[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Apache2.2 + LDAP + SVN not actively authenticating

From: Bradley Wagner <bradley.wagner_at_hannonhill.com>
Date: 2006-12-18 23:28:50 CET

I was looking in the wrong log file before but the error_log for
apache is giving the following for every SVN request:

[Mon Dec 18 17:24:16 2006] [notice] child pid 18014 exit signal
Segmentation fault (11)

even though nothing is generated in the ssl_error_log. Is this likely
a problem with my apache installation and ldap module? I'm using the
defaults that come when you "yum install apache" on FC5.

Bradley

On Dec 18, 2006, at 4:24 PM, Bradley Wagner wrote:

> I should revise this statement. I thought it was ALWAYS
> authenticating because it was getting to blank screen in a web
> browser, but in reality it maybe that it's NEVER authenticating,
> because I'm not able to connect at all when using Subclipse to
> browser the repository.
>
> I noticed that with this configuration the requests in the /var/log/
> httpd/ssl_access_log never have a user associated with them as they
> do when I just do a regular old password file authentication.
>
> Bradley
>
> On Dec 18, 2006, at 3:58 PM, Bradley Wagner wrote:
>
>> I'm having a hella of a time getting this to work. I'll admit that
>> I know very little about LDAP/AD but the file seems so easy:
>>
>> <Location /svn/>
>> DAV svn
>> SVNParentPath /usr/local/svn/repos
>> SVNListParentPath on
>> AuthzSVNAccessFile /usr/local/svn/conf/svn-access-file
>> SSLRequireSSL
>> AuthType Basic
>> AuthName "Our SVN"
>>
>> AuthBasicProvider ldap
>> AuthzLDAPAuthoritative Off
>> AuthLDAPURL ldap://ourip:389/OU=Employees,DC=company,DC=com?
>> sAMAccountName
>> AuthLDAPBindDN "CN=Bradley Wagner,OU=Employees,DC=company,DC=com"
>> AuthLDAPBindPassword ######
>>
>> Require valid-user
>> </Location>
>>
>> I've changed some of the critical pieces of information as to hide
>> them but that's basically it. I'm authenticating against an AD
>> server running on windows server 2000. Basically, no matter what
>> username/password I put in, it's *ALWAYS* authenticating the user.
>> Has anyone seen this before?
>>
>> I was concerned that my query was incorrect, but I've tried in a
>> number of external tools and seems fine. I turned off
>> AuthzLDAPAuthortiative because I'm using "require valid-user" and
>> not one of the ldap specific ones.
>>
>> Anyone see any problems with this? I have tried doing the same
>> auth-ing in a separate <location> that is not using SVN at all and
>> am getting the same results (any user/pass will be allowed in).
>>
>> Bradley
>>
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
>> For additional commands, e-mail: users-help@subversion.tigris.org
>>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
> For additional commands, e-mail: users-help@subversion.tigris.org
>

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Dec 18 23:29:32 2006

This is an archived mail posted to the Subversion Users mailing list.