perl-modperl mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From André Warnier ...@ice-sa.com>
Subject Re: Perl module not reading/setting PerlSetEnv command on apache start
Date Mon, 13 May 2013 14:35:24 GMT
Hi.

You need help, but probably not from this list. You need help from someone who knows
- about user/directory permissions on the specific platform that you are using, apparently

"sunos sz1061 5.10 generic_147440-19 sun4u sparc sunw,sparc-enterprise", and specifically

about the user "nobody" on that platform
- about running Apache on this platform under a user-id different from "nobody", and the 
corresponding security implications

The problem that you are having has nothing to do with perl or mod_perl per se.  You would

have the same problem with any Apache add-on module which tries to write to a disk file, 
whether that module is written in C or any other language.

The point is not that the PerlSetEnv is not working. It seems to be working fine.
The point is that the add-on module runs under the same user-id as Apache itself; and it 
tries to write to a disk directory to which (apparently) this user-id has no write permission.
So you need to change either the user-id of Apache, or the permissions of the directory, 
but neither of these changes is "neutral" in terms of the system security. That's why you

need competent help at that level.




jitendra.soni@accenture.com wrote:
> But I have given chmod 777 to these folder, will then also it won't work?? 
> 
> Met vriendelijke groet / With kind regards,
> 
> Jitendra Soni
> KPN - Application Development
> Accenture | Bangalore INDIA
> Mailto : jitendra.soni@accenture.com
> Mobile : (+91) 99 860 298 97
> 
> 
> -----Original Message-----
> From: Joakim Tørmoen [mailto:Joakim.Tormoen@evry.com] 
> Sent: Monday, May 13, 2013 7:10 PM
> To: Soni, Jitendra; modperl@perl.apache.org
> Subject: RE: Perl module not reading/setting PerlSetEnv command on apache start
> 
> Hi,
> 
> It has nothing to do with perl... 
> 
> You are running apache as nobody\nobody and trying to read/write something under /home/soni498/AMF/cache/
and /home/AMF
> 
> On standard linux systems this is not possible unless you have changed the standard permissons
on these folders. (And that is not recommended)
> 
> Best regards
> Joakim
> 
> ________________________________________
> From: jitendra.soni@accenture.com [jitendra.soni@accenture.com]
> Sent: Monday, May 13, 2013 3:22 PM
> To: modperl@perl.apache.org
> Subject: RE: Perl module not reading/setting PerlSetEnv command on apache start
> 
> Actually I am new to perl and need some help in fixing this issue. Do I need to change
the User to ROOT in conf file then start apache??
> 
> Met vriendelijke groet / With kind regards,
> 
> Jitendra Soni
> KPN - Application Development
> Accenture | Bangalore INDIA
> Mailto : jitendra.soni@accenture.com
> Mobile : (+91) 99 860 298 97
> 
> 
> -----Original Message-----
> From: André Warnier [mailto:aw@ice-sa.com]
> Sent: Monday, May 13, 2013 6:47 PM
> To: mod_perl list
> Subject: Re: Perl module not reading/setting PerlSetEnv command on apache start
> 
> jitendra.soni@accenture.com wrote:
>> I am starting apache with ROOT user and apache is configured with below User/Group
like below. Is this causing any issue?
>>
> 
> That is probably the issue indeed.
> I believe that you can probably figure out the rest by yourself.
> 
> 
>> #  don't use Group #-1 on these systems!
>> #
>> User nobody
>> Group nobody
>> </IfModule>
>> </IfModule>
>>
>> #
>>
>> Met vriendelijke groet / With kind regards,
>>
>> Jitendra Soni
>> KPN - Application Development
>> Accenture | Bangalore INDIA
>> Mailto : jitendra.soni@accenture.com
>> Mobile : (+91) 99 860 298 97
>>
>>
>> -----Original Message-----
>> From: André Warnier [mailto:aw@ice-sa.com]
>> Sent: Monday, May 13, 2013 6:16 PM
>> To: mod_perl list
>> Subject: Re: Perl module not reading/setting PerlSetEnv command on 
>> apache start
>>
>> The error message says :
>>
>> 09/05/13 - 12:05:17 - CacheDirectoryStore not exist.    Please set the variable
>> CacheDirectoryStore into httpd.conf, (the directory must be writeable)
>> Are you sure that this directory exists and is writeable (by the user-id under which
Apache runs) ?
>>
>>
>> jitendra.soni@accenture.com wrote:
>>> Hi Andre,
>>>
>>> Because I have set CacheDirectoryStore in my httpd conf file but it's not read
by AMF51DegreesFilter.pm file while starting apache.
>>>
>>> Met vriendelijke groet / With kind regards,
>>>
>>> Jitendra Soni
>>> KPN - Application Development
>>> Accenture | Bangalore INDIA
>>> Mailto : jitendra.soni@accenture.com
>>> Mobile : (+91) 99 860 298 97
>>>
>>>
>>> -----Original Message-----
>>> From: André Warnier [mailto:aw@ice-sa.com]
>>> Sent: Monday, May 13, 2013 5:59 PM
>>> To: mod_perl list
>>> Subject: Re: Perl module not reading/setting PerlSetEnv command on 
>>> apache start
>>>
>>> Hi.
>>>
>>> And what makes you think that this is a mod_perl problem ?
>>> There is a fairly explicit error message (and support address) below, which tends
to point to a problem in the add-on module or the configuration.
>>>
>>>
>>>
>>> jitendra.soni@accenture.com wrote:
>>>> Gentlemen,
>>>>
>>>> I need urgent help from you in fixing issue related to apache mobile filter
3.53. On putting below AMF configuration in apache httpd conf file I am not able to start
apache.
>>>>
>>>> Below is the AMF configuration I have added in httpd conf:
>>>>
>>>> #
>>>> #Configuration AMF Filter
>>>> #
>>>> PerlSetEnv AMFMobileHome /home/AMF
>>>> #PerlSetEnv AMFProductionMode true
>>>> PerlSetEnv CacheDirectoryStore /home/soni498/AMF/cache/ 
>>>> PerlTransHandler +Apache2::AMF51DegreesFilter
>>>>
>>>> #
>>>> #Configuration Switcher
>>>> #
>>>>
>>>> PerlSetEnv WildCardRedirect false
>>>> PerlSetEnv ForceTabletAsFullBrowser false PerlSetEnv FullBrowserUrl
>>>> http://sz1061.app.gen.local:83 PerlSetEnv MobileVersionUrl 
>>>> http://sz1061.app.gen.local:83/m/ PerlTransHandler
>>>> +Apache2::AMFSwitcher
>>>>
>>>>
>>>> -------------8<---------- Start Bug Report ------------8<----------

>>>> 1. Problem Description:
>>>>
>>>>   Perl module not reading/setting the PerlSetEnv command, hence not getting
CacheDirectoryStore value while stating apache. See error below:
>>>> (1) While starting below error we are getting # ./apachectl.e.83 -k 
>>>> start
>>>> 09/05/13 - 12:05:17 - ---------------------------------------------------------------------------
>>>> 09/05/13 - 12:05:17 - -------                 APACHE MOBILE FILTER V3.54
                 -------
>>>> 09/05/13 - 12:05:17 - ------- support 
>>>> http://groups.google.com/group/amf-device-detection -------
>>>> 09/05/13 - 12:05:17 -
>>>> --------------------------------------------------------------------
>>>> -
>>>> ------
>>>> 09/05/13 - 12:05:17 - AMF51DegreesFilter module Version 3.54
>>>> 09/05/13 - 12:05:17 - AMFCheckVersione is false, AMF don't check the last
version.
>>>> 09/05/13 - 12:05:17 - CacheDirectoryStore not exist.    Please set the variable
CacheDirectoryStore into httpd.conf, (the directory must be writeable)
>>>>
>>>>
>>>> (2) In apache logs we are getting below error:
>>>> [Mon May 13 13:16:39 2013] [info] mod_ssl/2.2.20 compiled against
>>>> Server: Apache/2.2.20, Library: OpenSSL/0.9.8k Mon May 13 13:16:39 
>>>> 2013] [error] ModPerl::Util::exit: (120000) exit was called at 
>>>> /usr/local/lib/perl5/site_perl/5.14.2/Apache2/AMF51DegreesFilter.pm
>>>> line 128Compilation failed in require at (eval 2) line 2.\n failed 
>>>> to load Apache2::AMF51DegreesFilter package
>>>>
>>>> 2. Used Components and their Configuration:
>>>>
>>>> *** mod_perl version 2.000007
>>>>
>>>> *** using /home/soni498/mod_perl-2.0.7/lib/Apache2/BuildConfig.pm
>>>>
>>>> *** Makefile.PL options:
>>>>   MP_APR_LIB     => aprext
>>>>   MP_APXS        => /usr/apache02/httpd_2.2.20/bin/apxs
>>>>   MP_COMPAT_1X   => 1
>>>>   MP_GENERATE_XS => 1
>>>>   MP_LIBNAME     => mod_perl
>>>>   MP_USE_DSO     => 1
>>>>
>>>>
>>>> *** /usr/httpd2.2.20/httpd/bin/httpd -V Server version:
>>>> Apache/2.2.20
>>>> (Unix)
>>>> Server built:   Feb  5 2013 08:10:24
>>>> Server's Module Magic Number: 20051115:28 Server loaded:  APR 1.4.5, 
>>>> APR-Util 1.3.12 Compiled using: APR 1.4.5, APR-Util 1.3.12
>>>> Architecture:   32-bit
>>>> Server MPM:     Prefork
>>>>   threaded:     no
>>>>     forked:     yes (variable process count)
>>>> Server compiled with....
>>>> -D APACHE_MPM_DIR="server/mpm/prefork"
>>>> -D APR_HAS_SENDFILE
>>>> -D APR_HAS_MMAP
>>>> -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled) -D 
>>>> APR_USE_PROC_PTHREAD_SERIALIZE -D APR_USE_PTHREAD_SERIALIZE -D 
>>>> SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D APR_HAS_OTHER_CHILD -D 
>>>> AP_HAVE_RELIABLE_PIPED_LOGS -D DYNAMIC_MODULE_LIMIT=128 -D 
>>>> HTTPD_ROOT="/usr/httpd2.2.20/httpd"
>>>> -D SUEXEC_BIN="/usr/httpd2.2.20/httpd/bin/suexec"
>>>> -D DEFAULT_PIDLOG="logs/httpd.pid"
>>>> -D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
>>>> -D DEFAULT_LOCKFILE="logs/accept.lock"
>>>> -D DEFAULT_ERRORLOG="logs/error_log"
>>>> -D AP_TYPES_CONFIG_FILE="conf/mime.types"
>>>> -D SERVER_CONFIG_FILE="conf/httpd.conf"
>>>>
>>>> *** /usr/bin/ldd /usr/httpd2.2.20/httpd/bin/httpd
>>>>         libm.so.2 =>     /lib/libm.so.2
>>>>         libaprutil-1.so.0 =>     /usr/httpd2.2.20/httpd/lib/libaprutil-1.so.0
>>>>         libexpat.so.0 =>         /usr/httpd2.2.20/httpd/lib/libexpat.so.0
>>>>         libiconv.so.2 =>         /usr/local/lib/libiconv.so.2
>>>>         libapr-1.so.0 =>         /usr/httpd2.2.20/httpd/lib/libapr-1.so.0
>>>>         libuuid.so.1 =>  /lib/libuuid.so.1
>>>>         libsendfile.so.1 =>      /lib/libsendfile.so.1
>>>>         librt.so.1 =>    /lib/librt.so.1
>>>>         libsocket.so.1 =>        /lib/libsocket.so.1
>>>>         libnsl.so.1 =>   /lib/libnsl.so.1
>>>>         libpthread.so.1 =>       /lib/libpthread.so.1
>>>>         libc.so.1 =>     /lib/libc.so.1
>>>>         libgcc_s.so.1 =>         /usr/local/lib/libgcc_s.so.1
>>>>         libaio.so.1 =>   /lib/libaio.so.1
>>>>         libmd.so.1 =>    /lib/libmd.so.1
>>>>         libmp.so.2 =>    /lib/libmp.so.2
>>>>         libscf.so.1 =>   /lib/libscf.so.1
>>>>         libdoor.so.1 =>  /lib/libdoor.so.1
>>>>         libuutil.so.1 =>         /lib/libuutil.so.1
>>>>         libgen.so.1 =>   /lib/libgen.so.1
>>>>        /lib/libm/libm_hwcap1.so.2
>>>>         /platform/SUNW,SPARC-Enterprise/lib/libc_psr.so.1
>>>>
>>>>
>>>> *** (apr|apu)-config linking info
>>>>
>>>> -L/usr/apache02/httpd_2.2.20/lib -laprutil-1     -lexpat -liconv
>>>>  -L/usr/apache02/httpd_2.2.20/lib -lapr-1 -luuid -lsendfile -lrt 
>>>> -lsocket -lnsl  -lpthread
>>>>
>>>>
>>>>
>>>> *** /usr/local/bin/perl -V
>>>> Summary of my perl5 (revision 5 version 14 subversion 2) configuration:
>>>>
>>>>   Platform:
>>>>     osname=solaris, osvers=2.10, archname=sun4-solaris-thread-multi
>>>>     uname='sunos sz1061 5.10 generic_147440-19 sun4u sparc sunw,sparc-enterprise
'
>>>>     config_args='-de -Dcc=gcc'
>>>>     hint=previous, useposix=true, d_sigaction=define
>>>>     useithreads=define, usemultiplicity=define
>>>>     useperlio=define, d_sfio=undef, uselargefiles=define, usesocks=undef
>>>>     use64bitint=undef, use64bitall=undef, uselongdouble=undef
>>>>     usemymalloc=n, bincompat5005=undef
>>>>   Compiler:
>>>>     cc='gcc', ccflags ='-D_REENTRANT -fno-strict-aliasing -pipe -I/usr/local/include
-D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64 -DPERL_USE_SAFE_PUTENV -DPERL_USE_SAFE_PUTENV',
>>>>     optimize='-O',
>>>>     cppflags='-D_REENTRANT -fno-strict-aliasing -pipe -I/usr/local/include
-D_REENTRANT -fno-strict-aliasing -pipe -I/usr/local/include -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64
-DPERL_USE_SAFE_PUTENV'
>>>>     ccversion='', gccversion='3.4.6', gccosandvers='solaris2.10'
>>>>     intsize=4, longsize=4, ptrsize=4, doublesize=8, byteorder=4321
>>>>     d_longlong=define, longlongsize=8, d_longdbl=define, longdblsize=16
>>>>     ivtype='long', ivsize=4, nvtype='double', nvsize=8, Off_t='off_t', lseeksize=8
>>>>     alignbytes=8, prototype=define
>>>>   Linker and Libraries:
>>>>     ld='gcc', ldflags =' -L/usr/local/lib '
>>>>     libpth=/usr/local/lib /usr/lib /usr/ccs/lib
>>>>     libs=-lsocket -lnsl -ldl -lm -lpthread -lc
>>>>     perllibs=-lsocket -lnsl -ldl -lm -lpthread -lc
>>>>     libc=/lib/libc.so, so=so, useshrplib=false, libperl=libperl.a
>>>>     gnulibc_version=''
>>>>   Dynamic Linking:
>>>>     dlsrc=dl_dlopen.xs, dlext=so, d_dlsymun=undef, ccdlflags=' '
>>>>     cccdlflags='-fPIC', lddlflags='-G -L/usr/local/lib'
>>>>
>>>>
>>>> Characteristics of this binary (from libperl):
>>>>   Compile-time options: MULTIPLICITY PERL_DONT_CREATE_GVSV
>>>>                         PERL_IMPLICIT_CONTEXT PERL_MALLOC_WRAP
>>>>                         PERL_PRESERVE_IVUV PERL_USE_SAFE_PUTENV USE_ITHREADS
>>>>                         USE_LARGE_FILES USE_PERLIO USE_PERL_ATOF
>>>>                         USE_REENTRANT_API
>>>>   Built under solaris
>>>>   Compiled at Feb  5 2013 10:37:08
>>>>   %ENV:
>>>>     PERL_LWP_USE_HTTP_10="1"
>>>>   @INC:
>>>>     /usr/local/lib/perl5/site_perl/5.14.2/sun4-solaris-thread-multi
>>>>     /usr/local/lib/perl5/site_perl/5.14.2
>>>>     /usr/local/lib/perl5/5.14.2/sun4-solaris-thread-multi
>>>>     /usr/local/lib/perl5/5.14.2
>>>>     .
>>>>
>>>> *** Packages of interest status:
>>>>
>>>> Apache2            : -
>>>> Apache2::Request   : -
>>>> CGI                : 3.52
>>>> ExtUtils::MakeMaker: 6.57_05
>>>> LWP                : 6.05
>>>> mod_perl           : -
>>>> mod_perl2          : 2.000007
>>>>
>>>>
>>>> 3. This is the core dump trace: (if you get a core dump):
>>>>
>>>>   [CORE TRACE COMES HERE]
>>>>
>>>> This report was generated by t/REPORT on Mon May 13 11:27:44 2013 GMT.
>>>>
>>>> -------------8<---------- End Bug Report --------------8<----------
>>>>
>>>> Note: Complete the rest of the details and post this bug report to 
>>>> modperl <at> perl.apache.org. To subscribe to the list send an empty

>>>> email to modperl-subscribe@perl.apache.org.
>>>>
>>>> Met vriendelijke groet / With kind regards,
>>>>
>>>> Jitendra Soni
>>>> KPN - Application Development
>>>> Accenture | Bangalore INDIA
>>>> Mailto : jitendra.soni@accenture.com Mobile : (+91) 99 860 298 97
>>>>
>>>>
>>>> ________________________________
>>>> This message is for the designated recipient only and may contain privileged,
proprietary, or otherwise confidential information. If you have received it in error, please
notify the sender immediately and delete the original. Any other use of the e-mail by you
is prohibited.
>>>>
>>>> Where allowed by local law, electronic communications with Accenture and
its affiliates, including e-mail and instant messaging (including content), may be scanned
by our systems for the purposes of information security and assessment of internal compliance
with Accenture policy.
>>>>
>>>> ____________________________________________________________________
>>>> _
>>>> _________________
>>>>
>>>> www.accenture.com
>>>>
>>>
>>>
>>
>>
>>
> 
> 
> 
> 
> 


Mime
View raw message