Problems running cacti correct

[Floezen]

Hi,

I am having some problems getting cacti to run and produce graphs.

First of all my configuration:
OpenSuse 10.3 with MySQL 5, PHP 5 and Apache 2 managed by Plesk 8.6.

I created a new user and domain with Plesk and installed cacti there.

My binary paths for all the apps needed seem to be /usr/bin/ (that's where I found them), so I pointed snmpwalk etc. to /usr/bin/snmpwalk etc.

After I got a "open_basedir restriction in effect" warning for the /usr/bin/ path, so I added it to the vhost configuration of this domain. (I'm wondering if this is very smart?! Isn't it a risk?)

Now there is no warning of this kind anymore, but in the "Cacti Settings (Paths)" I still get for all tools a "[ERROR: FILE NOT FOUND]" message...

In the "Technical Support" area it says
ERROR: Installed RRDTool version does not match configured version.
Please visit the Configuration Settings and select the correct RRDTool Utility Version.

The RRDTool Utility Version is set to 1.2.x, installed i 1.2.4 - that should work or?

And than I also get this Notice "Undefined index: user in /srv/www/vhosts/mydomain.org/httpdocs/lib/auth.php on line 34"

There seem to be some things not running the way they should... Any ideas whats running wrong?

Regards
Flözen

[NeMiSiS]

It's a bit of a first and I might be way wrong. The Apache thing doesn't seem too smart but I might be wrong as I dont know much about the option you inserted. from the command line you can use the which command. So if cacti is looking for the command rrdtool. you can go to the command line and tipe 'which rrdtool' it should return the path for the bin file your looking for.
Example:

Code: Select all

Serv:/var/lib/cacti # which rrdtool
/usr/bin/rrdtool

[Floezen]

It returns the paths I have already used:

Code: Select all

server:~> which rrdtool
/usr/bin/rrdtool
server:~> /usr/bin/rrdtool
RRDtool 1.2.23  Copyright 1997-2007 by Tobias Oetiker 
               Compiled Sep 21 2007 23:13:42
[...]

The attached picture shows the problem...

[TheWitness]

This is likely a permissions problem, or a PHP version problem. Check both. Or Apache may be jailed.

TheWitness

[Floezen]

Or Apache may be jailed.

Isn't it actually a good thing, when Apache hasn't access to everything?!

How can I free Apache? And is it possible to free apache only for one domain and maybe restrict it to some apps?

[Floezen]

Can't anybody help me?

[khufure]

How can I free Apache? And is it possible to free apache only for one domain and maybe restrict it to some apps?

You can copy the snmp libraries and binaries to the jail. Use of the command ldd $binary will show which libraries you need to copy.

However, I'm not sure jailing a process is a good idea for your first cacti install. It will complicate the install and make troubleshooting much more difficult.

[Floezen]

However, I'm not sure jailing a process is a good idea for your first cacti install. It will complicate the install and make troubleshooting much more difficult.

Actually I'm having already trouble with my server and was hoping to find the trouble with cacti...

But I'm not sure if it is very smart to reduce security on a production server.

I was hoping, that cati is some tool to work with, not to play with

[gandalf]

Or Apache may be jailed.

Isn't it actually a good thing, when Apache hasn't access to everything?!/quote]Yes, you are correct.
But cacti will use e.g. snmp to detect target host availabilty online (aka: using the httpd's userid). If httpd is NOT allowed to run those commands, cacti is nearly out of order. Same applies to calling rrdtool, which is a must for creating graphs.

That's why you should solve those (possible) permission problems

Reinhard