Thread: [mod-security-users] RE: Dynamic Disable Post Scanning / Chroot issue
Brought to you by:
victorhora,
zimmerletw
From: <mic...@km...> - 2004-10-14 04:02:07
|
Hi Ivan, Problem on disable post scanning fixed using the CVS version. Now, i try to use the chroot function of mod_security. So far everything okay. The environment is Apache2 + PHP + MySQL runing Xoops (a content management system). To communicate with MySQL, i need to set up a hard link in the chrooted environment for "mysql.sock". However, in RedHat 8, logrotate will be used to apache log reorganization. Following is the details: /var/log/httpd/*log { missingok notifempty sharedscripts postrotate /bin/kill -HUP `cat /var/run/httpd.pid 2>/dev/null` 2> /dev/null || true endscript } When signal -HUP is received, apache cannot restart. Initially, the configuration file not found (httpd.conf). After created the files in the chrooted environment, it changed to: Syntax error on line 6 of /etc/httpd/conf2.d/auth_pgsql.conf: Cannot load /etc/httpd/modules/mod_auth_pgsql.so into server: /etc/httpd/modules /mod_auth_pgsql.so: cannot open shared object file: No such file or directory If all modules need to be copied, it defeat the beauty of mod_security's chroot. Any suggestion or solution on this issue? Regards, Michael ----------------------------------------------------------------------------------------------------------- KMB E-mail Disclaimer This e-mail may contain confidential, proprietary or legally privileged information and is intended for the attention and use of the addressee(s) only. If you are not the intended recipient of this message, you must not copy, use or disclose any part of its contents. Please notify the sender immediately and delete this message from your system. The KMB Group and each of its affiliates and the sender of this message shall not be responsible or liable for any errors or omissions in the contents of this message as secure or error free e-mail transmission cannot be guaranteed. Information sent via e-mail could arrive late or contain viruses or be intercepted, corrupted, lost, destroyed, or incomplete. Unless otherwise stated, any information given in this message is indicative only and is subject to our formal written confirmation. |
From: Ivan R. <iv...@we...> - 2004-10-14 14:23:33
|
mic...@km... wrote: > Hi Ivan, > > Problem on disable post scanning fixed using the CVS version. > > Now, i try to use the chroot function of mod_security. So far everything > okay. The environment is Apache2 + PHP + MySQL runing Xoops (a content > management system). To communicate with MySQL, i need to set up a hard > link in the chrooted environment for "mysql.sock". That's one of the possible ways to do it, yes. > If all modules need to be copied, it defeat the beauty of mod_security's > chroot. Any suggestion or solution on this issue? It will work if you stop Apache first, then start it again. Options restart and graceful cannot work since the configuration fiels are outside the jail. -- ModSecurity (http://www.modsecurity.org) [ Open source IDS for Web applications ] |
From: Ramesh <ram...@gm...> - 2005-11-24 11:32:34
|
hello, I had installed postgres successfully in my linux box and able to work with it creating databases tables etc .... Butwhen i restarted Apache iam getting an error like httpd failed. The error was: Starting httpd: Syntax error on line 6 of /etc/httpd/conf.d/auth_pgsql.conf: Cannot load /etc/httpd/modules/mod_auth_pgsql.so into server: libpq.so.3: cannot open shared object file: No such file or directory [FAILED] The path of .so file is right unable to catch the error ..... Iam using apache 2.0.52 postgresql is 8.0.1 server: libpq.so.3: i have libpq.so.4 in my lib directory This could make any difference ? How to rectify this error please give me any suggestion or help it will be very handy for me.... Regards Ramesh |
From: Ivan R. <iv...@we...> - 2005-11-24 11:39:32
|
Ramesh wrote: > hello, > > I had installed postgres successfully in my linux box and able to work with it > creating databases tables etc .... > > Butwhen i restarted Apache iam getting an error like > > httpd failed. The error was: Starting httpd: Syntax error on line 6 > of /etc/httpd/conf.d/auth_pgsql.conf: > Cannot load /etc/httpd/modules/mod_auth_pgsql.so into server: libpq.so.3: > cannot open shared object file: No such file or directory > [FAILED] Hi Ramesh, This list is for discussions related to mod_security. We are unlikely to be able to help you with other problems, even if they are related to Apache. > The path of .so file is right unable to catch the error ..... > > Iam using apache 2.0.52 > > postgresql is 8.0.1 > > > server: libpq.so.3: i have libpq.so.4 in my lib directory > > This could make any difference ? I think so. I think you have a problem with mod_auth_pgsql.so compiled for one version of Postgres, but you have another version installed. Try recompiling mod_auth_pgsql. -- Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |