User-Rights gone wrong

[jbahillo]

Hello again :

You will need to fix the GUI access first and then delete it there, if not,  you are likely to break something...

[henfri]

Ok.
Do you have a hint, where to start fixing the gui?

I think, the apache instance for the web-if does not work, does it?

Code: [Select]

root      3687  0.0  0.1 297748 12008 ?        Ss   08:48   0:00 /usr/sbin/apache2 -k start
www-data  3802  0.0  0.2 307168 21216 ?        S    08:48   0:00 /usr/sbin/apache2 -k start
www-data  3803  0.0  0.2 305404 19244 ?        S    08:48   0:00 /usr/sbin/apache2 -k start
www-data  3804  0.0  0.2 304640 18652 ?        S    08:48   0:00 /usr/sbin/apache2 -k start
www-data  3805  0.0  0.0 297940  7816 ?        S    08:48   0:00 /usr/sbin/apache2 -k start
www-data  3806  0.0  0.0 297796  6804 ?        S    08:48   0:00 /usr/sbin/apache2 -k start
www-data 16622  0.0  0.0 297796  6804 ?        S    08:53   0:00 /usr/sbin/apache2 -k start
www-data 19687  0.0  0.0 297780  6552 ?        S    08:54   0:00 /usr/sbin/apache2 -k start
www-data 19688  0.0  0.0 297780  6552 ?        S    08:54   0:00 /usr/sbin/apache2 -k start
www-data 19689  0.0  0.0 297780  6552 ?        S    08:54   0:00 /usr/sbin/apache2 -k start
www-data 19690  0.0  0.0 297780  6552 ?        S    08:54   0:00 /usr/sbin/apache2 -k start

I have in my mind a line in the output of ps, that included .../zentyal/.... behind apache2..

What script (init) starts the web-if?

Greetings,
Hendrik

[jbahillo]

With the Pam and the permissions fixed,  try accessing the gui

If not,  look at zentyal.log  in order to look for the reason under /var/log/zentyal

[henfri]

Hello,

the web-if does not work (chrome reports: server not found).
The reason for this might be:

Code: [Select]

[Sun Jul 21 07:41:52 2013] [warn] Useless use of AllowOverride in line 13 of /var/lib/zentyal/conf/remoteservices/soap-loc.conf.
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:52 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:52 2013] [notice] Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1 mod_perl/2.0.5 Perl/v5.14.2 configured -- resuming normal operations
[Sun Jul 21 07:41:56 2013] [notice] SIGHUP received.  Attempting to restart
[Sun Jul 21 07:41:56 2013] [warn] Useless use of AllowOverride in line 13 of /var/lib/zentyal/conf/remoteservices/soap-loc.conf.
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)
[Sun Jul 21 07:41:56 2013] [warn] RSA server certificate CommonName (CN) `eBox Server' does NOT match server name!?
[Sun Jul 21 07:41:56 2013] [notice] Apache/2.2.22 (Ubuntu) mod_ssl/2.2.22 OpenSSL/1.0.1 mod_perl/2.0.5 Perl/v5.14.2 configured -- resuming normal operations
[Sun Jul 21 08:46:18 2013] [notice] caught SIGTERM, shutting down
I suspect, that after boot, the permissions are set (wrongly) by zentyal. Then the Web-If tries to start and it fails.
I fix the permissions, but I need to re-start the web-if, as it failed starting.
So: What init-script starts the web-if?

Greetings,
Hendrik

[jbahillo]

Service zentyal apache restart.  You can look at /etc/init  as well

[henfri]

Hello,

I suspected /etc/init/zentyal.
But doesn't this then also "fix" (read break) my permissions?
Well, I tried, and it did not bring up the Web-IF. The files in /var/log/zentyal are all unchanged.

Is there a way I can temporarily deactivate the permissions-routine?

What would you recommend?

Regards,
Hendrik

[jbahillo]

Check /etc/zentyal/samba.conf

Look for unmanaged acls,  then restart apache and samba modules

[henfri]

Hello,

that looked good, but still I get no web-interface :-(

I would like to trace down where it fails.

I understand that /etc/init.d/zentyal is responsible for starting the Web-IF. But it does not do it directly.
Can I somewhere see where it fails, e.g. starting the script that launches the web-if manually on the commandline?

Regards,
Hendrik

[spiral]

What I have noticed with the "unmanaged acls" option is that if there are a lot of files in the share, after a reboot it will take awhile before the gui is available.  after a reboot, ssh in, run top, and look for permission process (I forget the name) running at the beginning of the list.

[henfri]

Hello,

I don't see such a permissions process.

I still do not get the Web-Interface

I fear I will have no alternative to re-installing, do I?

What I would really would like to try at last is to start the Web-IF on the commandline to see the possible error message. Is that somehow possible?

Greetings,
Hendrik

[henfri]

Hello,

i have given up and installed Ubuntu 12.04 -now without zentyal.

Nevertheless, I appreciate your help.

Greetings,
Hendrik