From owner-freebsd-questions  Wed Nov 29  4:22: 8 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from bryden.apana.org.au (bryden.apana.org.au [203.3.126.129])
	by hub.freebsd.org (Postfix) with ESMTP id CACDA37B402
	for <freebsd-questions@FreeBSD.ORG>; Wed, 29 Nov 2000 04:22:02 -0800 (PST)
Received: from dougy (dougy.apana.org.au [203.3.126.131])
	by bryden.apana.org.au (8.9.3/8.9.3) with ESMTP id WAA03844
	for <freebsd-questions@FreeBSD.ORG>; Wed, 29 Nov 2000 22:28:02 +1000 (EST)
	(envelope-from dougy@bryden.apana.org.au)
Message-ID: <02d601c05a00$27c02ea0$837e03cb@dougy>
From: "Doug Young" <dougy@bryden.apana.org.au>
To: <freebsd-questions@FreeBSD.ORG>
Subject: 4.2 kernel security / httpd issue
Date: Wed, 29 Nov 2000 22:29:35 +1000
MIME-Version: 1.0
Content-Type: multipart/mixed;
	boundary="----=_NextPart_000_02D2_01C05A53.DA1134C0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4133.2400
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

This is a multi-part message in MIME format.

------=_NextPart_000_02D2_01C05A53.DA1134C0
Content-Type: multipart/alternative;
	boundary="----=_NextPart_001_02D3_01C05A53.DA1134C0"


------=_NextPart_001_02D3_01C05A53.DA1134C0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable



------=_NextPart_001_02D3_01C05A53.DA1134C0
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 5.50.4522.1800" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV>&nbsp;</DIV></BODY></HTML>

------=_NextPart_001_02D3_01C05A53.DA1134C0--

------=_NextPart_000_02D2_01C05A53.DA1134C0
Content-Type: text/plain;
	name="4.2 kernel security - httpd issue.txt"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
	filename="4.2 kernel security - httpd issue.txt"

Would someone suggest where to find information on the various kernel =
security levels available in 4.2 RELEASE ? I'm having trouble getting =
apache to start ..... it keeps giving error messages saying "httpd could =
not start" & fully qualified domain name could not be found" (the =
machine does have a public IP & FQDN)=20

I don't recall having to mess with httpd.conf in earlier versions of =
FreeBSD, so I'm wondering if maybe the kernel security level is somehow =
responsible .=20

It looks like ipfw is installed, posibly by default when the higher =
security levels are requested=20
(theres what looks like an "ipfw" executable), "ipfw' spits out a page =
full of stuff, but theres nothing
about "ipfw" in "rc.conf

I can't find anything that looks like a config file (maybe not relevant =
to ipfw ??), "man ipfw" doesn't help because its pretty vague, & the =
handbook isn't much better.


I've tried running "ipfw -a", "ipfw -t", "ipfw -N" plus combinations =
thereof, but they don't appear to do anything.=20

rc.conf has kern_securelevel=3D"2" & kern_securelevel_enable=3D"YES" 
------=_NextPart_000_02D2_01C05A53.DA1134C0--



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message