Return-Path: X-Original-To: apmail-httpd-users-archive@www.apache.org Delivered-To: apmail-httpd-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 5A6E9FC51 for ; Wed, 10 Apr 2013 13:49:04 +0000 (UTC) Received: (qmail 77733 invoked by uid 500); 10 Apr 2013 13:49:01 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 76840 invoked by uid 500); 10 Apr 2013 13:48:49 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 76715 invoked by uid 99); 10 Apr 2013 13:48:45 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 10 Apr 2013 13:48:45 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of redalert.commander@gmail.com designates 209.85.219.46 as permitted sender) Received: from [209.85.219.46] (HELO mail-oa0-f46.google.com) (209.85.219.46) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 10 Apr 2013 13:48:39 +0000 Received: by mail-oa0-f46.google.com with SMTP id k1so452305oag.5 for ; Wed, 10 Apr 2013 06:48:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type; bh=upfDm0X2ahdmna8d3QRRpcME8P8QqXARfVKeHameBXU=; b=D+vQ+pP2lV1Jn8l3FwUQ7iSJtGp4T562Dve4PdAk9So3UGH8zWahNf9DFuy8ptAprx ZF4YjzYeO0LiLW4yL5PY7kEVLogcEBMZPY7/McxbM76Z5teGCYqCX/pyDieDUNKOdaXT b/gcvBGXO0CIjCBrBo7QpBddy4UYMsgDOoN34tFYJypaSQSFgHhrzMDOZD4CQWSKiyJ1 gFNesSvSO0C6OzjCB0G6Gfs6QqYP5+ypVfNhSnzSAmKojPDNVZWW4UVJjgr8rgyZWzcW d0W/wt1kEA8iAj8IlEQ3xhITPPczB8doj8tIgUtt2jJITPUR48eqSpjeqsTBxeIHZql0 BGMw== MIME-Version: 1.0 X-Received: by 10.60.37.68 with SMTP id w4mr756465oej.62.1365601698104; Wed, 10 Apr 2013 06:48:18 -0700 (PDT) Received: by 10.182.18.161 with HTTP; Wed, 10 Apr 2013 06:48:18 -0700 (PDT) In-Reply-To: <20130410141724.Horde.AFNBKKyTtWz5caOp0j4cSg1@www3.nde.ag> References: <20130410124817.Horde.yM_rlhG0hRzSVQWZF_iYbA7@www3.nde.ag> <20130410141724.Horde.AFNBKKyTtWz5caOp0j4cSg1@www3.nde.ag> Date: Wed, 10 Apr 2013 15:48:18 +0200 Message-ID: From: Redalert Commander To: users@httpd.apache.org Content-Type: text/plain; charset=ISO-8859-1 X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] Failure to start 2.4.4 On Wed, April 10, 2013 14:17, Jens-U. Mozdzen wrote: > Hi Steven, > > Zitat von Redalert Commander : >> Hi Jens, thanks for having a look. >> >> 2013/4/10 Jens-U. Mozdzen : >>> Hi Steve, >>> [...] >>> >>> I believe you have no or a wrong path set for the shared memory >>> location... >>> it shouldn't point to "/etc/httpd/logs/authdigest_shm.23908", but more >>> probably to "/var/log/httpd/..." or even better to "/var/run/httpd/..." >>> (or >>> similar)? >> >> /etc/httpd/logs is a symlink to /var/log/httpd. > > ah, I should have thought of that. > > In your original message you wrote that httpd is running as user (and > group) "apache", and that /var/log/httpd is owned by root:root with > 700 permission. > > Judging from that and the error message, httpd attempts to open the > shm file as user "apache" (not "root") and thus fails. Is there any > specific reason /var/log/httpd is not owned by your httpd user? This is how it is done in both Fedora and RHEL releases (also for 2.4), my guess is that this is done so that a compromised instance would be unable to delete the logs since they are written with elevated permissions. (I believe Debian does this as well). > >> Although /var/run/httpd does look like a better location for such a >> file, so where would I configure this? >> Is it a configure option when compiling or a directive in httpd.conf? >> I couldn't find a reference to it on a quick search. > > Me neither - might be you'd have to look at the documentation written > in that other language (I'm talking about the module's source code ;) > ) to see if it is configurable. The online man page at least lists *no > hint at all* that you may influence the location. Sorry for putting > you on that wrong track. I found something in configure that looks like an option, 'runtimedir', but that is not actually a valid option. Something is definately wrong here, I see other people having the authdigest_shm files in /var/run/httpd by default, without extra configure arguments. [...] Regards, Steven --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org