[leaf-user] Re: weblet

Charles Steinkuehler Sat, 05 Jun 2004 18:21:49 -0700

Darcy Parker wrote:

Good day Charles,  Thank-you for getting back to me so quickly - I checked
the info you provided with the results below.  I also double checked
configuration as per your website and I am sure I have everything corect,
however, I am fairly new to all this - Any addtional pointers?

It looks like weblet is running under the sh-httpd user, which is group #4. Look in /etc/group to see if group #4 is the 'wheel' group...if not, that's your problem.

One other debug technique is to open a shell as the user in question (ie: as root run "sh - sh-httpd"), and try running the cgi script and/or reading the log files and see what happens. You'll frequently get error messages that are otherwise lost...

/etc/inetd.conf
ssh     stream  tcp     nowait  root            /usr/sbin/tcpd
/usr/sbin/sshd -i
www     stream  tcp     nowait  sh-httpd        /usr/sbin/tcpd
/usr/sbin/sh-httpd
stat    stream  tcp     nowait  root            /usr/sbin/tcpd
/usr/sbin/lrpStat

ls -l /var/log
-rw-r--r--    1 root     root         2162 Jun  5 22:31 auth.log
-rw-r-----    1 root     wheel        5044 Jun  5 22:30 cron.log
-rw-r-----    1 root     wheel        2295 Jun  5 06:42 cron.log.0
-rw-r-----    1 root     wheel         875 Jun  5 14:36 daemon.log
-rw-r-----    1 root     wheel        1283 Jun  5 00:25 daemon.log.0
-rw-r-----    1 root     wheel          98 Jun  5 15:14 debug
-rw-r-----    1 root     wheel        1275 Jun  5 00:15 debug.0
-rw-r-----    1 root     wheel       12040 Jun  5 21:48 messages
-rw-r-----    1 root     wheel        6024 Jun  5 06:42 messages.0
-rw-r-----    1 root     wheel           0 Jun  5 06:42 ppp.log
-rw-r-----    1 root     wheel           0 Jun  5 00:14 ppp.log.0
-rw-r-----    1 root     wheel       11530 Jun  5 22:31 shorewall.log
-rw-r-----    1 root     wheel        6905 Jun  5 06:42 shorewall.log.0
-rw-r-----    1 root     wheel           0 Jun  5 06:42 syslog
-rw-r-----    1 root     wheel        2617 Jun  5 00:14 syslog.0
-rw-r--r--    1 root     root          313 Jun  5 06:42 ulogd.log
-rw-r--r--    1 root     root         3072 Jun  5 22:31 wtmp

/etc/passwd
root:x:0:0:root:/root:/bin/sh
daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:100:sync:/bin:/bin/sync
lp:x:7:7:lp:/var/spool/lpd:/bin/sh
mail:x:8:8:mail:/var/spool/mail:/bin/sh
squid:x:23:23::/var/spool/squid:/bin/false
sh-httpd:x:50:4:shell-script webserver:/var/sh-www:/bin/sh
sshd:x:51:65534::/var/run/sshd:/bin/false
alias:x:70:65534:qmail alias:/var/qmail/alias:/bin/sh
qmaild:x:71:65534:qmail daemon:/var/qmail:/bin/sh
qmails:x:72:70:qmail send:/var/qmail:/bin/sh
qmailr:x:73:70:qmail remote:/var/qmail:/bin/sh
qmailq:x:74:70:qmail queue:/var/qmail:/bin/sh
qmaill:x:75:65534:qmail log:/var/qmail:/bin/sh
qmailp:x:76:65534:qmail pw:/var/qmail:/bin/sh
vpopmail:x:78:32:LRP vpopmail:/home/vpopmail:/bin/sh
lrp:x:100:100:LRP Default User:/home/lrp:/bin/sh
lrpqmail:x:500:500:LRP-Qmail:/home/lrpqmail:/bin/sh
dnslog:x:1000:100:::
dnscache:x:1001:100:::
tinydns:x:1002:100:::
walldns:x:1003:100:::
axfrdns:x:1004:100:::
nobody:x:65534:65534:nobody:/tmp:/bin/sh

/etc/shadow
root:$1$$Gdahq/t4hk1r5NEevwE.c/:10091:0:99999:7:::
daemon:*:10091:0:99999:7:::
bin:*:10091:0:99999:7:::
sys:*:10091:0:99999:7:::
sync:*:10091:0:99999:7:::
lp:*:10091:0:99999:7:::
mail:*:10091:0:99999:7:::
squid:*:10091:0:99999:7:::
sh-httpd:*:10091:0:99999:7:::
sshd:*:10091:0:99999:7:::
alias:*:10091:0:99999:7:::
qmaild:*:10091:0:99999:7:::
qmails:*:10091:0:99999:7:::
qmailr:*:10091:0:99999:7:::
qmailq:*:10091:0:99999:7:::
qmaill:*:10091:0:99999:7:::
qmailp:*:10091:0:99999:7:::
vpopmail:*:10091:0:99999:7:::
lrp:*:10091:0:99999:7:::
lrpqmail:*:10091:0:99999:7:::
dnslog:*:10091:0:99999:7:::
dnscache:*:10091:0:99999:7:::
tinydns:*:10091:0:99999:7:::
walldns:*:10091:0:99999:7:::
axfrdns:*:10091:0:99999:7:::
nobody:*:10091:0:99999:7:::

/etc/hosts.allow

ALL: 10.10.52.0/255.255.255.0
ALL: 10.10.53.0/255.255.255.0
sh-httpd: 139.142.43.131/255.255.255.224
sh-httpd: 139.142.43.176/255.255.255.224
sh-httpd: 142.167.207.162/255.255.255.0

/etc/hosts.deny
ALL: PARANOID
ALL: ALL

-----Original Message-----
From: Charles Steinkuehler [mailto:[EMAIL PROTECTED]
Sent: Saturday, June 05, 2004 11:00 AM
To: Darcy Parker
Cc: [EMAIL PROTECTED]
Subject: Re: weblet


Darcy Parker wrote:

Message: 1
From: "Darcy Parker" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Date: Thu, 3 Jun 2004 01:41:33 -0600
Subject: [leaf-user] weblet problem on Bering uClibc 2.0
Good day Charles,

        Please forgive me for contacting you off list, but I posted this question
on this list on got no other response, perhaps you could shed some light

on

the problem.
I seem to be having a weblet problem on my leaf bering uClibC ver

2.0.

The web server runs and serves up the pages but I think it can't find the
correct files or information is not being passed correctly.  I created a
CRON-Daily job that emails the shorewall logs to me dailiy and every day I
get the email showing all the logs so I know they are being created.

However, when trying to look at the shorewall logs (or Pretty shorewall
logs) using weblet I get the following where the logs should be : File not
readable: shorewall.log .I checked all Logs and using weblet and find the
following

Shorewall log - Not working
Messages - not working
syslog - not working
auth log - OK
debug log - not working
daemon log - not working
cron log - not working
ppp log - not working
pslave log - Not used
user log - not used
weblet access log - OK


current connections - not working
Network setup - OK
Firewall rules - OK
Systems Details OK (I think)

Any Ideas on how I can fix this?


It's probably a permissions problem.

The user weblet is running as likely does not have permissions to read
the log files that aren't working properly.  I'm not sure how the Bering
uClibc users/groups are setup, but you need to make sure the weblet user
is a member of a group with read access to the log files, and make sure
the log files are being created with group read access.  On my one
Bering (non-uClibc) system, it looks like you'd need to make the
sh-httpd user a memeber of the wheel group (which is setup by default).

Find the user weblet is running as by looking at /etc/inetd.conf.

Find the group with read access to the log files with "ls -l /var/log".

--
Charles Steinkuehler
[EMAIL PROTECTED]

--
Charles Steinkuehler
[EMAIL PROTECTED]

-------------------------------------------------------
This SF.Net email is sponsored by the new InstallShield X.

From Windows to Linux, servers to mobile, InstallShield X is the one

installation-authoring solution that does it all. Learn more and
evaluate today! http://www.installshield.com/Dev2Dev/0504
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

[leaf-user] Re: weblet

Reply via email to