You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Joseph Oaks <tr...@trells.com> on 2004/03/26 00:51:06 UTC
Re: [users@httpd] apache with mod_ssl and php in a chrooted
environment?
Thanks Max, when I did the ldd, I put everything in the same dirs as
they were on the real system. However someone else suggested I put
the kerberos libs in the chroot's /lib. This worked, my only problem
now is that the chroot is not recognizing the /etc/passwd files. I'm
working it out though. BTW great idea about the ld.so.cache, I will
check that out, that may be part of my problem with the passwd file
too.
Trell
On Thu, 2004-03-25 at 14:44, Max Dittrich wrote:
> Joseph Oaks wrote:
> > Hello guys, I am trying to compile apache 2.0.49 on a Redhat ES 3
> > server. The OS is a minimal install (no gui) with mod_ssl and the
> > default apache (not being used).
> >
> > I have downloaded the source for apache 2.0.49, and php 4.3.4, along
> > with openssl 0.9.7d
> >
>
> [...]
>
> >
> > When I make my apache chrooted envrionment and try to chroot it, I
> > get the following error when i run
> > [root@linux1 trell]# chroot /u1/chroot/httpd/
> > /usr/local/apache/bin/httpd -t
> >
> > /usr/local/apache/bin/httpd: error while loading shared libraries:
> > libgssapi_krb5.so.2: cannot open shared object file: No such file or
> > directory
> >
> > Yet when I do a ls /u1/chroot/httpd/usr/kerberos/lib the
> > libgssapi_krb5.so.2 file is there.
> >
> > I hope I have given enough information to help get me running. If not
> > let me know, I will provide you with any other info you need. BTW, did
> > I mention I have a deadline to have this running of Friday :/
>
> Try to get 'ldd' running in your chroot-env and check the dependencies
> of httpd. I think you're are missing 'ld.so.cache' generated by ldconfig.
>
> .max
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] apache with mod_ssl and php in a
chrooted environment?
Posted by Joseph Oaks <tr...@trells.com>.
Thanks for the URL. I will check it out :)
Trell
On Fri, 2004-03-26 at 10:53, Max Dittrich wrote:
> Hi,
>
> Joseph Oaks wrote:
>
> > Thanks Max, when I did the ldd, I put everything in the same dirs as
> > they were on the real system. However someone else suggested I put
> > the kerberos libs in the chroot's /lib.
>
> Sure, '/lib' and '/usr/lib' are the default directories searched by the
> linker ld.so. BTW setting LD_LIBRARY_PATH at execution time or
> LD_RUN_PATH at compile time to '/use/kerberos/lib' would have been
> another solution.
>
> > This worked, my only problem
> > now is that the chroot is not recognizing the /etc/passwd files. I'm
> > working it out though. BTW great idea about the ld.so.cache, I will
> > check that out, that may be part of my problem with the passwd file
> > too.
>
> See this HOWTO about setting up a chrooted apache installation
>
> http://penguin.epfl.ch/chroot.html#h3-switch
>
> I used it as a nice starting point some years ago. It mentions the need
> for /lib/libnss_***.so (/etc/nsswitch.conf!) and /lib/libresolv.so
>
> > Note: The libresolv library will be needed as well (This will become
> > evident when PHP is installed).
>
> .max
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] apache with mod_ssl and php in a chrooted environment?
Posted by Max Dittrich <Ma...@t-online.de>.
Hi,
Joseph Oaks wrote:
> Thanks Max, when I did the ldd, I put everything in the same dirs as
> they were on the real system. However someone else suggested I put
> the kerberos libs in the chroot's /lib.
Sure, '/lib' and '/usr/lib' are the default directories searched by the
linker ld.so. BTW setting LD_LIBRARY_PATH at execution time or
LD_RUN_PATH at compile time to '/use/kerberos/lib' would have been
another solution.
> This worked, my only problem
> now is that the chroot is not recognizing the /etc/passwd files. I'm
> working it out though. BTW great idea about the ld.so.cache, I will
> check that out, that may be part of my problem with the passwd file
> too.
See this HOWTO about setting up a chrooted apache installation
http://penguin.epfl.ch/chroot.html#h3-switch
I used it as a nice starting point some years ago. It mentions the need
for /lib/libnss_***.so (/etc/nsswitch.conf!) and /lib/libresolv.so
> Note: The libresolv library will be needed as well (This will become
> evident when PHP is installed).
.max
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org