Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Apache2 and mod_auth_pam does not really work
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
hyp0r
Tux's lil' helper
Tux's lil' helper


Joined: 11 Oct 2003
Posts: 139
PostPosted: Sun Mar 27, 2005 4:16 pm    Post subject: Apache2 and mod_auth_pam does not really work Reply with quote
Is there a tutorial or howto or any special documentation on how to get PAM with an Apache work?
This thingy is really annoying as I successfully integrate the module, configure my .htaccess enable pam-auth and get a PAM: user 'test' - not authenticated: authentication error" whenever I try to authenticate.
It seems, that my request is pam'ized, but it cannot be authenticated for some reason.
I've tried apache1 and apache2 as I thought it a faulty mod_auth_pam2, but this is not the case which means, I don't even get it working with apache1. Is there a trick or something? I don't get it...
Back to top
View user's profile Send private message
davison
n00b
n00b


Joined: 19 Jun 2003
Posts: 63
Location: London, UK
PostPosted: Fri Apr 08, 2005 11:36 am    Post subject: Reply with quote
I get similar.. anyone know what we're missing here?

I have apache2, mod_auth_pam, mod_ssl.

commonapache2.conf contains:
Code:
<Directory "/var/www/localhost/htdocs/myapp">
AuthType Basic
require user my_user_name
order deny,allow
AuthName "MyApp"
</Directory>


When I hit the server, the basic authentication box comes up, but when entering valid details (contained in /etc/passwd) I get the following in /var/log/apache2/ssl_error_log:
Code:
[Fri Apr 08 12:30:19 2005] [error] [client xx.xx.xx.xx] PAM: user 'my_user_name' - not authenticated: Authentication failure


I'd have thought mod_auth_pam would be quite widely used but there's not much info on it - is there a better way to authenticate against the system passwd list?

Regards,
_________________
public key id:0xE855B3EA
Back to top
View user's profile Send private message
davison
n00b
n00b


Joined: 19 Jun 2003
Posts: 63
Location: London, UK
PostPosted: Sun Apr 10, 2005 11:58 pm    Post subject: Reply with quote
for info, the apache user didn't have read-access to /etc/shadow. Added a 'shadow-users' group with apache in it to /etc/group and did
Code:
chgrp shadow-users; chmod g+r /etc/shadow
to fix.
_________________
public key id:0xE855B3EA
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy