{"id":291,"date":"2005-04-28T23:30:00","date_gmt":"2005-04-28T14:30:00","guid":{"rendered":"http:\/\/www.smilemark.jp\/wordpress\/?p=291"},"modified":"2005-04-28T23:30:00","modified_gmt":"2005-04-28T14:30:00","slug":"apachepam_1","status":"publish","type":"post","link":"http:\/\/smilemark.jp\/blog\/?p=291","title":{"rendered":"Apache\u3067PAM\u8a8d\u8a3c"},"content":{"rendered":"

\u5148\u307b\u3069PHP iCalender\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/a>\u3057\u305f\u3051\u3069\u3001\u3053\u306e\u307e\u307e\u3067\u306f\u8ab0\u3067\u3082\u53c2\u7167\u3067\u304d\u3066\u3057\u307e\u3044\u30d7\u30e9\u30a4\u30d0\u30b7\u30fc\u304c\u5b88\u308c\u306a\u3044\u306e\u3067\u3001\u30d1\u30b9\u30ef\u30fc\u30c9\u3067\u30ac\u30fc\u30c9\u3059\u308b\u3053\u3068\u306b\u3057\u305f\u3002Apache\u306e\u666e\u901a\u306eBASIC\u8a8d\u8a3c\u3067\u3082\u3088\u3044\u306e\u3060\u3051\u3069\u3001\u30d1\u30b9\u30ef\u30fc\u30c9\u306e\u7ba1\u7406\u3084\u8a2d\u5b9a\u304c\u9762\u5012\u306a\u306e\u3067PAM\u8a8d\u8a3c\u3092\u884c\u3046\u3088\u3046\u306b\u3059\u308b\u3002\u305d\u306e\u305f\u3081\u306b\u65b0\u3057\u3044\u30e2\u30b8\u30e5\u30fc\u30eb\u3092Apache(2.0.40-21.17)\u306b\u7d44\u307f\u8fbc\u3080\u3002\uff08Apache 1.X\u3067\u306f\u8a2d\u5b9a\u304c\u7570\u306a\u308b\u3088\u3046\u3067\u3059\u3002\u3054\u6ce8\u610f\u3002\uff09
\nPAM\u8a8d\u8a3c\u306b\u306f\u30e2\u30b8\u30e5\u30fc\u30ebmod_auth_external\u3068pwauth\u3092\u7528\u3044\u308b\u3002\u307e\u305a\u306f\u3053\u308c\u3089\u3092Get\u3059\u308b\u3002\uff08\u4f5c\u8005\u306b\u611f\u8b1d\uff09
\nmod_auth_external<\/a>
\npwauth<\/a>
\nmod_auth_external\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb<\/strong>
\n\u307e\u305a\u306f\u30a2\u30fc\u30ab\u30a4\u30d6\u3092\u5c55\u958b\u3057\u307e\u3059\u3002
\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u884c\u3046\u3002<\/p>\n

apxs -c mod_auth_external.c
\napxs -i -a mod_auth_external.la<\/p><\/blockquote>\n

\u4ee5\u4e0b\u304c\u81ea\u52d5\u7684\u306bhttpd.conf\u306b\u8ffd\u52a0\u3055\u308c\u307e\u3059\u3002<\/p>\n

LoadModule external_auth_module \/usr\/lib\/httpd\/modules\/mod_auth_external.so<\/p><\/blockquote>\n

pwauth\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3068\u8a2d\u5b9a<\/strong>
\nconfig.h\u306e\u4ee5\u4e0b\u306e\u30a8\u30f3\u30c8\u30ea\u3092Apache\u306eUID\u306b\u5909\u66f4\u3057\u307e\u3059\u3002<\/p>\n

#define SERVER_UIDS 48 \/* user “nobody” *\/<\/p><\/blockquote>\n

PAM\u8a8d\u8a3c\u30e6\u30fc\u30b6\u306eUID\u306e\u6700\u5c0f\u5024\u3092\u8a2d\u5b9a\u3057\u307e\u3059\u3002\u3053\u308c\u3088\u308a\u5c0f\u3055\u3044UID\u306e\u30e6\u30fc\u30b6\uff08\u7279\u6a29\u30e6\u30fc\u30b6\uff09\u306f\u8a8d\u8a3c\u3067\u30a8\u30e9\u30fc\u3068\u306a\u308a\u307e\u3059\u3002<\/p>\n

#define MIN_UNIX_UID 40 \/**\/<\/p><\/blockquote>\n

make\u3057\u3066\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u884c\u3044\u307e\u3059\u3002\uff08root\u3067\u884c\u3044\u307e\u3059\u3002\uff09<\/p>\n

# make
\n# mkdir \/usr\/local\/libexec\/
\n# cp pwauth\/pwauth \/usr\/local\/libexec\/
\n# chmod u+s \/usr\/local\/libexec\/pwauth<\/p><\/blockquote>\n

\/etc\/pam.d\/pwauth\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<\/p>\n

auth required \/lib\/security\/pam_pwdb.so shadow nullok
\nauth required \/lib\/security\/pam_nologin.so
\naccount required \/lib\/security\/pam_pwdb.so<\/p><\/blockquote>\n

Apache\u306e\u8a2d\u5b9a<\/strong>
\n\u4ee5\u4e0b\u306e\u8a2d\u5b9a\u3092httpd.conf\u306b\u8ffd\u52a0\u3057\u307e\u3059\u3002<\/p>\n

AddExternalAuth pwauth \/usr\/local\/libexec\/pwauth
\nSetExternalAuthMethod pwauth pipe<\/p><\/blockquote>\n

apache\u3092\u518d\u8d77\u52d5\u3057\u307e\u3059\u3002\u3053\u308c\u3067PAM\u8a8d\u8a3c\u3092\u884c\u3048\u308b\u3088\u3046\u306b\u306a\u308a\u307e\u3057\u305f\u3002
\nPAM\u8a8d\u8a3c\u3092\u7528\u3044\u308b\u306b\u306f.htaccess\u306b\u3053\u3093\u306a\u98a8\u306b\u8a2d\u5b9a\u3059\u308c\u3070OK\u3067\u3059\u3002<\/p>\n

AuthType Basic
\nAuthExternal pwauth<\/b>
\nAuthName “PAM authentication”
\nrequire valid-user<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"

\u5148\u307b\u3069PHP iCalender\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u305f\u3051\u3069\u3001\u3053\u306e\u307e\u307e\u3067\u306f\u8ab0\u3067\u3082\u53c2\u7167\u3067\u304d\u3066\u3057\u307e\u3044\u30d7\u30e9\u30a4\u30d0\u30b7\u30fc\u304c\u5b88\u308c\u306a\u3044\u306e\u3067\u3001\u30d1\u30b9\u30ef\u30fc\u30c9\u3067\u30ac\u30fc\u30c9\u3059\u308b\u3053\u3068\u306b\u3057\u305f\u3002Apache\u306e\u666e\u901a\u306eBASIC\u8a8d\u8a3c\u3067\u3082\u3088\u3044\u306e\u3060\u3051 … <\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true},"categories":[5,8],"tags":[],"jetpack_featured_media_url":"","jetpack_publicize_connections":[],"jetpack_shortlink":"https:\/\/wp.me\/pwbJ3-4H","jetpack_sharing_enabled":true,"jetpack_likes_enabled":false,"_links":{"self":[{"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts\/291"}],"collection":[{"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=291"}],"version-history":[{"count":0,"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=\/wp\/v2\/posts\/291\/revisions"}],"wp:attachment":[{"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=291"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=291"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/smilemark.jp\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=291"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}