Configuring Swat Revisited
Ed Cheng
edmcheng at hotmail.com
Fri Mar 9 14:04:35 GMT 2001
Actually my problem is the bug for Redhat 7.0. Once I change the
/etc/xinetd.d/swat file:
only_from = localhost
to
only_from = 127.0.0.1
And restart the xinetd. I can use SWAT.
Thanks,
Edmond
----- Original Message -----
From: "Andrew Bartlett" <abartlet at pcug.org.au>
To: "Edmond Cheng" <edmcheng at hotmail.com>
Cc: "Russ Brucks" <russb at kfoc.net>; "Sean Cornelius" <stcornelius at Tusk.Edu>;
"samba" <samba at us5.samba.org>
Sent: Tuesday, March 06, 2001 1:14 AM
Subject: Re: Configuring Swat Revisited
> Edmond Cheng wrote:
> >
> > Still I can't get SWAT working.
> >
> > I change the httpd.conf in your mail. This time the Netscape returns
error
> > message, "A network error occurred while Netscape was receiving data.
> > (Network error: Broken pipe) Try connecting again"
> >
> > Regards,
> > Edmond
>
> Probably becouse SWAT does NOT use apache. SWAT cannot run under
> apache. Why? A properly configured apache installation runs as user
> nobody (or equiv), SWAT must run as ROOT, as it needs to read/write
> /etc/smb.conf, /etc/smbpasswd and to validate your identity in
> /etc/shadow.
>
> SWAT uses its own internal web-server, basicly pumping raw HTTP at a
> port (not that hard actualy). It does this becouse it needs to run as
> root, and no sane sysadmin runs web-servers as root. (The other option,
> making it set-uid root, is unappealing becouse of the security
> implications).
>
> SWAT can be enabled in /etc/inetd.conf or /etc/xinetd.d/swat, and can
> use SSL for added privacy. See other e-mails in this thread for
> configuration examples. I recomend only allowing acces from localhost.
>
> Hope this clarifies things,
> Andrew Bartlett
>
> --
> Andrew Bartlett
> abartlet at pcug.org.au
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: http://lists.samba.org/mailman/listinfo/samba
>
More information about the samba
mailing list