<html><head></head><body><div style="color:#000; background-color:#fff; font-family:HelveticaNeue-Light, Helvetica Neue Light, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif;font-size:16px"><div id="yui_3_16_0_ym19_1_1488297453171_204494">I actually did a full reboot, and it is clearly stated at end of first mail. <br></div><div id="yui_3_16_0_ym19_1_1488297453171_204495"><br></div><div id="yui_3_16_0_ym19_1_1488297453171_204473"><span id="yui_3_16_0_ym19_1_1488297453171_204559">RHEL 7.3 , selinux is disabled.</span></div><div id="yui_3_16_0_ym19_1_1488297453171_204560"><span id="yui_3_16_0_ym19_1_1488297453171_204559"></span></div><div id="yui_3_16_0_ym19_1_1488297453171_204477" class="qtdSeparateBR"> # journalctl -t setroubleshoot --since=17:00<br id="yui_3_16_0_ym19_1_1488297453171_204646">-- No entries --<br id="yui_3_16_0_ym19_1_1488297453171_204647"><div id="yui_3_16_0_ym19_1_1488297453171_204657" dir="ltr"><br></div><div id="yui_3_16_0_ym19_1_1488297453171_204659" dir="ltr"><br></div><div dir="ltr" id="yui_3_16_0_ym19_1_1488297453171_205899">grep of http log for cgi only shows connection info when trying to access xymon-seccgi/enadis.sh </div><div id="yui_3_16_0_ym19_1_1488297453171_205900"><br></div><div id="yui_3_16_0_ym19_1_1488297453171_205901" dir="ltr">10.234.9.161 - - [02/Mar/2017:17:30:39 +0200] "GET /xymon-seccgi/enadis.sh HTTP/1.1" 200 24962 "http://ilxymonpoc1/xymon/POC-Environments/POC-Environments.html" "Mozilla/xxxxx; .0) Gecko/20100101 xxx"</div><div id="yui_3_16_0_ym19_1_1488297453171_205959" dir="ltr"><br></div><div id="yui_3_16_0_ym19_1_1488297453171_205994" dir="ltr">Thanks for your help.<br id="yui_3_16_0_ym19_1_1488297453171_205898"></div><div id="yui_3_16_0_ym19_1_1488297453171_205902" dir="ltr"><br></div></div><div style="display: block;" id="yui_3_16_0_ym19_1_1488297453171_204499" class="yahoo_quoted"> <div id="yui_3_16_0_ym19_1_1488297453171_204498" style="font-family: HelveticaNeue-Light, Helvetica Neue Light, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_ym19_1_1488297453171_204497" style="font-family: HelveticaNeue, Helvetica Neue, Helvetica, Arial, Lucida Grande, sans-serif; font-size: 16px;"> <div id="yui_3_16_0_ym19_1_1488297453171_204496" dir="ltr"> <font id="yui_3_16_0_ym19_1_1488297453171_204500" face="Arial" size="2"> <hr id="yui_3_16_0_ym19_1_1488297453171_204558" size="1"> <b><span style="font-weight:bold;">From:</span></b> "Root, Paul T" <Paul.Root@CenturyLink.com><br> <b><span style="font-weight: bold;">To:</span></b> 'Michael Resnick' <sys1002@yahoo.com>; "xymon@xymon.com" <xymon@xymon.com> <br> <b><span style="font-weight: bold;">Sent:</span></b> Thursday, March 2, 2017 4:43 PM<br> <b><span style="font-weight: bold;">Subject:</span></b> RE: [Xymon] Issues with no password prompt for admin cgi<br> </font> </div> <div id="yui_3_16_0_ym19_1_1488297453171_204501" class="y_msg_container"><br><div id="yiv7748624316"><style>#yiv7748624316 #yiv7748624316 --
_filtered #yiv7748624316 {font-family:Helvetica;panose-1:2 11 6 4 2 2 2 2 2 4;}
_filtered #yiv7748624316 {panose-1:2 4 5 3 5 4 6 3 2 4;}
_filtered #yiv7748624316 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;}
_filtered #yiv7748624316 {font-family:Tahoma;panose-1:2 11 6 4 3 5 4 4 2 4;}
#yiv7748624316
#yiv7748624316 p.yiv7748624316MsoNormal, #yiv7748624316 li.yiv7748624316MsoNormal, #yiv7748624316 div.yiv7748624316MsoNormal
{margin:0in;margin-bottom:.0001pt;font-size:12.0pt;}
#yiv7748624316 a:link, #yiv7748624316 span.yiv7748624316MsoHyperlink
{color:blue;text-decoration:underline;}
#yiv7748624316 a:visited, #yiv7748624316 span.yiv7748624316MsoHyperlinkFollowed
{color:purple;text-decoration:underline;}
#yiv7748624316 span.yiv7748624316EmailStyle17
{color:#1F497D;}
#yiv7748624316 .yiv7748624316MsoChpDefault
{font-size:10.0pt;}
_filtered #yiv7748624316 {margin:1.0in 1.0in 1.0in 1.0in;}
#yiv7748624316 div.yiv7748624316WordSection1
{}
#yiv7748624316 </style><div id="yui_3_16_0_ym19_1_1488297453171_204507">
<div id="yui_3_16_0_ym19_1_1488297453171_204506" class="yiv7748624316WordSection1">
<div id="yui_3_16_0_ym19_1_1488297453171_204544" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204543" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204542" style="font-size:11.0pt;">Ok, you don’ t make it easy on us. Didn’t answer any questions asked.
</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204541" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204505" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204504" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204503" style="font-size:11.0pt;">So, the only thing that is password protected is cgi-secure scripts. That’s fine.
</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204508" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204509" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204540" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204539" style="font-size:11.0pt;">I’ll ask again. Did you restart httpd?
</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204510" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_205884" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_205883" style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204511" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204562" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204561" style="font-size:11.0pt;">And follow up questions.</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204512" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204513" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204515" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204514" style="font-size:11.0pt;">Did you look in the httpd log files? Access and error?
</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204518" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204517" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204516" style="font-size:11.0pt;">Do you see a line in the access log that has a connection to a cgi-secure script without an user in the user
field?</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204523" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204692" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204691" style="font-size:11.0pt;">Any error message?</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204535" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204532" class="yiv7748624316MsoNormal"><font id="yui_3_16_0_ym19_1_1488297453171_204531" face="Calibri" color="#1f497d" size="2"><span id="yui_3_16_0_ym19_1_1488297453171_204530" style="font-size:11.0pt;">What OS are you running? If linux, is selinux enforcing? If yes, is there selinux errors trying to access the
xymonpasswd file?</span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204533" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_204534" class="yiv7748624316MsoNormal"><font face="Calibri" color="#1f497d" size="2"><span style="font-size:11.0pt;"> </span></font></div>
<div id="yui_3_16_0_ym19_1_1488297453171_205862">
<div id="yui_3_16_0_ym19_1_1488297453171_205861" style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in;">
<div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd10443"><div class="yiv7748624316MsoNormal"><b><font face="Tahoma" size="2"><span style="font-size:10.0pt;">From:</span></font></b><font face="Tahoma" size="2"><span style="font-size:10.0pt;"> Michael
Resnick [mailto:sys1002@yahoo.com] <br clear="none">
<b><span style="font-weight:bold;">Sent:</span></b> Thursday, March 02, 2017 3:53 AM<br clear="none">
<b><span style="font-weight:bold;">To:</span></b> xymon@xymon.com<br clear="none">
<b><span style="font-weight:bold;">Subject:</span></b> Re: [Xymon] Issues with no password prompt for admin cgi</span></font></div>
</div></div><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd51975">
</div></div><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd41970">
<div class="yiv7748624316MsoNormal"><font face="Times New Roman" size="3"><span style="font-size:12.0pt;"> </span></font></div>
</div><div><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd90216">
<div id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_155815">
<div class="yiv7748624316MsoNormal" style="background:white;"><font face="Helvetica" color="black" size="3"><span style="font-size:12.0pt;">Sending apache.conf as requested :</span></font></div>
</div>
<div id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_156566">
<div class="yiv7748624316MsoNormal" style="background:white;"><font face="Helvetica" color="black" size="3"><span style="font-size:12.0pt;"> </span></font></div>
</div>
</div><div id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157999"><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd18882">
</div><div class="yiv7748624316MsoNormal" style="background:white;"><font face="Helvetica" color="black" size="3"><span style="font-size:12.0pt;"></span></font></div><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd16534"><font face="Helvetica" color="black" size="3"> This is the main Apache HTTP server configuration file. It contains the<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157523" clear="none">
<br clear="none">
ScriptAlias /xymon-seccgi/ "/home/xymon/cgi-secure/"<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157915" clear="none">
<Directory "/home/xymon/cgi-secure"><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157916" clear="none">
AllowOverride None<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157917" clear="none">
Options ExecCGI Includes<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157918" clear="none">
<IfModule mod_authz_core.c><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157919" clear="none">
# Apache 2.4+<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157920" clear="none">
Require all granted<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157921" clear="none">
</IfModule><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157922" clear="none">
<IfModule !mod_authz_core.c><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157923" clear="none">
Order deny,allow<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157924" clear="none">
Allow from all<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157925" clear="none">
</IfModule><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157926" clear="none">
<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157927" clear="none">
# Password file where users with access to these scripts are kept.<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157928" clear="none">
# Although expected in $XYMONHOME/etc/ by the useradm and chpasswd<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157929" clear="none">
# scripts, files here can be read with the "config" message type, <br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157930" clear="none">
# which allows status-privileged clients to read arbitrary regular files <br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157931" clear="none">
# from the directory. <br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157932" clear="none">
# <br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157933" clear="none">
# This file should be owned and readable only by the apache server user,<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157934" clear="none">
# and ideally merely a symlink to a location outside of $XYMONHOME/etc/<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157935" clear="none">
# <br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157936" clear="none">
# Create it with:<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157937" clear="none">
# htpasswd -c /home/xymon/server/etc/xymonpasswd USERNAME<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157938" clear="none">
# chown apache:apache /home/xymon/server/etc/xymonpasswd<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157939" clear="none">
# chmod 640 /home/xymon/server/etc/xymonpasswd<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157940" clear="none">
# Add more users / change passwords with: "htpasswd /home/xymon/server/etc/xymonpasswd USERNAME"<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157941" clear="none">
#<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157942" clear="none">
# You can also use a group file to restrict admin access to members of a<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157943" clear="none">
# group, instead of anyone who is logged in. In that case you must setup<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157944" clear="none">
# the "xymongroups" file, and change the "Require" settings to require<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157945" clear="none">
# a specific group membership. See the Apache docs for more details.<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157946" clear="none">
<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157947" clear="none">
AuthUserFile /home/xymon/server/etc/xymonpasswd<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157948" clear="none">
AuthGroupFile /home/xymon/server/etc/xymongroups<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157949" clear="none">
AuthType Basic<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157950" clear="none">
AuthName "Xymon Administration"<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157951" clear="none">
<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157952" clear="none">
# "valid-user" restricts access to anyone who is logged in.<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157953" clear="none">
Require valid-user<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157954" clear="none">
<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157955" clear="none">
# "group admins" restricts access to users who have logged in, AND<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157956" clear="none">
# are members of the "admins" group in xymongroups.<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157957" clear="none">
# Require group admins<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157958" clear="none">
<br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157959" clear="none">
</Directory></font></div><font face="Helvetica" color="black" size="3"><br id="yiv7748624316yui_3_16_0_ym19_1_1488297453171_157960" clear="none">
<br clear="none">
</font>
</div>
</div>
</div>
<center>This communication is the property of CenturyLink and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately
notify the sender by reply e-mail and destroy all copies of the communication and any attachments.</center><div class="yiv7748624316yqt0190938848" id="yiv7748624316yqtfd40586">
</div></div></div><br><br></div> </div> </div> </div></div></body></html>