Re: [squid-users] The NCSA_AUTH

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Wed, 17 Oct 2001 12:28:00 +0200

Check the permissions on /usr/local/squid/bin/ and the leading
directories, maybe it is missing execute permission for "others".

Note: binaries and configurations should normally not be owned or
writable by the cache_effective_user and certainly not by "nobody".
Doing so is a security risk.

Regards
Henrik Nordström
Squid Hacker

Jurgen Hart wrote:
>
> Ok,
>
> I checked
> /usr/local/squid/bin/ncsa_auth
> 1) it exists
> 2) Flags are -rwxr-xr-x owned by nobody nobody
> 3) Squid runs as nobody:nobody (squid.conf -> effective_user,group)
>
> The password file as the same flags as the ncsa_auth exept the execution
> flags.
>
> I just don't get it what the problem is,
>
> Squid was compiled with:
>
> async I/O
> Pthreads
> ncsa_auth
> gnu-regex
> cache-digest
>
> --
> Jurre AKA Jurgen Hart
Received on Wed Oct 17 2001 - 04:27:07 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:02:48 MST