Very Computer

I am having strange problems with Apache password authentication. I have
had this Basic auth working for almost a year now without any problems.
I have about 1600 users in one password file and about 10 users in one
group file.

In the group file in one group I have about 1300 users (there are about
9500 characters on one long line). Those who are in the end of the file,
get authentication failed message. Everything is OK until about 1200
users, users beginning from about 1210 can't get access. In characters
the limit on line length is at about 9300-9400 characters after what
added users don't work.

Is there a limit how many users can be in one line? In one password
file?

Should I maybe switch to DBM (although speed is for me quite good right
now)?

Running Apache 1.1.1 on Solaris 2.5 Sparc.

--
Juri Kaljundi

http://www.stallion.ee/

Then in your restriction you have:

require group group1 group2 group3

Alternatively, you could patch the Apache source to keep looking for
multiple group entries in the group file and have:

group: user1,user2,user3,...
group: user1001,user1002,user1003,...
...

That shouldn't be hard to do.

Cheers
----------------------------------------------------------------

Networking Consultant                            +61 0416 290866
Canberra Institute of Technology                  +61 6 207 4272

Juri Kaljundi

http://www.stallion.ee/

The solution was to change HUGE_STRING_LEN and MAX_STRING_LEN from 8192
to double the size (16384).

Now the server is probably not secure enough and many buffer overflow
attacks are possible but at least it works, until I have time to rewrite
our local utilities to use DBM files.

Juri Kaljundi

http://www.stallion.ee/