Forum OpenACS Q&A: Re: inittab aolserver restart problem

Collapse
5: Re: inittab aolserver restart problem (response to 1)
Posted by Raul Rodriguez on 04/04/03 01:19 AM

Thank you for the replies. Joel, I checked the permissions and after doing the following: 

[root@localhost root]#  chown dude.web /home/dude/
[root@localhost root]#  chmod 770 /home/dude/
[root@localhost root]# ls -l /home/
total 8
drwxrwx---    4 dude     web          4096 Apr  3 15:09 dude
I was able to get aolserver to restart automatically. I rechecked the install instructions, but I did not see this step.


Lamar, I was just following the install instructions where it states: 

Locations: 

     We'll compile stuff in /usr/local/src 

     PostgreSQL will go into /usr/local/pgsql 

     AOLServer will go into /usr/local/aolserver 

     The web root will go into your home directory (e.g. /home/joeuser/web) 

None of these locations are set in stone - they're simply the values that
we've chosen. You are free to install your software in other locations, but
you'll need to adjust the instructions in this document to point to those
locations. 

Note that previous versions of this document recommended using /web for
the web root and running AOLserver as the nsadmin user. For security and
compatibility reasons, this is no longer recommended. 

This guide will use joeuser as a normal user. Substitute your own
username wherever you see joeuser.

and later on in the instructions it states: 
AOLserver needs to be started as the root user if you want to use port
80. Once it starts, though, it will drop the root privileges and run as
another user, which you must specify on the command line. It's
important that this user has as few privileges as possible. Why? Because
if an intruder somehow breaks in through AOLserver, you don't want him
to have any ability to do damage to the rest of your server. At the same
time, AOLserver needs to have write access to some files on your system
in order for OpenACS to function properly. So, we'll run AOLserver as the
nobody user and the web group. We'll add your regular user account to the
web group and make sure that OpenACS files are group readable and
writable. 

     Run these commands: 

     root:/usr/local/src# cd
     root:~# groupadd web
     root:~# adduser joeuser web
     root:~# exit

Thanks to everyone.