[squid-users] squid 3.5 with auth and chroot
Jorgeley Junior
jorgeley at gmail.com
Fri Jul 24 12:10:12 UTC 2015
please guys, help me.
Any suggestions?
2015-07-23 13:28 GMT-03:00 Jorgeley Junior <jorgeley at gmail.com>:
> Befor all, thanks so so much for the answears!!!
> It's exist, I'm sure.
> This is my chroot structre:
> / (linux root)
> /etc
> squid-3.5.6/
> bin/
> purge
> squidclient
> cache/
> (squid cache dirs generated by squid -z)
> etc/
> cachemgr.conf
> errorpage.css
> group
> gshadow
> hosts
> localtime
> mime.conf
> nsswitch.conf
> passwd
> resolv.conf
> shadow
> squid.conf
> lib64/
> (a lot of libs here, discovered with ldd
> command)
> libexec/
> basic_ncsa_auth
> diskd
> (other default squid libs)
> regras/
> (my acl files rules)
> sbin/
> squid
> share/
> errors/
> (default dir squid errors)
> icons/
> (default squid icons
> man/
> (default man squid pages)
> usr/
> lib64/
> (a lot of libs here, discovered
> with ldd command)
> var/
> logs/
> (default squid logs)
> run/
> squid.pid
>
> I did the command:
> chroot /etc/squid-3.5.6 /libexec/basic_ncsa_auth
> It runs, that's why I'm sure the chroot environment, unless for the
> ncsa_auth, is correct
>
> Any more suggestions?
>
> 2015-07-23 11:42 GMT-03:00 Amos Jeffries <squid3 at treenet.co.nz>:
>
>> On 23/07/2015 11:23 p.m., Jorgeley Junior wrote:
>> >> Hi guys.
>> >> I have a RedHat 6.6 + squid 3.5.6 + basic_ncsa_auth + chroot and is
>> >> crashing only when I do an authentication.
>> >>
>> >> Here is the main confs:
>> >> auth_param basic program /libexec/basic_ncsa_auth /regras/usuarios
>> >> auth_param basic children 10 startup=0 idle=1
>> >> auth_param basic realm INTERNET-LOGIN NECESSARIO
>> >> ... (other confs) ...
>> >> acl usuarios proxy_auth -i
>> "/etc/squid-3.5.6/regras/usuarios"
>> >> ... (other confs) ...
>> >> chroot /etc/squid-3.5.6
>> >>
>> >> Here is what I find in the cache.log:
>> >> 2015/07/22 18:47:27.866 kid1| WARNING: no_suid: setuid(0): (1)
>> Operation
>> >> not permitted
>> >> 2015/07/22 18:48:01.735 kid1| ipcCreate: /libexec/basic_ncsa_auth: (2)
>> No
>> >> such file or directory
>> >> 2015/07/22 18:47:27.866 kid1| WARNING: basicauthenticator #Hlpr13818
>> exited
>> >>
>> >> What is the ipcCreate and why he is not findind the file?
>>
>> It is the code that runs the helper.
>>
>> The "/libexec/basic_ncsa_auth" does not exist as an exectuable binary
>> inside your chroot.
>>
>>
>> >>
>> > About the libs needed when I do the chroot, I have to copy them to the
>> > squid folder or I need to create the same structure like
>> > /squid-3.5.6/libs, /squid-3.5.6/lib64?
>>
>> They must match the OS layout where Squid (and everything else that will
>> run in the chroot) expects to find them.
>>
>> Amos
>>
>> _______________________________________________
>> squid-users mailing list
>> squid-users at lists.squid-cache.org
>> http://lists.squid-cache.org/listinfo/squid-users
>>
>
>
>
> --
>
>
>
--
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150724/90fc14e8/attachment-0001.html>
More information about the squid-users
mailing list