Our Sysadmin is out of town

He's in Tibet, actually.

We have a Solaris/Linux NIS+ network and have created an account, home
directory, etc. for a new person.

In their home directory they have a public_html directory with an index.htm
file in it.

When you go to the URL for the page we get:

Forbidden
You don't have permission to access /~pmsd/index.htm on this server.
Apache/2.0.44 (Unix) PHP/4.3.1 Server at www.blah.blah.blah Port 80

Do we have to tell the web server that the new account exists somehow? We
have the root passwords. :)

Thanks!

Bob




-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 80,000 Newsgroups - 16 Different Servers! =-----

Bob Greschke <bob@passcal.nmt.edu> wrote:
> He's in Tibet, actually.

Lucky bum.

> In their home directory they have a public_html directory with an index.htm
> file in it.

Be sure that directory is world-readable and executable (rwxr-xr-x).

Davide

Nope. That's not it. It's even writable by the group since some CGI
scripts will be writing files to the directory, and its group is nobody to
match the web server.

We seem to be able to go to any machine, even a Windows machines, on the
network and in a browser use file:/blah/index.htm and see the file, so it
doesn't look like it is a file permissions problem.

From another post I thought maybe we had to create a link to the public_html
directory in someplace like /var/www/html, but I don't see anything like
that on the server machine. I think the /home directory is just mounted on
the server. There isn't even a /var/www/html directory. This machine is
set up in a "unique" way. Now if only I knew what it was. It took a year
to locate the error log. :)

We may have just done something wrong in the NIS+ portion.

"Davide Bianchi" <davideyeahsure@onlyforfun.net> wrote in message
news:bg6a88$kttih$3@ID-18487.news.uni-berlin.de...
> Bob Greschke <bob@passcal.nmt.edu> wrote:
> > He's in Tibet, actually.
>
> Lucky bum.
>
> > In their home directory they have a public_html directory with an
index.htm
> > file in it.
>
> Be sure that directory is world-readable and executable (rwxr-xr-x).
>
> Davide




-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 80,000 Newsgroups - 16 Different Servers! =-----

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 29 Jul 2003 11:08:54 -0600,
Bob Greschke <bob@passcal.nmt.edu> wrote:
> He's in Tibet, actually.
>
> We have a Solaris/Linux NIS+ network and have created an account, home
> directory, etc. for a new person.
>
> In their home directory they have a public_html directory with an index.htm
> file in it.
>
> When you go to the URL for the page we get:
>
> Forbidden
> You don't have permission to access /~pmsd/index.htm on this server.
> Apache/2.0.44 (Unix) PHP/4.3.1 Server at www.blah.blah.blah Port 80
>
> Do we have to tell the web server that the new account exists somehow? We
> have the root passwords. :)
>
> Thanks!
>
> Bob
>
>
>

You have to make sure the userdir function is enabled. That is what
allows you to use ~username for browsing.

For apache 1.x something like this


# UserDir: The name of the directory which is appended onto a user's home
# directory if a ~user request is received.
#
<IfModule mod_userdir.c>
UserDir public_html
</IfModule>

after mod_userdir has been enabled. I don't know for sure how that
varies with 2.0. But it's something to look into perhaps. I am assuming
that there are no other ~user accounts with public_html dirs, being
served on that webserver?

Also, just to be sure, the user account, is on the same machine that is
the webserver? you're not trying to serve user@hosta from a webserver on
hostb right?

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQE/JyLwd90bcYOAWPYRAuU0AKCQWxNtmxpKhudfUHXHj9Ym97/cpQCgvAnL
5egtQ1H8yV/zm7cKbnE+6Ss=
=DvgQ
-----END PGP SIGNATURE-----

--
Jim Richardson http://www.eskimo.com/~warlock

Linux, because eventually, you grow up enough to be trusted with a fork()

As far as I can tell the userdir is on. There are several other accounts
with public_html directories and they are working fine.

The /home/thenewaccount directory, and everyone else's home directory, IS on
a different machine from the webserver (it has it's own machine), but it
looks like the directories get automounted as needed (by NIS+?). If I log
into the webserver and do a df, all I see are the local disks. But if I do
an ls of /home/somedir then /home/somedir shows up in df and as being on the
other machine. It's weird.

Bob

"Jim Richardson" <warlock@eskimo.com> wrote in message
news:ggkjv-jjp.ln1@grendel.myth...
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> You have to make sure the userdir function is enabled. That is what
> allows you to use ~username for browsing.
>
> For apache 1.x something like this
>
>
> # UserDir: The name of the directory which is appended onto a user's home
> # directory if a ~user request is received.
> #
> <IfModule mod_userdir.c>
> UserDir public_html
> </IfModule>
>
> after mod_userdir has been enabled. I don't know for sure how that
> varies with 2.0. But it's something to look into perhaps. I am assuming
> that there are no other ~user accounts with public_html dirs, being
> served on that webserver?
>
> Also, just to be sure, the user account, is on the same machine that is
> the webserver? you're not trying to serve user@hosta from a webserver on
> hostb right?
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.2 (GNU/Linux)
>
> iD8DBQE/JyLwd90bcYOAWPYRAuU0AKCQWxNtmxpKhudfUHXHj9Ym97/cpQCgvAnL
> 5egtQ1H8yV/zm7cKbnE+6Ss=
> =DvgQ
> -----END PGP SIGNATURE-----
>
> --
> Jim Richardson http://www.eskimo.com/~warlock
>
> Linux, because eventually, you grow up enough to be trusted with a fork()




-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 80,000 Newsgroups - 16 Different Servers! =-----

"Bob Greschke" <bob@passcal.nmt.edu> wrote:

> As far as I can tell the userdir is on. There are several other accounts
> with public_html directories and they are working fine.
>
> The /home/thenewaccount directory, and everyone else's home directory, IS on
> a different machine from the webserver (it has it's own machine), but it
> looks like the directories get automounted as needed (by NIS+?). If I log
> into the webserver and do a df, all I see are the local disks. But if I do
> an ls of /home/somedir then /home/somedir shows up in df and as being on the
> other machine. It's weird.

What happens when you do an 'ls ~pmsd' on the web server machine? It does
indeed look like the home directories are normally NFS mounted via NIS+.
It might be that your sysadmin is putting individual entries for each
user's home directory in the NIS+ master file for NFS exports
(/etc/exports? on the NIS+ master system) - one would *hope* not, but it's
possible. That could explain why others' directories work, but the new one
doesn't. Another possibility is that the passwd file on the web server
doesn't automatically incorporate the NIS+ passwd file for security
purposes. Your sysadmin may have set it up that way, and it might be
necessary to specifically put an entry for psmd in the webserver's passwd
file, maybe with /bin/false or something for the shell, to prevent direct
login.

If trying to do an ls on ~pmsd on the web server fails, the error may give
you a clue if it's one of the 2 issues above.

Just some thoughts.

Cheers,
Steve