[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Lost Admin GUI on 3i after Apache chunk upgrade
- Subject: Re: [cobalt-users] Lost Admin GUI on 3i after Apache chunk upgrade
- From: Jay Summers <jay@xxxxxxxxxxxxxxxxxxxxx>
- Date: Mon Sep 9 08:22:01 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
>> Hello,
>>
>> Tried that
>>
>> [root@www /root]# /etc/rc.d/init.d/admserv restart
>> Stopping admin web server:
>> Starting admin web server: Error: Apache has not been designed to
>> serve pages while
>> running as root. There are known race conditions that
>> will allow any local user to read any file on the system.
>> If you still desire to serve pages as root then
>> add -DBIG_SECURITY_HOLE to the EXTRA_CFLAGS line in your
>> src/Configuration file and rebuild the server. It is
>> strongly suggested that you instead modify the User
>> directive in your httpd.conf file to list a non-root
>> user.
>> /usr/sbin/httpd
>>
>> This was the replay !! Now what to do I think I am stuck...
> Log in as root.
> pico /etc/admserv/conf/http.conf
> make sure these are as follows
> User nobody
> Group nobody
Won't this disable some of the features of the admin server? Doesn't it need
root permission to edit most of the config files? Where did you get that
update for apache? It should have been compiled with -DBIG_SECURITY_HOLE
like the message says. At least that's the way it is on a Raq2. I don't have
a Raq3 to verify.
HTH,
j
--
http://www.bizmanuals.com