Ubuntu
libapache2-mod-auth-pam package

auth-pam with Apache gives me error 500

Asked by Anders Wallenquist

I can't get PAM-authentication working on a feisty (Apache2.2 2.2.3-3.2build1 and libapache2-mod-auth-pam 1.1.1-6)
Pointing Firefox to the site gives me the authentication form and after (when userid and password are tested) I got error 500.

Apache (www-data) is a member of the group shadow and can read /etc/shadow, I have tested with sudo su www-data -c "cat /etc/shadow"

/etc/apache2/sites-available/default:

        <Directory /var/www/>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride None
                Order allow,deny
                allow from all

                AuthPAM_Enabled on
                AuthType Basic
                AuthName "Barney-servern"
                require valid-user
        </Directory>

error.log:
[Thu Aug 02 14:18:29 2007] [error] Internal error: pcfg_openfile() called with NULL filename
[Thu Aug 02 14:18:29 2007] [error] [client 81.nn.nn.nn] (9)Bad file descriptor: Could not open password file: (null)

Any clue?

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu libapache2-mod-auth-pam Edit question
Assignee:
No assignee Edit question
Solved by:
Anders Wallenquist
Solved:
Last query:
Last reply:
Revision history for this message
Anders Wallenquist (aw) said : 		#1

This made my day:

       <Directory /var/www/>
                Options Indexes FollowSymLinks MultiViews
                AllowOverride None
                Order allow,deny
                allow from all

                AuthType Basic
                AuthPAM_Enabled on
                AuthBasicAuthoritative Off
                AuthName "Barney-servern"
                Require valid-user
        </Directory>

But still I believe that this module uses wrong authentication framework for Apache2.2, this AuthType Basic and AuthBasicAuthoritative Off is just a work around

Revision history for this message
KarlGoetz (kgoetz) said : 		#2

I'd be interested in hearing a reply to this. The problem exists in gutsy too.

Revision history for this message
KarlGoetz (kgoetz) said : 		#3

After some asking aroud, it seems the module in question is no longer maintained, and has posably been depreciated.

< fajita> mod_auth_pam is a module that requires access to one's system password file. http://pam.sourceforge.net/mod_auth_pam/ recommends the use of mod_authnz_external as mod_auth_pam is no longer developed/supported