From owner-freebsd-questions Wed Nov 29 4:58:31 2000 Delivered-To: freebsd-questions@freebsd.org Received: from bryden.apana.org.au (bryden.apana.org.au [203.3.126.129]) by hub.freebsd.org (Postfix) with ESMTP id 85E4637B402 for ; Wed, 29 Nov 2000 04:58:25 -0800 (PST) Received: from dougy (dougy.apana.org.au [203.3.126.131]) by bryden.apana.org.au (8.9.3/8.9.3) with SMTP id XAA03991; Wed, 29 Nov 2000 23:03:58 +1000 (EST) (envelope-from oracle@bryden.apana.org.au) Message-ID: <02f601c05a05$3184b190$837e03cb@dougy> From: "Doug Young" To: "Marc Silver" Cc: References: <02d601c05a00$27c02ea0$837e03cb@dougy> <20001129145237.D18309@draenor.org> Subject: Re: 4.2 kernel security / httpd issue Date: Wed, 29 Nov 2000 23:05:42 +1000 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Thanks Marc I'll persevere along that track :) ----- Original Message ----- From: "Marc Silver" To: "Doug Young" Cc: Sent: Wednesday, November 29, 2000 10:52 PM Subject: Re: 4.2 kernel security / httpd issue > Hi there, > > I don't think it's BSD's securelevel that is causing this. I would > suggest that you look at /var/log/httpd-error.log (or wherever you're > keeping your error log) as this is definitely an apache error. In > particular, take a look at the 'ServerName' directive in the httpd.conf > file. > > - Marc > > On Wed, Nov 29, 2000 at 10:29:35PM +1000, Doug Young wrote: > > > > > Would someone suggest where to find information on the various kernel security levels available in 4.2 RELEASE ? I'm having trouble getting apache to start ..... it keeps giving error messages saying "httpd could not start" & fully qualified domain name could not be found" (the machine does have a public IP & FQDN) > > > > I don't recall having to mess with httpd.conf in earlier versions of FreeBSD, so I'm wondering if maybe the kernel security level is somehow responsible . > > > > It looks like ipfw is installed, posibly by default when the higher security levels are requested > > (theres what looks like an "ipfw" executable), "ipfw' spits out a page full of stuff, but theres nothing > > about "ipfw" in "rc.conf > > > > I can't find anything that looks like a config file (maybe not relevant to ipfw ??), "man ipfw" doesn't help because its pretty vague, & the handbook isn't much better. > > > > > > I've tried running "ipfw -a", "ipfw -t", "ipfw -N" plus combinations thereof, but they don't appear to do anything. > > > > rc.conf has kern_securelevel="2" & kern_securelevel_enable="YES" > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message