[squid-users] squid 3.5 with auth and chroot
Jorgeley Junior
jorgeley at gmail.com
Thu Jul 23 16:28:27 UTC 2015
Befor all, thanks so so much for the answears!!!
It's exist, I'm sure.
This is my chroot structre:
/ (linux root)
/etc
squid-3.5.6/
bin/
purge
squidclient
cache/
(squid cache dirs generated by squid -z)
etc/
cachemgr.conf
errorpage.css
group
gshadow
hosts
localtime
mime.conf
nsswitch.conf
passwd
resolv.conf
shadow
squid.conf
lib64/
(a lot of libs here, discovered with ldd
command)
libexec/
basic_ncsa_auth
diskd
(other default squid libs)
regras/
(my acl files rules)
sbin/
squid
share/
errors/
(default dir squid errors)
icons/
(default squid icons
man/
(default man squid pages)
usr/
lib64/
(a lot of libs here, discovered with
ldd command)
var/
logs/
(default squid logs)
run/
squid.pid
I did the command:
chroot /etc/squid-3.5.6 /libexec/basic_ncsa_auth
It runs, that's why I'm sure the chroot environment, unless for the
ncsa_auth, is correct
Any more suggestions?
2015-07-23 11:42 GMT-03:00 Amos Jeffries <squid3 at treenet.co.nz>:
> On 23/07/2015 11:23 p.m., Jorgeley Junior wrote:
> >> Hi guys.
> >> I have a RedHat 6.6 + squid 3.5.6 + basic_ncsa_auth + chroot and is
> >> crashing only when I do an authentication.
> >>
> >> Here is the main confs:
> >> auth_param basic program /libexec/basic_ncsa_auth /regras/usuarios
> >> auth_param basic children 10 startup=0 idle=1
> >> auth_param basic realm INTERNET-LOGIN NECESSARIO
> >> ... (other confs) ...
> >> acl usuarios proxy_auth -i
> "/etc/squid-3.5.6/regras/usuarios"
> >> ... (other confs) ...
> >> chroot /etc/squid-3.5.6
> >>
> >> Here is what I find in the cache.log:
> >> 2015/07/22 18:47:27.866 kid1| WARNING: no_suid: setuid(0): (1) Operation
> >> not permitted
> >> 2015/07/22 18:48:01.735 kid1| ipcCreate: /libexec/basic_ncsa_auth: (2)
> No
> >> such file or directory
> >> 2015/07/22 18:47:27.866 kid1| WARNING: basicauthenticator #Hlpr13818
> exited
> >>
> >> What is the ipcCreate and why he is not findind the file?
>
> It is the code that runs the helper.
>
> The "/libexec/basic_ncsa_auth" does not exist as an exectuable binary
> inside your chroot.
>
>
> >>
> > About the libs needed when I do the chroot, I have to copy them to the
> > squid folder or I need to create the same structure like
> > /squid-3.5.6/libs, /squid-3.5.6/lib64?
>
> They must match the OS layout where Squid (and everything else that will
> run in the chroot) expects to find them.
>
> Amos
>
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
>
--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150723/6198e0be/attachment.html>
More information about the squid-users
mailing list