixilla.conf vhost file look like?
> >>
> > For what Web server? Apache?
> >
> > You really don't need suexec. I mean: there are situations where you
> > can only do the Web-UI with suexec but you could easily do it
> > without (if you allow your web server to read DSPAM_HOME, etc).
>
> apache2 @2.2.15
>
> ls -lad /opt/local/var/dspam
> drwxrwx--- 11 _vmail _vmail 374 Aug 11 08:34 /opt/local/var/dspam
>
> ls -la /opt/local/var/dspam
> total 16992
> drwxrwx--- 11 _vmail _vmail 374 Aug 11 08:34 .
> drwxr-xr-x 17 root admin 578 May 16 12:44 ..
> drwxrwx--- 4 _vmail _vmail 136 Aug 4 12:22 data
>
This is your data directory inside DSPAM_HOME. Right? And directories and files
below that directory are owned by _vmail:_vmail and having 0770. Right?
> lrwxr-xr-x 1 root _vmail 27 Aug 11 08:34 default.prefs ->
> webui/cgi-bin/default.prefs
> -rw-r--r-- 1 _vmail _vmail 25 May 17 07:48 group
> drwxr-xr-x 9 root _postfix 306 Jul 22 10:48 mysql
> drwxr-xr-x 6 root _postfix 204 Jul 22 10:48 pgsql
> drwxr-xr-x 5 root _postfix 170 Jul 22 10:48 samples
> drwxr-xr-x 4 root _postfix 136 Jul 22 10:48 sqlite
> -rw-rw---- 1 _vmail _vmail 8688394 Aug 11 08:24 system.log
> drwxrwxrwx 4 root _postfix 136 Jul 22 10:48 webui
>
/opt/local/var/dspam/webui/ is the place where you have installed the DSPAM
Web-UI. Right?
> So should I chown or chmod to allow _www:_www to read /opt/local/var/
> dspam?
>
NO! That would break things within DSPAM. Easier would be to add the apache
user to the group _vmail.
> chmod o+r
>
You would need "w" too since the CGI script will need to write there. So better
add your apache user (I guess it's "www") to the group "_vmail" if you already
are thinking in altering rights but don't set others/world to rw. Leave it the
way it is.
> It's possible these permissions are not correct already. _vmail must
> be right since I didn't create them they must have been added by
> processes but root:_postfix?
>
You mean the webui directory that is owned by root:_postfix? It's not that
important. Your webserver only needs to read files there. So as long as it can
do that you are okay.
And who is the owner of the dspam binary and what permission does the binary
have?
A basic vhost for Apache would look like this (without SUEXEC):
<VirtualHost *>
DocumentRoot /opt/local/var/dspam/webui/cgi-bin/
ServerName dspam.pixilla.com
ServerAdmin webmas...@pixilla.com
<Directory "/opt/local/var/dspam/webui/cgi-bin/">
AllowOverride None
Options +ExecCGI -Indexes
AddHandler cgi-script cgi pl
DirectoryIndex dspam.cgi
Order deny,allow
# You need to provide auth. Can be anything you like.
# mod_auth_mysql, mod_auth_pgsql, mod_authz_ldap, mod_auth_basic,
mod_auth_imap, mod_auth_openid, mod_auth_nufw, mod_auth_kerb, pwauth, etc
AuthType Basic
AuthName "DSPAM Control Center"
AuthUserFile /just/a/path/htpasswd
Require valid-user
Satisfy Any
</Directory>
</VirtualHost>
> // Brad
--
Kind Regards from Switzerland,
Stevan Bajić
------------------------------------------------------------------------------
This SF.net email is sponsored by
Make an app they can't live without
Enter the BlackBerry Developer Challenge
http://p.sf.net/sfu/RIM-dev2dev
_______________________________________________
Dspam-user mailing list
Dspam-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/dspam-user
