Apache Authentication failure
Hallo Liste! Ich plage mich seit längerem mit folgendem Problem: Die Authentifizierung über Apache (wie auch Apache-SSL) funktioniert nicht mehr. Natürlich bin ich mir nach zig Versuchen sicher, dass ich den richtigen Usernamen mit gefordertem Passwort eingegeben habe. Dennoch lässt mich Apache nicht in den geschützten Bereich und antwortet in den Logs mit: [Thu Jan 12 18:51:00 2006] [debug] mod_auth_pam.c(343): [client 213.47.47.238] pam_auth_basic_user() - ap_get_basic_auth_pw failed [Thu Jan 12 18:51:05 2006] [error] (25)Inappropriate ioctl for device: access to /samba/smb2www.pl failed for chello2130123447238.3.sc-graz.chello.at, reason: Authentication failure [Thu Jan 12 18:51:05 2006] [debug] mod_auth_pam.c(387): [client 213.47.47.238] pam_auth_basic_user() - basic authentication failure Google hat mir nicht sehr weitergeholfen. Manche klagen über selbes Problem mit Authenthifizierung über PAM gegen /etc/passwd bzw. /etc/shadow. Aber auch ohne _die_ Lösung ;-) Kann mir hier wer weiterhelfen? Danke lg Ralph [Debian [EMAIL PROTECTED] [EMAIL PROTECTED]:/etc/apache-ssl/conf.d# apache -v Server version: Apache/1.3.33 (Debian GNU/Linux) Server built: Sep 6 2005 13:10:30 [Debian [EMAIL PROTECTED] [EMAIL PROTECTED]:/etc/apache-ssl/conf.d# apache -V Server version: Apache/1.3.33 (Debian GNU/Linux) Server built: Sep 6 2005 13:10:30 Server's Module Magic Number: 19990320:16 Server compiled with -D EAPI -D HAVE_MMAP -D HAVE_SHMGET -D USE_SHMGET_SCOREBOARD -D USE_MMAP_FILES -D HAVE_FCNTL_SERIALIZED_ACCEPT -D HAVE_SYSVSEM_SERIALIZED_ACCEPT -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D DYNAMIC_MODULE_LIMIT=64 -D HARD_SERVER_LIMIT=4096 -D HTTPD_ROOT=/usr -D SUEXEC_BIN=/usr/lib/apache/suexec -D DEFAULT_PIDLOG=/var/run/apache.pid -D DEFAULT_SCOREBOARD=/var/run/apache.scoreboard -D DEFAULT_LOCKFILE=/var/run/apache.lock -D DEFAULT_ERRORLOG=/var/log/apache/error.log -D TYPES_CONFIG_FILE=/etc/mime.types -D SERVER_CONFIG_FILE=/etc/apache/httpd.conf -D ACCESS_CONFIG_FILE=/etc/apache/access.conf -D RESOURCE_CONFIG_FILE=/etc/apache/srm.conf -- Haeufig gestellte Fragen und Antworten (FAQ): http://www.de.debian.org/debian-user-german-FAQ/ Zum AUSTRAGEN schicken Sie eine Mail an [EMAIL PROTECTED] mit dem Subject unsubscribe. Probleme? Mail an [EMAIL PROTECTED] (engl)
Re: apache authentication
Joseph A Nagy Jr wrote: Ernst-Magne Vindal wrote: Hi I'm trying to set up a site under my main site with auth, but can get it working. What I have done is: htpasswd -c /usr/local/apache/passwd/passwords username Okay chown root.nogroup /usr/local/apache/passwd/passwords I create the file as root and leave it's ownership status alone. chmod 640 /usr/local/apache/passwd/passwords I also don't chmod any differently then the default. I have also tried with the password file named .htpasswd, but the result is the same. I don't use .htaccess as it causes apache to take a performance hit (read the apache manual for more about that) and for the access file: AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/passwords Require user username Directory /www/mc-luug/cgi-bin/awstats/ AuthType Basic AuthName AW Stats AuthUserFile /etc/apache/passwords/awstats Require valid-user /Directory Works consistantly. I have almost the same config for users home dir, and thats working fine. The only difference is that I use Require valid-user insted of the config above. Can anyone pls help? Trash the pw file, create a new one, leave it alone, then just use Require valid-user If need be, keep a seperate pw file for the By invite Only and your other protected dir. I'm running debain 2.4.20 and apache 1.3.27-0.1 /ernst OK, now we are getting somewhere, thanks to Joseph In the users home dir I have a .htaccess file, I didn't do anything with that on. But for 'sites og pages' under /var/www/ I removed the .htaccess file and put the config in httpd.conf instead, and it worked like charm:) Everything under /www is owned by www-data, but if I change the rights with chmod 600, wich also was suggested, i didn't get access at all. But... If I want more sites/pages under /www to have authentication, how to do that? Can I do: Directory /var/www/na AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Directory /var/www/test AuthType Basic AuthName Test site AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Many thanks for help -- /ernst -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: apache authentication
Ernst-Magne Vindal wrote: snip OK, now we are getting somewhere, thanks to Joseph Glad I could be of help. :) In the users home dir I have a .htaccess file, I didn't do anything with that on. But for 'sites og pages' under /var/www/ I removed the .htaccess file and put the config in httpd.conf instead, and it worked like charm:) Everything under /www is owned by www-data, but if I change the rights with chmod 600, wich also was suggested, i didn't get access at all. But... If I want more sites/pages under /www to have authentication, how to do that? Can I do: Directory /var/www/na AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Directory /var/www/test AuthType Basic AuthName Test site AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory That would be the easiest way, although I wouldn't point to the htpasswd command, just the password file that you created. Many thanks for help Anytime. :) -- http://mc-luug.homelinux.org MC-LUUG Home Page http://www.hsv-hotspots.com/ Your hotspot for Wireless in HSV, AL -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[SOLVED]Re: apache authentication
Ernst-Magne Vindal wrote: Joseph A Nagy Jr wrote: Ernst-Magne Vindal wrote: Hi I'm trying to set up a site under my main site with auth, but can get it working. What I have done is: htpasswd -c /usr/local/apache/passwd/passwords username Okay chown root.nogroup /usr/local/apache/passwd/passwords I create the file as root and leave it's ownership status alone. chmod 640 /usr/local/apache/passwd/passwords I also don't chmod any differently then the default. I have also tried with the password file named .htpasswd, but the result is the same. I don't use .htaccess as it causes apache to take a performance hit (read the apache manual for more about that) and for the access file: AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/passwords Require user username Directory /www/mc-luug/cgi-bin/awstats/ AuthType Basic AuthName AW Stats AuthUserFile /etc/apache/passwords/awstats Require valid-user /Directory Works consistantly. I have almost the same config for users home dir, and thats working fine. The only difference is that I use Require valid-user insted of the config above. Can anyone pls help? Trash the pw file, create a new one, leave it alone, then just use Require valid-user If need be, keep a seperate pw file for the By invite Only and your other protected dir. I'm running debain 2.4.20 and apache 1.3.27-0.1 /ernst OK, now we are getting somewhere, thanks to Joseph In the users home dir I have a .htaccess file, I didn't do anything with that on. But for 'sites og pages' under /var/www/ I removed the .htaccess file and put the config in httpd.conf instead, and it worked like charm:) Everything under /www is owned by www-data, but if I change the rights with chmod 600, wich also was suggested, i didn't get access at all. But... If I want more sites/pages under /www to have authentication, how to do that? Can I do: Directory /var/www/na AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Directory /var/www/test AuthType Basic AuthName Test site AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Many thanks for help I the conf above, and it's working fine. Thanks for all help -- /ernst -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [SOLVED]Re: apache authentication
On Sat, 22 Mar 2003 18:07:03 +0100 Ernst-Magne Vindal [EMAIL PROTECTED] wrote: snip - working on http auth in apache But... If I want more sites/pages under /www to have authentication, how to do that? Can I do: Directory /var/www/na AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Directory /var/www/test AuthType Basic AuthName Test site AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Many thanks for help I the conf above, and it's working fine. Thanks for all help -- /ernst If adding the authorization requirements in httpd.conf works, but a .htaccess file doesn't, I suspect you need to change the options that .htaccess files are allowed to override. Checking my httpd.conf file, it looks like the default is to allow .htaccess to specify auth requirements in home directories, but not the DocumentRoot. For more details, look at the AllowOverride option in your httpd.conf and the apache documentation. HTH, Jacob - GnuPG Key: 1024D/16377135 In a world without fences, who needs Gates? http://www.linux.org/ pgp0.pgp Description: PGP signature
Re: [SOLVED]Re: apache authentication
Jacob S. wrote: On Sat, 22 Mar 2003 18:07:03 +0100 Ernst-Magne Vindal [EMAIL PROTECTED] wrote: snip - working on http auth in apache But... If I want more sites/pages under /www to have authentication, how to do that? Can I do: Directory /var/www/na AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Directory /var/www/test AuthType Basic AuthName Test site AuthUserFile /usr/local/apache/passwd/.htpasswd Require valid-user /directory Many thanks for help I the conf above, and it's working fine. Thanks for all help -- /ernst If adding the authorization requirements in httpd.conf works, but a .htaccess file doesn't, I suspect you need to change the options that .htaccess files are allowed to override. Checking my httpd.conf file, it looks like the default is to allow .htaccess to specify auth requirements in home directories, but not the DocumentRoot. For more details, look at the AllowOverride option in your httpd.conf and the apache documentation. HTH, Jacob - GnuPG Key: 1024D/16377135 In a world without fences, who needs Gates? http://www.linux.org/ I think you have are right, I'll take a closer look at this one. I'we really learn a lot these days, playing around with apache. Thanks again -- /ernst -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: [SOLVED]Re: apache authentication
Ernst-Magne Vindal wrote: snip I think you have are right, I'll take a closer look at this one. I'we really learn a lot these days, playing around with apache. Thanks again Apache is the easiest (and best documented) program I've ever used. I'm glad I could help (even if in a small way) :) -- http://mc-luug.homelinux.org MC-LUUG Home Page http://www.hsv-hotspots.com/ Your hotspot for Wireless in HSV, AL -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
apache authentication
Hi I'm trying to set up a site under my main site with auth, but can get it working. What I have done is: htpasswd -c /usr/local/apache/passwd/passwords username chown root.nogroup /usr/local/apache/passwd/passwords chmod 640 /usr/local/apache/passwd/passwords I have also tried with the password file named .htpasswd, but the result is the same. and for the access file: AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/passwords Require user username I have almost the same config for users home dir, and thats working fine. The only difference is that I use Require valid-user insted of the config above. Can anyone pls help? I'm running debain 2.4.20 and apache 1.3.27-0.1 /ernst -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: apache authentication
On Fri, 21 Mar 2003 18:05:36 +0100 Ernst-Magne Vindal [EMAIL PROTECTED] wrote: Hi I'm trying to set up a site under my main site with auth, but can get it working. What I have done is: htpasswd -c /usr/local/apache/passwd/passwords username chown root.nogroup /usr/local/apache/passwd/passwords chmod 640 /usr/local/apache/passwd/passwords What user your apache runs under, it should run under www-data. if it does on your computer, your apache user can't read this file. you should make it owned by www-data.www-data, and with permissions=600. I have also tried with the password file named .htpasswd, but the result is the same. and for the access file: AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/passwords Require user username I have almost the same config for users home dir, and thats working fine. The only difference is that I use Require valid-user insted of the config above. Can anyone pls help? I'm running debain 2.4.20 and apache 1.3.27-0.1 /ernst Bye -- Haim -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: apache authentication
Ernst-Magne Vindal wrote: Hi I'm trying to set up a site under my main site with auth, but can get it working. What I have done is: htpasswd -c /usr/local/apache/passwd/passwords username Okay chown root.nogroup /usr/local/apache/passwd/passwords I create the file as root and leave it's ownership status alone. chmod 640 /usr/local/apache/passwd/passwords I also don't chmod any differently then the default. I have also tried with the password file named .htpasswd, but the result is the same. I don't use .htaccess as it causes apache to take a performance hit (read the apache manual for more about that) and for the access file: AuthType Basic AuthName By Invitation Only AuthUserFile /usr/local/apache/passwd/passwords Require user username Directory /www/mc-luug/cgi-bin/awstats/ AuthType Basic AuthName AW Stats AuthUserFile /etc/apache/passwords/awstats Require valid-user /Directory Works consistantly. I have almost the same config for users home dir, and thats working fine. The only difference is that I use Require valid-user insted of the config above. Can anyone pls help? Trash the pw file, create a new one, leave it alone, then just use Require valid-user If need be, keep a seperate pw file for the By invite Only and your other protected dir. I'm running debain 2.4.20 and apache 1.3.27-0.1 /ernst -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: PDC based apache authentication?
Drew Cohan wrote: I'm looking for a method of authenticating apache (web) users using the PDC/BDC, not .htaccess. IOW, I'm looking for an analogous system to samba's authentication scheme with PDCs for apache. Can someone point me in the right direction? http://pam.sourceforge.net/mod_auth_pam/ http://www.csn.ul.ie/~airlied/pam_smb/ HTH -- (@ @) ---oOO(_)OOo Los pecados de los tres mundos desapareceran conmigo. Alexis Roda - Universitat Rovira i Virgili - Reus, Tarragona (Spain) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
RE: PDC based apache authentication? SOLVED
Thanks, exactly what I was looking for. Drew Cohan [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Alexis Roda Sent: Wednesday, December 18, 2002 10:47 AM To: [EMAIL PROTECTED]; debian Subject: Re: PDC based apache authentication? Drew Cohan wrote: I'm looking for a method of authenticating apache (web) users using the PDC/BDC, not .htaccess. IOW, I'm looking for an analogous system to samba's authentication scheme with PDCs for apache. Can someone point me in the right direction? http://pam.sourceforge.net/mod_auth_pam/ http://www.csn.ul.ie/~airlied/pam_smb/ HTH -- (@ @) ---oOO(_)OOo Los pecados de los tres mundos desapareceran conmigo. Alexis Roda - Universitat Rovira i Virgili - Reus, Tarragona (Spain) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: PDC based apache authentication?
Apache 2.0 has an auth_ldap module you could use if your PDC/BDC is Windows 2000 or newer (Active Directory). Also, look at http://www.unixpapa.com/mod_auth_external.html for the mod_auth_external with the pwauth auth program -- that, combined with PAM's pam_smb module, and you'd be able to auth via SMB. HTH, dave On Wednesday 18 December 2002 9:43 am, Drew Cohan expounded thusly: Hi, I'm looking for a method of authenticating apache (web) users using the PDC/BDC, not .htaccess. IOW, I'm looking for an analogous system to samba's authentication scheme with PDCs for apache. Can someone point me in the right direction? Thanks, Drew Cohan [EMAIL PROTECTED] -- {d.w. harks} [EMAIL PROTECTED] http://www.psys.org/dw/ {--} Blog: http://dwblog.psys.org - NEW! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: PDC based apache authentication?
On Wed, Dec 18, 2002 at 10:43:32AM -0500, Drew Cohan wrote: I'm looking for a method of authenticating apache (web) users using the PDC/BDC, not .htaccess. IOW, I'm looking for an analogous system to samba's authentication scheme with PDCs for apache. Can someone point me in the right direction? I think there are several 3rd-party modules to allow this, but I don't know which is the most current. Head over to http://modules.apache.org/ and do a search for auth, almost all of them will probably be named mod_auth_something. -- Michael Heironimus -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[Apache] Authentication for Virtual Hosts
Hello there, Is it possible for my Apache virtual host to apply htaccess authentication? I've tried to put htaccess related Auth directives into my Virtual Host section, but Apache claimed that Iwas not allowed to do this. Is there som way to do this or any other authentication method available? Thanks
apache authentication from samba users
hi all... Has anyone used apache's authentication against samba? I downloaded the mod_auth_samba tar filebut the README looks like its dedicated for a RedHat box... Anyone got this going with Debian? Any pointers to set this up would be great! Thanks Mike
apache authentication
Hi, Suddenly my apache server (Slink) stopped asking for authentication with .htaccess files. Any hint what could be going wrong here? I have no idea since this was working ok. Thanks, []s, Mario O.de MenezesMany are the plans in a man's heart, but IPEN-CNEN/SP is the Lord's purpose that prevails http://curiango.ipen.br/~mario Prov. 19.21 http://www.revistalinux.com.br
Re: apache authentication
what does your access.conf show ? depending on your config will depend wether or not htaccess files are read. nate [mailto:[EMAIL PROTECTED] ]-- Linux System Administrator http://www.firetrail.com/ Firetrail Internet Services Limited http://www.aphroland.org/ Everett, WA 425-348-7336http://www.linuxpowered.net/ Powered By:http://comedy.aphroland.org/ Debian 2.1 Linux 2.0.36 SMPhttp://yahoo.aphroland.org/ -[mailto:[EMAIL PROTECTED] ]-- On Mon, 25 Oct 1999, Mario Olimpio de Menezes wrote: Hi, Suddenly my apache server (Slink) stopped asking for authentication with .htaccess files. Any hint what could be going wrong here? I have no idea since this was working ok. Thanks, []s, Mario O.de MenezesMany are the plans in a man's heart, but IPEN-CNEN/SP is the Lord's purpose that prevails http://curiango.ipen.br/~mario Prov. 19.21 http://www.revistalinux.com.br -- Unsubscribe? mail -s unsubscribe [EMAIL PROTECTED] /dev/null