Re: [mod-security-users] Audit log: Failed to create subdirectories
Brought to you by:
victorhora,
zimmerletw
From: Ryan B. <Ryan.Barnett@Breach.com> - 2008-01-07 21:32:45
|
There is a permissions problem on one of the directories that is preventing the httpd user from creating the concurrent subdirectories/files. This is the short answer when validating this - path to the data dir must be readable and executable, the data dir must be writable, and subdirs of data (to be created) must be created writable by the httpd user. Here is an example - So, if you have a data dir of: /path/to/logs/data, then /path, /path/to must be at least 5 (rx) -=20 # chmod 755 /path /path/to The remaining /path/to/logs /path/to/logs/data must be 7 (rwx) - # chmod 770 /path/to/logs /path/to/logs/data Setting g+s on /path/to/logs/data make certain that new subdirs are created w/correct ownerships (group ownership needs to match http group setting) - #chmod g+s /path/to/logs/data This is a bit difficult to diagnose without knowing what the current settings are so I hope this helps. --=20 Ryan C. Barnett ModSecurity Community Manager Breach Security: Director of Training Web Application Security Consortium (WASC) Member CIS Apache Benchmark Project Lead SANS Instructor, GCIA, GCFA, GCIH, GSNA, GCUX, GSEC Author: Preventing Web Attacks with Apache > -----Original Message----- > From: mod...@li... [mailto:mod- > sec...@li...] On Behalf Of Vladimir Hrusca > Sent: Monday, January 07, 2008 3:43 PM > To: mod...@li... > Subject: [mod-security-users] Audit log: Failed to create subdirectories >=20 > Hello all, >=20 > I have a strange problem with ModSecurity 2.1.4 (Apache 2.x, CentOS 5). > Trying to work with console configured all default. >=20 > Receiving: > ModSecurity: Audit log: Failed to create subdirectories: > /opt/audit/20080107/20080107-1643 (Permission denied) > Cannot find where the problem is... tried to change paths... verified > permissions without success. Any idea? >=20 >=20 > Best regards, > Vladimir Hrusca >=20 >=20 >=20 > ------------------------------------------------------------------------ - > Check out the new SourceForge.net Marketplace. > It's the best place to buy or sell services for > just about anything Open Source. > http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketp la > ce > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users |