Search squid archive

Re: squid 3.5 with auth and chroot

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Befor all, thanks so so much for the answears!!!
It's exist, I'm sure.
This is my chroot structre:
/ (linux root)
/etc
     squid-3.5.6/
                      bin/
                           purge
                           squidclient
                      cache/
                           (squid cache dirs generated by squid -z)
                      etc/
                            cachemgr.conf
                            errorpage.css
                            group
                            gshadow
                            hosts
                            localtime
                            mime.conf
                            nsswitch.conf
                            passwd
                            resolv.conf
                            shadow
                            squid.conf
                       lib64/
                             (a lot of libs here, discovered with ldd command)
                       libexec/
                             basic_ncsa_auth
                             diskd
                             (other default squid libs)
                       regras/
                             (my acl files rules)
                       sbin/
                             squid
                       share/
                               errors/
                                       (default dir squid errors)
                               icons/
                                       (default squid icons
                               man/
                                       (default man squid pages)
                       usr/
                              lib64/
                                       (a lot of libs here, discovered with ldd command)
                       var/
                              logs/
                                       (default squid logs)
                              run/
                                    squid.pid

I did the command:
chroot /etc/squid-3.5.6 /libexec/basic_ncsa_auth
It runs, that's why I'm sure the chroot environment, unless for the ncsa_auth, is correct

Any more suggestions?

2015-07-23 11:42 GMT-03:00 Amos Jeffries <squid3@xxxxxxxxxxxxx>:
On 23/07/2015 11:23 p.m., Jorgeley Junior wrote:
>> Hi guys.
>> I have a RedHat 6.6 + squid 3.5.6 + basic_ncsa_auth + chroot and is
>> crashing only when I do an authentication.
>>
>> Here is the main confs:
>> auth_param basic program /libexec/basic_ncsa_auth /regras/usuarios
>> auth_param basic children 10 startup=0 idle=1
>> auth_param basic realm INTERNET-LOGIN NECESSARIO
>> ... (other confs) ...
>> acl usuarios            proxy_auth -i   "/etc/squid-3.5.6/regras/usuarios"
>> ... (other confs) ...
>> chroot /etc/squid-3.5.6
>>
>> Here is what I find in the cache.log:
>> 2015/07/22 18:47:27.866 kid1| WARNING: no_suid: setuid(0): (1) Operation
>> not permitted
>> 2015/07/22 18:48:01.735 kid1| ipcCreate: /libexec/basic_ncsa_auth: (2) No
>> such file or directory
>> 2015/07/22 18:47:27.866 kid1| WARNING: basicauthenticator #Hlpr13818 exited
>>
>> What is the ipcCreate and why he is not findind the file?

It is the code that runs the helper.

The "/libexec/basic_ncsa_auth" does not exist as an exectuable binary
inside your chroot.


>>
> About the libs needed when I do the chroot, I have to copy them to the
> squid folder or I need to create the same structure like
> /squid-3.5.6/libs,  /squid-3.5.6/lib64?

They must match the OS layout where Squid (and everything else that will
run in the chroot) expects to find them.

Amos

_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users



--


_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users

[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux