You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Igor Cicimov <ic...@gmail.com> on 2009/03/31 07:41:11 UTC
[users@httpd] Running apache in jail
Hi all,
I have problems starting the apache in jail. The error I get is:
[Tue Mar 31 04:33:48 2009] [notice] Apache/2.2.8 (Unix) configured --
resuming normal operations
[Tue Mar 31 04:33:48 2009] [info] Server built: May 30 2008 08:24:34
[Tue Mar 31 04:33:48 2009] [debug] worker.c(1740): AcceptMutex: fcntl
(default: fcntl)
[Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
name from uid 500, you probably need to modify the User directive
[Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
name from uid 500, you probably need to modify the User directive
[Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
name from uid 500, you probably need to modify the User directive
[Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
name from uid 500, you probably need to modify the User directive
[Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
name from uid 500, you probably need to modify the User directive
[Tue Mar 31 04:33:49 2009] [alert] Child 8438 returned a Fatal
error... Apache is exiting!
My chroot path is /chroot and I have the user 500 created in the
/chroot/etc/passwd file and the group 500 as well included in the
/chroot/etc/group file:
/chroot/etc/passwd
================
httpd:x:500:500:Apache:/:/sbin/nologin
/chroot/etc/group
================
httpd::500:
The apache is in /chroot/usr/local/apache2 and I have the following
lines in the conf/httd.conf to set the account the apache should run
under:
User #500
Group #500
The box is Solaris 10: SunOS 5.10 Generic_118833-03 sun4u sparc
SUNW,Sun-Fire-V240
Looks like I'm missing something in the jail configuration but can't
figure it out what exactly.
Any help would be appreciated.
Thanks,
Igor
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
[users@httpd] Re: Running apache in jail
Posted by Igor Cicimov <ic...@gmail.com>.
Ok found what I was missing ... I have cerated all the neccessary
files but forgot to tell the jail how to look for user accounts :)
# cat /chroot/etc/nsswitch.conf
#
# /etc/nsswitch.dns:
#
# An example file that could be copied over to /etc/nsswitch.conf; it uses
# DNS for hosts lookups, otherwise it does not use any other naming service.
#
# "hosts:" and "services:" in this file are used only if the
# /etc/netconfig file has a "-" for nametoaddr_libs of "inet" transports.
# DNS service expects that an instance of svc:/network/dns/client be
# enabled and online.
passwd: files
group: files
.
.
.
so all I needed to do is copy over the missing library for user
authentications using files in the chroot lib folder :
# cp /lib/nss_files.so.1 /chroot/lib
and all working fine now :)
Cheers,
Igor
On Tue, Mar 31, 2009 at 4:41 PM, Igor Cicimov <ic...@gmail.com> wrote:
> Hi all,
>
> I have problems starting the apache in jail. The error I get is:
>
> [Tue Mar 31 04:33:48 2009] [notice] Apache/2.2.8 (Unix) configured --
> resuming normal operations
> [Tue Mar 31 04:33:48 2009] [info] Server built: May 30 2008 08:24:34
> [Tue Mar 31 04:33:48 2009] [debug] worker.c(1740): AcceptMutex: fcntl
> (default: fcntl)
> [Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
> name from uid 500, you probably need to modify the User directive
> [Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
> name from uid 500, you probably need to modify the User directive
> [Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
> name from uid 500, you probably need to modify the User directive
> [Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
> name from uid 500, you probably need to modify the User directive
> [Tue Mar 31 04:33:48 2009] [alert] getpwuid: couldn't determine user
> name from uid 500, you probably need to modify the User directive
> [Tue Mar 31 04:33:49 2009] [alert] Child 8438 returned a Fatal
> error... Apache is exiting!
>
>
> My chroot path is /chroot and I have the user 500 created in the
> /chroot/etc/passwd file and the group 500 as well included in the
> /chroot/etc/group file:
>
> /chroot/etc/passwd
> ================
> httpd:x:500:500:Apache:/:/sbin/nologin
>
> /chroot/etc/group
> ================
> httpd::500:
>
>
> The apache is in /chroot/usr/local/apache2 and I have the following
> lines in the conf/httd.conf to set the account the apache should run
> under:
>
> User #500
> Group #500
>
>
> The box is Solaris 10: SunOS 5.10 Generic_118833-03 sun4u sparc
> SUNW,Sun-Fire-V240
>
> Looks like I'm missing something in the jail configuration but can't
> figure it out what exactly.
>
> Any help would be appreciated.
>
> Thanks,
>
> Igor
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org