Crafting software» apache2 http://davidlaing.com David Laing's thoughts on software development Wed, 01 Feb 2012 11:02:25 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 Apache2 on Ubuntu 8.04LTS; restrict access to PAM authenticated users http://davidlaing.com/2008/12/27/apache2-on-ubuntu-804lts-restrict-access-to-pam-authenticated-users/?utm_source=rss&utm_medium=rss&utm_campaign=apache2-on-ubuntu-804lts-restrict-access-to-pam-authenticated-users http://davidlaing.com/2008/12/27/apache2-on-ubuntu-804lts-restrict-access-to-pam-authenticated-users/#comments Sat, 27 Dec 2008 19:40:26 +0000 mrdavidlaing http://davidlaing.com/?p=140 I have a couple of static pages that I want to restrict access to.

I don’t want to manage another set of usernames & passwds, so I’d like apache2 to authenticate off the standard users on my system, via PAM.

To get this to work, you need to install and configure mod_auth_pam and mod_auth_shadow

aptitude install libapache2-mod-auth-pam libapache2-mod-auth-shadow

Ensure the www-data user is part of the shadow group, so apache2 can read the passwords

usermod -G shadow www-data

And set up the relevent virtual host:


                AuthPAM_Enabled On
                AuthShadow on
                AuthPAM_FallThrough Off
                AuthBasicAuthoritative Off
                AuthType Basic
                AuthName "Restricted to group: sysadmins"
                AuthUserFile /dev/null
                Require group sysadmins

Restart apache, and you’re done!

]]> http://davidlaing.com/2008/12/27/apache2-on-ubuntu-804lts-restrict-access-to-pam-authenticated-users/feed/ 0