Darcy Parker wrote:
Good day Charles, Thank-you for getting back to me so quickly - I checked the info you provided with the results below. I also double checked configuration as per your website and I am sure I have everything corect, however, I am fairly new to all this - Any addtional pointers?
It looks like weblet is running under the sh-httpd user, which is group #4. Look in /etc/group to see if group #4 is the 'wheel' group...if not, that's your problem.
One other debug technique is to open a shell as the user in question (ie: as root run "sh - sh-httpd"), and try running the cgi script and/or reading the log files and see what happens. You'll frequently get error messages that are otherwise lost...
/etc/inetd.conf ssh stream tcp nowait root /usr/sbin/tcpd /usr/sbin/sshd -i www stream tcp nowait sh-httpd /usr/sbin/tcpd /usr/sbin/sh-httpd stat stream tcp nowait root /usr/sbin/tcpd /usr/sbin/lrpStat
ls -l /var/log -rw-r--r-- 1 root root 2162 Jun 5 22:31 auth.log -rw-r----- 1 root wheel 5044 Jun 5 22:30 cron.log -rw-r----- 1 root wheel 2295 Jun 5 06:42 cron.log.0 -rw-r----- 1 root wheel 875 Jun 5 14:36 daemon.log -rw-r----- 1 root wheel 1283 Jun 5 00:25 daemon.log.0 -rw-r----- 1 root wheel 98 Jun 5 15:14 debug -rw-r----- 1 root wheel 1275 Jun 5 00:15 debug.0 -rw-r----- 1 root wheel 12040 Jun 5 21:48 messages -rw-r----- 1 root wheel 6024 Jun 5 06:42 messages.0 -rw-r----- 1 root wheel 0 Jun 5 06:42 ppp.log -rw-r----- 1 root wheel 0 Jun 5 00:14 ppp.log.0 -rw-r----- 1 root wheel 11530 Jun 5 22:31 shorewall.log -rw-r----- 1 root wheel 6905 Jun 5 06:42 shorewall.log.0 -rw-r----- 1 root wheel 0 Jun 5 06:42 syslog -rw-r----- 1 root wheel 2617 Jun 5 00:14 syslog.0 -rw-r--r-- 1 root root 313 Jun 5 06:42 ulogd.log -rw-r--r-- 1 root root 3072 Jun 5 22:31 wtmp
/etc/passwd root:x:0:0:root:/root:/bin/sh daemon:x:1:1:daemon:/usr/sbin:/bin/sh bin:x:2:2:bin:/bin:/bin/sh sys:x:3:3:sys:/dev:/bin/sh sync:x:4:100:sync:/bin:/bin/sync lp:x:7:7:lp:/var/spool/lpd:/bin/sh mail:x:8:8:mail:/var/spool/mail:/bin/sh squid:x:23:23::/var/spool/squid:/bin/false sh-httpd:x:50:4:shell-script webserver:/var/sh-www:/bin/sh sshd:x:51:65534::/var/run/sshd:/bin/false alias:x:70:65534:qmail alias:/var/qmail/alias:/bin/sh qmaild:x:71:65534:qmail daemon:/var/qmail:/bin/sh qmails:x:72:70:qmail send:/var/qmail:/bin/sh qmailr:x:73:70:qmail remote:/var/qmail:/bin/sh qmailq:x:74:70:qmail queue:/var/qmail:/bin/sh qmaill:x:75:65534:qmail log:/var/qmail:/bin/sh qmailp:x:76:65534:qmail pw:/var/qmail:/bin/sh vpopmail:x:78:32:LRP vpopmail:/home/vpopmail:/bin/sh lrp:x:100:100:LRP Default User:/home/lrp:/bin/sh lrpqmail:x:500:500:LRP-Qmail:/home/lrpqmail:/bin/sh dnslog:x:1000:100::: dnscache:x:1001:100::: tinydns:x:1002:100::: walldns:x:1003:100::: axfrdns:x:1004:100::: nobody:x:65534:65534:nobody:/tmp:/bin/sh
/etc/shadow root:$1$$Gdahq/t4hk1r5NEevwE.c/:10091:0:99999:7::: daemon:*:10091:0:99999:7::: bin:*:10091:0:99999:7::: sys:*:10091:0:99999:7::: sync:*:10091:0:99999:7::: lp:*:10091:0:99999:7::: mail:*:10091:0:99999:7::: squid:*:10091:0:99999:7::: sh-httpd:*:10091:0:99999:7::: sshd:*:10091:0:99999:7::: alias:*:10091:0:99999:7::: qmaild:*:10091:0:99999:7::: qmails:*:10091:0:99999:7::: qmailr:*:10091:0:99999:7::: qmailq:*:10091:0:99999:7::: qmaill:*:10091:0:99999:7::: qmailp:*:10091:0:99999:7::: vpopmail:*:10091:0:99999:7::: lrp:*:10091:0:99999:7::: lrpqmail:*:10091:0:99999:7::: dnslog:*:10091:0:99999:7::: dnscache:*:10091:0:99999:7::: tinydns:*:10091:0:99999:7::: walldns:*:10091:0:99999:7::: axfrdns:*:10091:0:99999:7::: nobody:*:10091:0:99999:7:::
/etc/hosts.allow
ALL: 10.10.52.0/255.255.255.0 ALL: 10.10.53.0/255.255.255.0 sh-httpd: 139.142.43.131/255.255.255.224 sh-httpd: 139.142.43.176/255.255.255.224 sh-httpd: 142.167.207.162/255.255.255.0
/etc/hosts.deny ALL: PARANOID ALL: ALL
-----Original Message----- From: Charles Steinkuehler [mailto:[EMAIL PROTECTED] Sent: Saturday, June 05, 2004 11:00 AM To: Darcy Parker Cc: [EMAIL PROTECTED] Subject: Re: weblet
Darcy Parker wrote:
onMessage: 1 From: "Darcy Parker" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Date: Thu, 3 Jun 2004 01:41:33 -0600 Subject: [leaf-user] weblet problem on Bering uClibc 2.0 Good day Charles,
Please forgive me for contacting you off list, but I posted this question on this list on got no other response, perhaps you could shed some light2.0.the problem.
I seem to be having a weblet problem on my leaf bering uClibC verThe web server runs and serves up the pages but I think it can't find the correct files or information is not being passed correctly. I created a CRON-Daily job that emails the shorewall logs to me dailiy and every day I get the email showing all the logs so I know they are being created.
However, when trying to look at the shorewall logs (or Pretty shorewall logs) using weblet I get the following where the logs should be : File not readable: shorewall.log .I checked all Logs and using weblet and find the following
Shorewall log - Not working Messages - not working syslog - not working auth log - OK debug log - not working daemon log - not working cron log - not working ppp log - not working pslave log - Not used user log - not used weblet access log - OK
current connections - not working Network setup - OK Firewall rules - OK Systems Details OK (I think)
Any Ideas on how I can fix this?
It's probably a permissions problem.
The user weblet is running as likely does not have permissions to read the log files that aren't working properly. I'm not sure how the Bering uClibc users/groups are setup, but you need to make sure the weblet user is a member of a group with read access to the log files, and make sure the log files are being created with group read access. On my one Bering (non-uClibc) system, it looks like you'd need to make the sh-httpd user a memeber of the wheel group (which is setup by default).
Find the user weblet is running as by looking at /etc/inetd.conf.
Find the group with read access to the log files with "ls -l /var/log".
-- Charles Steinkuehler [EMAIL PROTECTED]
-- Charles Steinkuehler [EMAIL PROTECTED]
------------------------------------------------------- This SF.Net email is sponsored by the new InstallShield X.
From Windows to Linux, servers to mobile, InstallShield X is the one
installation-authoring solution that does it all. Learn more and evaluate today! http://www.installshield.com/Dev2Dev/0504 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html