Torsten Landschoff wrote:
If you open up access to /etc/shadow you are doing something very wrong.
I forgot to mention that finally I've used a combination of:
libapache2-mod-authnz-external + pwauth
http://packages.debian.org/squeeze/libapache2-mod-authnz-external
Hi Marcin,
On Fri, Oct 09, 2009 at 09:43:45PM +0200, Marcin Szewczyk wrote:
Am I the only one, who thinks that giving anything a privilege to read
/etc/shadow while using PAM is a complete misunderstanding of how PAM works?
No. I found this report while trying to reduce the duplication in
Am I the only one, who thinks that giving anything a privilege to read
/etc/shadow while using PAM is a complete misunderstanding of how PAM works?
--
Marcin Szewczyk http://wodny.org
mailto:marcin.szewc...@wodny.borg - remove b / usuń b
xmpp:wo...@ubuntu.pl
Hi,
I needed to add the www-data user into the shadow group so it could read
/etc/shadow.
Once I did that the authentication worked :-)
Hope this helps.
Richard.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of unsubscribe. Trouble? Contact
In case anyone is still hitting their heads against the wall on this, here's
a way to get require valid-user and require group xxx working:
Enable modules:
auth_basic
auth_pam
auth_sys_group:
Config:
Directory /local/www
AuthType Basic
AuthName Private Access
AuthPAM_Enabled On
I have also had problems after an upgrade to Etch. The recommended additions of
AuthPAM_FallThrough off and AuthBasicAuthoritative off however do not work
in my case. My setup makes use of LDAP and Kerberos and as far as I know the
PAM configuration is correct (for example: I can successfully SSH
On Tue November 7 2006 13:00, Robbert Kouprie wrote:
My complete config is:
Directory /var/www/protected
AuthType Basic
AuthName Please login
AuthPAM_Enabled on
AuthPAM_FallThrough off
AuthBasicAuthoritative off
require valid-user
/Directory
This did not work out of
Hallo, Robbert!
On Tue, 7 Nov 2006 13:00:14 +0100 (CET)
Robbert Kouprie [EMAIL PROTECTED] wrote:
Please try adding AuthBasicAuthoritative Off to your configuration.
My complete config is:
Directory /var/www/protected
AuthType Basic
AuthName Please login
AuthPAM_Enabled on
Robin Farine [EMAIL PROTECTED] wrote:
This did not work out of the box for me when I upgraded to apache2
2.2.3-3. After some trial and errors -- apache2 error messages did
not ring any bell -- it occurred that for auth_pam with Require
valid-user to work, the auth_basic and authz_user
I wrote:
Thanks, enabling the authz_user module together with AuthBasicAuthoritative
off works.
I still think this is a workaround though (as I still get No Authn provider
configured warnings)
and not a proper solution -- which would be a libapache2-authn-pam package,
IMHO.
Not only do
Hi guys,
Please try adding AuthBasicAuthoritative Off to your configuration.
My complete config is:
Directory /var/www/protected
AuthType Basic
AuthName Please login
AuthPAM_Enabled on
AuthPAM_FallThrough off
AuthBasicAuthoritative off
require valid-user
/Directory
Regards,
Package: libapache2-mod-auth-pam
Version: 1.1.1-6.1
Followup-For: Bug #394097
If you still have mod-auth-pam working, could you please provide
some information on how to configure it?
On Apache 2.0.x I had working:
AuthPAM_Enabled on
AuthType Basic
AuthName DSPAM Control Center
Require
Since the auth mechanisms were changed in Apache 2.1 this module does
not work any more. It probably should be replaced by mod_authn_pam
available at http://mod-auth.sourceforge.net/docs/mod_authn_pam/
It works for me. Can you be more specific?
I am going to lower this to 'important' as I am
Package: libapache2-mod-auth-pam
Version: 1.1.1-6.1
Severity: grave
Justification: renders package unusable
Since the auth mechanisms were changed in Apache 2.1 this module does
not work any more. It probably should be replaced by mod_authn_pam
available at
14 matches
Mail list logo