Received: (qmail 6094 invoked by uid 501); 18 Apr 2000 00:05:33 -0000 Message-Id: <20000418000533.6093.qmail@locus.apache.org> Date: 18 Apr 2000 00:05:33 -0000 From: Stephen Misel Reply-To: steve@misel.com To: submit@bugz.apache.org Subject: suEXEC seems to filter dashes in userids? X-Send-Pr-Version: 3.110 >Number: 6003 >Category: suexec >Synopsis: suEXEC seems to filter dashes in userids? >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: closed >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Mon Apr 17 17:10:00 PDT 2000 >Closed-Date: Mon Apr 17 17:31:59 PDT 2000 >Last-Modified: Mon Apr 17 17:40:01 PDT 2000 >Originator: steve@misel.com >Release: Apache/1.3.11 >Organization: >Environment: OS: Linux slw1-1 2.2.12-20smp #1 SMP Mon Sep 27 10:34:45 EDT 1999 i686 unknown # httpd -V Server version: Apache/1.3.11 (Unix) Server built: Jan 24 2000 15:26:45 Server's Module Magic Number: 19990320:6 Server compiled with.... -D HAVE_MMAP -D HAVE_SHMGET -D USE_SHMGET_SCOREBOARD -D USE_MMAP_FILES -D USE_FCNTL_SERIALIZED_ACCEPT -D HTTPD_ROOT="/usr/local/apache" -D SUEXEC_BIN="/usr/local/apache/bin/suexec" -D DEFAULT_PIDLOG="logs/httpd.pid" -D DEFAULT_SCOREBOARD="logs/httpd.scoreboard" -D DEFAULT_LOCKFILE="logs/httpd.lock" -D DEFAULT_XFERLOG="logs/access_log" -D DEFAULT_ERRORLOG="logs/error_log" -D TYPES_CONFIG_FILE="conf/mime.types" -D SERVER_CONFIG_FILE="conf/httpd.conf" -D ACCESS_CONFIG_FILE="conf/access.conf" -D RESOURCE_CONFIG_FILE="conf/srm.conf" gcc version egcs-2.91.66 19990314/Linux (egcs-1.1.2 release) >Description: Problem appears to be within SuEXEC: Users with a dash (-) in their userid (NOT domain) get a 500 Internal Server Error. /etc/password and httpd.conf specify the proper username with the dash, however the suexec.log file shows: ... [2000-04-17 15:51:26]: notice: username/groupname mapping = stutzla/customer [2000-04-17 15:51:27]: notice: (www.stutz.com) -> stutzla [2000-04-17 15:51:27]: notice: username/groupname mapping = stutzla/customer [2000-04-17 15:51:28]: crit: invalid target user name: (stutzla) ... /etc/passwd: stutz-la:EPKcTh63jxcp.:2979:1001:customer:/mnt/netapp/home/stutz:/bin/sh .. and the VirtualHost entry clearly states: User stutz-la Group customer ... and I went ahead and replaced suexec with a shell script to log the command line options to a file... stutz-la customer test.cgi .. showing that Apache is passing the proper userid to suexec. Suexec is somehow filtering out -'s. >How-To-Repeat: Create a user and virtualhost with ScriptAlias for CGI with suexec. I am using name-based hosting, unknown if that is a factor. Userid associated with the virtualhost needs to have a - in it. Attempt to run a cgi, noting logfile entries. >Fix: I'm about to dive into support/suexec.c now...:-) >Release-Note: >Audit-Trail: State-Changed-From-To: open-closed State-Changed-By: marc State-Changed-When: Mon Apr 17 17:31:58 PDT 2000 State-Changed-Why: Closed by submitter request. From: Stephen Andrew Misel To: submit@bugz.apache.org, apache-bugdb@apache.org Cc: Subject: Re: suexec/6003: suEXEC seems to filter dashes in userids? Date: Mon, 17 Apr 2000 17:31:57 -0700 I managed to trace this down to a non-apache issue (change by a co-worker).. Please disregard this case. Thanks! -Steve At 12:10 AM 4/18/00 +0000, you wrote: >Thank you very much for your problem report. >It has the internal identification `suexec/6003'. >The individual assigned to look at your >report is: apache. > > >Category: suexec > >Responsible: apache > >Synopsis: suEXEC seems to filter dashes in userids? > >Arrival-Date: Mon Apr 17 17:10:00 PDT 2000 >Unformatted: >Quarter: >Keywords: >Date-Required: [In order for any reply to be added to the PR database, you need] [to include in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]