Re: Correct dev config for apache chroot? OpenBSD 4.0
Hi the /dev/crypto requirement seems to come for free when you build apache on openBSD. Reading up on it it should fall over gracefully to software when you don't have hardware support. I don't think this is the problem anymore because I can still run chrooted apache in non-daemon mode. Very frustrating :-( Conrad On 11/27/06, Joachim Schipper [EMAIL PROTECTED] wrote: On Mon, Nov 27, 2006 at 07:06:51PM +, Conrad Winchester wrote: On 27 Nov 2006, at 18:22, Tom Cosgrove wrote: Conrad Winchester 27-Nov-06 08:23 Secondly, an apology: I am not following the standard way of doing things, but to be honest thats the way I am. I am tryng to chroot apache 2.2 (yes I like apache 2 and have loads of experience with it, I have very little apache 1.3 experience). I have got it working in debug mode lovely, but when I try to run it normally it fails to daemonize itself and throws the following error [Mon Nov 27 08:09:40 2006] [crit] (6)Device not configured: apr_proc_detach failed Pre-configuration failed I am pretty sure this is due to incorrect /dev nodes in my chrooted file system. Try using ktrace(1) and kdump(1) to see what it's try to do. thanks for that. I have identified a problem with /dev/crypto. I make it with #mknod /server/web/dev/crypto c 70 0 #chmod 666 /server/web/dev/crypto but I get the following output from kdump 2603 httpdNAMI /dev/crypto 2603 httpdRET open -1 errno 6 Device not configured What is the proper way to create a /dev/crypto node? Pretty much this, but /dev/crypto is only for hardware-accelerated crypto. Are you really sure you should use it? Also, check for the nodev mount flag. Finally, doing things differently isn't always a good idea, but I'm sure you are aware of this. Joachim
Correct dev config for apache chroot? OpenBSD 4.0
First of all an apology: If this is a noob question. These days I have no ideas what is and isn't noobish. Secondly, an apology: I am not following the standard way of doing things, but to be honest thats the way I am. So to business. I am tryng to chroot apache 2.2 (yes I like apache 2 and have loads of experience with it, I have very little apache 1.3 experience). I have got it working in debug mode by chroot /server/web /usr/local/apache2/bin/httpd -x lovely, but when I try to run it normally chroot /server/web /usr/local/apache2/bin/httpd it fails to daemonize itself and throws the following error [Mon Nov 27 08:09:40 2006] [crit] (6)Device not configured: apr_proc_detach failed Pre-configuration failed I am pretty sure this is due to incorrect /dev nodes in my chrooted file system. At the moment I have srw-rw-rw- 1 root wheel 0 Nov 27 07:50 log crw-rw-rw- 1 root sys 2, 2 Nov 27 06:41 null crw-rw-rw- 1 root wheel 45, 0 Nov 27 08:04 random crw-rw-rw- 1 root wheel 45, 2 Nov 27 08:05 urandom and the following entry in /etc/rc.conf syslogd_flags=-a /server/web/dev/log I have looked around but can't find what the correct config for these devs should be ( so I mknod'ed with the same numbers as in /dev). Can anybody offer any help or advice? Thanks Conrad Winchester P.S. I still love OpenBSD and the man pages really are helpful - amazing
Re: Why Sendmail?
Thanks, I get it now. Have installed my favourite MTA (it was so much easier on openBSD than other systems I have tried (gentoo/redhat/netBSD) which is nice). I will set up all important root/postmaster mail accounts etc to make sure I get the system emails (they are a bonus too). BTW the openBSD docs are brilliant. Conrad On 23 Nov 2006, at 13:45, Cristiano Deana wrote: 2006/11/23, Conrad Winchester [EMAIL PROTECTED]: I do have one question though and I apologize if people always ask this: At the end of the install I asked whether I want to run sshd and ntpd by default - very nice BUT why am I not given the option to turn off Sendmail at this point? I NEVER use sendmail and for an OS that prides itself on being as minimal as possible I would have thought giving you the option to not run sendmail would also be there right from the start. Any system needs a MTA running, at least to manage email from nightly/weekly/monthly check. So, default MUST be mta running (you can choose to stop it). Why sendmail? Why not? p.s. i usually use another MTA -- Cris, member of G.U.F.I Italian FreeBSD User Group http://www.gufi.org/
Why Sendmail?
First of all hi! My name is Conrad and I am new to the world of OpenBSD, but not unix in general. I have just done my first install of a server using OpenBSD and am extremely impressed. I do have one question though and I apologize if people always ask this: At the end of the install I asked whether I want to run sshd and ntpd by default - very nice BUT why am I not given the option to turn off Sendmail at this point? I NEVER use sendmail and for an OS that prides itself on being as minimal as possible I would have thought giving you the option to not run sendmail would also be there right from the start. Comments please Conrad Winchester
