From owner-freebsd-questions Tue Jul 2 14: 8:27 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0F29437B438 for ; Tue, 2 Jul 2002 14:05:14 -0700 (PDT) Received: from slate.dublin.wbtsystems.com (slate.dublin.wbtsystems.com [193.120.231.12]) by mx1.FreeBSD.org (Postfix) with ESMTP id 91D8D43ED8 for ; Tue, 2 Jul 2002 09:42:38 -0700 (PDT) (envelope-from barry.byrne@wbtsystems.com) Received: from spiral (spiral.dublin.wbtsystems.com [193.120.231.190]) (authenticated bits=0) by slate.dublin.wbtsystems.com (8.12.3/8.12.3) with ESMTP id g62GgZbi066605; Tue, 2 Jul 2002 17:42:35 +0100 (IST) From: "Barry Byrne" To: "local.freebsd.questions" , "'freebsd-questions@freebsd.org'" Subject: RE: Apache 1.3.22 Date: Tue, 2 Jul 2002 17:42:34 +0100 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) In-Reply-To: <2F03DF3DDE57D411AFF4009027B8C3670289CF19@exchange-uk.isltd.insignia.com> X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal X-Scanned-By: MIMEDefang 2.8 (www dot roaringpenguin dot com slash mimedefang) Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > -----Original Message----- > From: owner-freebsd-questions@FreeBSD.ORG > I recently added mod_auth_pam from ports to an existing > Apache installation because I wanted simple password > file authentication and there's no port of mod_auth_system. > The docs in /usr/local/share/doc/mod_auth_pam say that > a file will have been added to /etc/pam.d by the install; > however that directory does not exist. FreeBSD doesn't use /etc/pam.d as some systems do, instead, there is a single file called /etc/pam.conf You need to add lines in the format: httpd account required pam_unix.so > Attempting to access a protected file gets this: > > Jul 2 15:20:39 speyburn httpd: unable to dlopen(/usr/lib/pam_unix.so) > Jul 2 15:20:39 speyburn httpd: unable to dlopen(/usr/lib/pam_unix.so) > Jul 2 15:20:39 speyburn httpd: [dlerror: /usr/lib/pam_unix.so: > Undefined symbol "pam_get_item"] > Jul 2 15:20:39 speyburn httpd: [dlerror: /usr/lib/pam_unix.so: > Undefined symbol "pam_get_item"] > Jul 2 15:20:39 speyburn httpd: adding faulty module: > /usr/lib/pam_unix.so > Jul 2 15:20:39 speyburn httpd: adding faulty module: > /usr/lib/pam_unix.so You probably will have two futher issues here. Firstly, unless apache is compiled with the PAM libraries, it will fail to load them. The simplest solution is to use LD_PRELOAD when starting apache. In your apache startup file, try something like: LD_PRELOAD="/usr/lib/libpam.so.1" export LD_PRELOAD /usr/local/apache/bin/apachectl start You may also have another problem: pam_unix.so requires root privileges - apache typically runs as 'nobody', so you won't be able to use this particular PAM module unless you run apache as root (don't do this). You should be able to use most other PAM modules just fine though. - Barry > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message