Re: How to use vsftpd with wirtual users without LinuxPAM ?
2007/3/23, Kyrre Nygård [EMAIL PROTECTED]: At 22:08 21.03.2007, Derek Ragona wrote: For so few users, you can use regular accounts with the shell set to: /usr/bin/false -Derek At 11:47 AM 3/21/2007, Vincent Bolinard wrote: Hello, I'd like to know how can I set up virtual users without pam_userdb.so (which is not included in OpenPAM). vsftpd needs pam_userdb.so to authenticate against the db Berkeley database. What else can I use ? I don't want to use MySQL because there won't be a lot of virtual users ( 50). Thank you for your help. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support. You can use htpasswd instead: htpasswd vsftpd.db username Then back up your /etc/pam.d/ftpd (maybe ftp as well) and replace its content with: auth required /usr/local/lib/pam_pwdfile.so pwdfile /usr/local/etc/vsftpd.db account required /usr/lib/pam_permit.so I hope it works. Kyrre I followed Kyrre's advice and use pam_pwdfile and htpasswd to generate the (encrypted) password file. Thanks for your answers ! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
How to use vsftpd with wirtual users without LinuxPAM ?
Hello, I'd like to know how can I set up virtual users without pam_userdb.so (which is not included in OpenPAM). vsftpd needs pam_userdb.so to authenticate against the db Berkeley database. What else can I use ? I don't want to use MySQL because there won't be a lot of virtual users ( 50). Thank you for your help. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Sendmail ignores SmartHost directive
Hi, I'm trying to set up Sendmail to send-only. I just want Sendmail sends local mails (i.e.: daily security run output) to my SMTP server. I use : # cd /etc/mail # make to generate a `hostname`.mc file. I edit it, and add : define(`SMART_HOST', `[192.168.1.6]') (I tried without brackets, and with names) then : # make install # make restart-mta I use # date | sendmail -v postmaster but I can see in the output that Sendmail sends the mail to the local server. It seems that my SmartHost is ignored. I can ping the smarthost (whith IP and name), and telnet mail.domain.com 25 works fine. It's suggested in the Handbook to use ssmtp in this case (send-only), but I red that it was unable to send HTML mails. Is that true ? If not, I'll use it. So, can somebody tell me where I am wrong ? and what can I do to use a smarthost ? Thank you. P.S.: I'm running FreeBSD 6.2-RELEASE. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Sendmail ignores SmartHost directive
Thank you for your answer. All I had to do is to set the SMART_HOST variable and add define(`confDONT_PROBE_INTERFACES', `true'). Bye. 2007/3/20, Gerald Freymann [EMAIL PROTECTED]: On Tue, 20 Mar 2007 18:32:57 +0100 Vincent Bolinard [EMAIL PROTECTED] wrote: Hi, I'm trying to set up Sendmail to send-only. I just want Sendmail sends local mails (i.e.: daily security run output) to my SMTP server. I just simply edited my /etc/mail/sendmail.cf file directly. Not too far down is: # Smart relay host (may be null) DSyoursmtp.servername.ext Then restart sendmail and voila! ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Jailed mysqld doesn't work after a backup
Hi, Yesterday, I backed up my MySQL jail with tar jcpf (and used tar jxpvf to extract). Now, when I try to run it as I used to (jail -U mysql /jail/mysqld/ mysqld.domaine.com 192.168.1.6 /usr/local/libexec/mysqld ), it fails giving me a Permission Denied error. If I try to run it with chroot -u mysql /jail/mysqld /usr/local/libexec/mysqld , it works ! I don't understand. Does somebody have an idea ? Thank you. P.S.: I'm running FreeBSD 6.2-RELEASE and MySQL server 5.0.27. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jailed mysqld doesn't work after a backup
Hi, I've reinstalled MySQL in the jail to be sure, and it's still not working. I also forgot to tell that the previous jail ran under a 6.1 upgraded to 6.2. Now, I'm running a fresh 6.2-RELEASE. The error message is the same : jail: execv: /usr/local/libexec/mysqld: Permission denied Thank you for your help. 2007/2/15, Vincent Bolinard [EMAIL PROTECTED]: Hi, Yesterday, I backed up my MySQL jail with tar jcpf (and used tar jxpvf to extract). Now, when I try to run it as I used to (jail -U mysql /jail/mysqld/ mysqld.domaine.com 192.168.1.6 /usr/local/libexec/mysqld ), it fails giving me a Permission Denied error. If I try to run it with chroot -u mysql /jail/mysqld /usr/local/libexec/mysqld , it works ! I don't understand. Does somebody have an idea ? Thank you. P.S.: I'm running FreeBSD 6.2-RELEASE and MySQL server 5.0.27. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Jailed mysqld doesn't work after a backup
I tried to use truss inside the jail : I copied the truss binary and ran ldd to copy the libraries needed by truss. I admit that I forgot to mount a /proc filesystem in the jail (truss needs it). But truss can't be executed (so /proc isn't a problem yet), the error is the same : jail: execv: /usr/bin/truss: Permission denied Permissions are 555, owned by root:wheel. I also tried with 755. What's wrong ?? I set up another jail with Apache, and it's working Thanks. 2007/2/15, Vincent Bolinard [EMAIL PROTECTED]: Hi, I've reinstalled MySQL in the jail to be sure, and it's still not working. I also forgot to tell that the previous jail ran under a 6.1 upgraded to 6.2. Now, I'm running a fresh 6.2-RELEASE. The error message is the same : jail: execv: /usr/local/libexec/mysqld: Permission denied Thank you for your help. 2007/2/15, Vincent Bolinard [EMAIL PROTECTED]: Hi, Yesterday, I backed up my MySQL jail with tar jcpf (and used tar jxpvf to extract). Now, when I try to run it as I used to (jail -U mysql /jail/mysqld/ mysqld.domaine.com 192.168.1.6 /usr/local/libexec/mysqld ), it fails giving me a Permission Denied error. If I try to run it with chroot -u mysql /jail/mysqld /usr/local/libexec/mysqld , it works ! I don't understand. Does somebody have an idea ? Thank you. P.S.: I'm running FreeBSD 6.2-RELEASE and MySQL server 5.0.27. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem with mod_fcgid inside a jail.
Hi, I've just tried to run Apache with mod_fcgid 1.10 and 2.0, but it still does not work. Here is the error with 1.10 : [notice] suEXEC mechanism enabled (wrapper: /usr/local/sbin/suexec) [info] mod_unique_id: using ip addr 192.168.1.3 [emerg] (2)No such file or directory: mod_fcgid: Can't create global mutex Here is the error with 2.0 : [notice] suEXEC mechanism enabled (wrapper: /usr/local/sbin/suexec) [info] mod_unique_id: using ip addr 192.168.1.3 [emerg] (2)No such file or directory: mod_fcgid: Can't create share memory for size %zu byte What is the problem ? Thank you. 2007/2/2, Josh Tolbert [EMAIL PROTECTED]: On Fri, Feb 02, 2007 at 10:51:32PM +0100, Ivan Voras wrote: Vincent Bolinard wrote: [emerg] (2)No such file or directory: mod_fcgid: Can't create share memory for size 316628 byte I'm running FreeBSD 6.2-RELEASE, Apache 2.0.59 and mod_fcgid 1.09. Try running v1.10, here's what it says in changelog: 3. Use anonymous shared memeory to make OS X happy. (Thank andkjar at obtech.net for the patch.) Maybe it will help you. Update to 2.0 will be coming soon...Maybe this weekend, if I find some time. I have no idea if it'll fix the problem, but 1.x is dead either way. Thanks, Josh -- Josh Tolbert [EMAIL PROTECTED] || http://www.puresimplicity.net/~hemi/ Security is mostly a superstition. It does not exist in nature, nor do the children of men as a whole experience it. Avoiding danger is no safer in the long run than outright exposure. Life is either a daring adventure, or nothing. -- Helen Keller ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problem with mod_fcgid inside a jail.
Hi, I've added security.jail.sysvipc_allowed=1 in /etc/sysctl.conf, but it still does not work. Is that a bug or am I missing something ? Thank you. 2007/2/4, John Nielsen [EMAIL PROTECTED]: On Sunday 04 February 2007 05:38, Vincent Bolinard wrote: I've just tried to run Apache with mod_fcgid 1.10 and 2.0, but it still does not work. Here is the error with 1.10 : [notice] suEXEC mechanism enabled (wrapper: /usr/local/sbin/suexec) [info] mod_unique_id: using ip addr 192.168.1.3 [emerg] (2)No such file or directory: mod_fcgid: Can't create global mutex Here is the error with 2.0 : [notice] suEXEC mechanism enabled (wrapper: /usr/local/sbin/suexec) [info] mod_unique_id: using ip addr 192.168.1.3 [emerg] (2)No such file or directory: mod_fcgid: Can't create share memory for size %zu byte Try setting jail_sysvipc_allow=yes in /etc/rc.conf. (Or you can set the security.jail.sysvipc_allowed sysctl to one, but the jail rc scripts will change it if you use them and don't have the RC variable set.) JN 2007/2/2, Josh Tolbert [EMAIL PROTECTED]: On Fri, Feb 02, 2007 at 10:51:32PM +0100, Ivan Voras wrote: Vincent Bolinard wrote: [emerg] (2)No such file or directory: mod_fcgid: Can't create share memory for size 316628 byte I'm running FreeBSD 6.2-RELEASE, Apache 2.0.59 and mod_fcgid 1.09. Try running v1.10, here's what it says in changelog: 3. Use anonymous shared memeory to make OS X happy. (Thank andkjar at obtech.net for the patch.) Maybe it will help you. Update to 2.0 will be coming soon...Maybe this weekend, if I find some time. I have no idea if it'll fix the problem, but 1.x is dead either way. Thanks, Josh -- Josh Tolbert [EMAIL PROTECTED] || http://www.puresimplicity.net/~hemi/ Security is mostly a superstition. It does not exist in nature, nor do the children of men as a whole experience it. Avoiding danger is no safer in the long run than outright exposure. Life is either a daring adventure, or nothing. -- Helen Keller ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problem with mod_fcgid inside a jail.
Hi, I'm getting trouble if I run Apache with mod_fcgid in a jail. If I run Apache outside the jail, it works. But, here is the error message when I start Apache inside a jail : [emerg] (2)No such file or directory: mod_fcgid: Can't create share memory for size 316628 byte I tried to set security.jail.sysvipc_allowed to 1, but there's still the same error message. Here is the command I use to run jail : # jail /var/chroot/httpd httpd.domain.net 192.168.1.3 /usr/local/sbin/httpd (httpd.domain.net is not the real fqdn) I'm running FreeBSD 6.2-RELEASE, Apache 2.0.59 and mod_fcgid 1.09. I don't know if this is a bug, or if I forgot something. Can somebody help me ? Thank you. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]