Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi. I have gotten this to work before but I just upgraded my distro (pointclark) and am stuck.
The instruction on how to do this are pretty straight forward and easy, but everytime I go to the web page I am trying to protect the password never works. I get the same web page.....
Authorization Required
This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.
I put the configuration in to the directory section of http.conf
The password is created and updated with out a hitch usung dbmmanage. Is there anything I could be overlooking here? I have restarted the web server after all changes to conf file and password updates. I even tried several locations for my passwords.dat file.
[Tue Feb 4 23:08:41 2003] [error] [client 192.168.1.102] could not open db auth file: /var/www/passwords.dat
[Tue Feb 4 23:08:41 2003] [error] [client 192.168.1.102] DB user admin not found: /var/www/html/admin
You specified AuthDBUserFile /usr/local/apache/passwd/passwords.dat for dir /var/www/html/admin, and the error says db auth file: /var/www/passwords.dat, so I think it expects to see the db in another place. As a result it can't find the user too.
oops...I started changing locations and was trying different things and gave you the wrong lines in the error log.
[Wed Feb 5 21:04:46 2003] [error] [client 192.168.1.102] could not open db auth file: /usr/local/apache/passwd/passwords.dat
[Wed Feb 5 21:04:46 2003] [error] [client 192.168.1.102] DB user admin not found: /var/www/html/admin
is what I should have posted.
I went with just basic auth and it works fine but im still wondering why it wont work using db.
Well it was set to 0644 but it wasn't set for apache to read. I just changed it to owner root and group apache(user name of web server) . Restarted the web server. And still no go. Every thing is still set up as before in my first post and the error msg are the same.
Shouldn't it read AuthDBMType and AuthDBMUserFile, etc?
BerkleyDB and DBM use different structures within their dbase files. There have been some issues with Redhat 7.x and authdbm.
I have even heard some suggest not enabling both mod_auth_db and mod_auth_dbm, or at least setting one to non-authorative via AuthDBMAuthoritative Off
Seems that two different modules may be fighting to authenticate you, but only one has the db...
I assume that the group apache exists.
Hope that helps - will be following this post closely now to see how it works out!
Well I just tried AuthDBMType and AuthDBMUserFile and when I restarted it failed complaining about AuthDBMType and didnt took it out and left AuthDBMUserFile. It didnt complain but it didnt work out either. But now after I changed it all back, I went to restart and now I get something that looks like a lot more fun
Failed to start apache :
Starting httpd: Ouch! ap_mm_create(1048576, "/var/run/httpd.mm.4690") failed
Error: MM: mm:core: failed to acquire semaphore (No space left on device): OS: Identifier removed
[FAILED]
The error log just says
semget : no space left on device
Any ideas on that?
I was getting ready to take out auth_dbm before this happened.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.