Bugs item #585776, was opened at 2002-07-24 04:17 You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=100103&aid=585776&group_id=103
Category: Web/CGI Group: 2.1 beta
Status: Closed Resolution: Fixed Priority: 5 Submitted By: Peer Heinlein (pheinlein) Assigned to: Nobody/Anonymous (nobody) Summary: no webauthentification possible
Initial Comment:
After updating to 2.1b some of our lists arent accessible for admins any more. Im using the
current cvs, but when they try to login
mailman crashes:
Traceback (most recent call last): File "/usr/lib/mailman/scripts/driver", line 82, in run_main main() File "/usr/lib/mailman/Mailman/Cgi/admin.py", line 82, in main cgidata.getvalue('adminpw', '')): File "/usr/lib/mailman/Mailman/SecurityManager.py", line 206, in WebAuthenticate ac = self.Authenticate(authcontexts, response, user) File "/usr/lib/mailman/Mailman/SecurityManager.py", line 159, in Authenticate elif crypt and crypt.crypt(response, secret[:2]) == secret: TypeError: argument 2 must be string without null bytes, not str
Comment By: Barry A. Warsaw (bwarsaw) Date: 2002-07-24 10:26
Message: Logged In: YES user_id=12800
I don't quite understand how you could have gotten a secret with null bytes in it, but I've added a try/except around the crypt() call to ignore this exception. If you get it, it's equivalent to a failed response.
For future reference, before upgrading to MM2.1, was USE_CRYPT set to 0 or 1?
You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=100103&aid=585776&group_id=103