falling back to login screen
Hello, I am running mailman on a RH9 sever, which has qmail and apache. Everything was very fine since I installed mailman (it's been about 6 months). but lately, I can not make any changes using admin interface. Every single click on links or form submissions causes me to fall back to the login screen and no changes are saved. I cannot change membership preferences, or I can't approve/discard/reject/defer pending messages.
I searched through the list archives, but couldn't achieve to find the same prolem.
What I have recently done on the server was:
I updated httpd from 2.0.xxx to 2.0.40-21.11 I changed the permissions of all the files in /sbin /usr/bin /usr/sbin to o-x and back to o+x (don't ask me why...) Also, some files that had not o+x perm previously, have it now. I don't remember which were they.
And when I do ~mailman/bin/check_perms I only get: Warning: Private archive directory is other-executable (o+x). This could allow other users on your system to read private archives. If you're on a shared multiuser system, you should consult the installation manual on how to fix this. No problems found
Any help/idea will be appreciated.
Happy new year, and best wishes. Onur.
Yahoo! DSL Something to write home about. Just $16.99/mo. or less
Hi, I have posted the below question. I assume, most people couldn't notice. I need urgent feedback. Hope, I don't sound mean. Best regards. Onur.
"M. Onur ERGiN" <monurergin@yahoo.com> wrote: Hello, I am running mailman on a RH9 sever, which has qmail and apache. Everything was very fine since I installed mailman (it's been about 6 months). but lately, I can not make any changes using admin interface. Every single click on links or form submissions causes me to fall back to the login screen and no changes are saved. I cannot change membership preferences, or I can't approve/discard/reject/defer pending messages.
I searched through the list archives, but couldn't achieve to find the same prolem. And it is not related with cookies, situation is same in every computer.
What I have recently done on the server was:
I updated httpd from 2.0.xxx to 2.0.40-21.11 I changed the permissions of all the files in /sbin /usr/bin /usr/sbin to o-x and back to o+x (don't ask me why...) Also, some files that had not o+x perm previously, have it now. I don't remember which were they.
And when I do ~mailman/bin/check_perms I only get: Warning: Private archive directory is other-executable (o+x). This could allow other users on your system to read private archives. If you're on a shared multiuser system, you should consult the installation manual on how to fix this. No problems found
Any help/idea will be appreciated.
Happy new year, and best wishes. Onur.
Yahoo! DSL Something to write home about. Just $16.99/mo. or less
Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/monurergin%40yahoo.com
Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
Yahoo! for Good - Make a difference this year.
At 2:22 PM -0800 2005-12-31, M. Onur ERGiN wrote:
Hi, I have posted the below question. I assume, most people couldn't notice. I need urgent feedback. Hope, I don't sound mean.
Did you search the FAQ Wizard? Did you see FAQ 4.45? Did you
search the archives of the list?
-- Brad Knowles, <brad@stop.mail-abuse.org>
"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
LOPSA member since December 2005. See <http://www.lopsa.org/>.
Yes. As I mentioned in the question mail; I searched the FAQ wizard. I saw FAQ 4.45, I searched the archives of the list.
My problem is somehow related to httpd update or binaries in /usr/bin /usr/sbin or /sbin. Does mailman using anything placed in those directories? Because until those changes i have mentioned in the previous mail, everything was going fine. Onur.
Brad Knowles <brad@stop.mail-abuse.org> wrote: At 2:22 PM -0800 2005-12-31, M. Onur ERGiN wrote:
Hi, I have posted the below question. I assume, most people couldn't notice. I need urgent feedback. Hope, I don't sound mean.
Did you search the FAQ Wizard? Did you see FAQ 4.45? Did you search the archives of the list?
-- Brad Knowles,
"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
LOPSA member since December 2005. See .
Yahoo! DSL Something to write home about. Just $16.99/mo. or less
At 2:54 PM -0800 2005-12-31, M. Onur ERGiN wrote:
My problem is somehow related to httpd update or binaries in /usr/bin /usr/sbin or /sbin. Does mailmanusing anything placed in those directories? Because until those changes i have mentioned in the previous mail, everything was going fine.
Certainly, if something has changed your web server configuration
or the binaries for the web server, that would affect Mailman.
Other than the Python interpreter/compiler (wherever that is kept
on your machine), Mailman should not be making any use of any other binaries in /usr/bin, /usr/sbin, or /sbin, although it will almost certainly be using system libraries in /usr/lib, etc....
-- Brad Knowles, <brad@stop.mail-abuse.org>
"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
LOPSA member since December 2005. See <http://www.lopsa.org/>.
nah, nothing works. I've checked all off the binaries in bin's and sbin's. Also tryed the cookie modules of the web server and verified that they work.
From this point, would you have some recommendations? should I reinstall mailman? or should I start with trying reinstalling web server?
Thanks, Onur.
Brad Knowles <brad@stop.mail-abuse.org> wrote: At 2:54 PM -0800 2005-12-31, M. Onur ERGiN wrote:
My problem is somehow related to httpd update or binaries in /usr/bin /usr/sbin or /sbin. Does mailmanusing anything placed in those directories? Because until those changes i have mentioned in the previous mail, everything was going fine.
Certainly, if something has changed your web server configuration or the binaries for the web server, that would affect Mailman.
Other than the Python interpreter/compiler (wherever that is kept on your machine), Mailman should not be making any use of any other binaries in /usr/bin, /usr/sbin, or /sbin, although it will almost certainly be using system libraries in /usr/lib, etc....
-- Brad Knowles,
"Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
-- Benjamin Franklin (1706-1790), reply of the Pennsylvania
Assembly to the Governor, November 11, 1755
LOPSA member since December 2005. See .
Yahoo! Photos Ring in the New Year with Photo Calendars. Add photos, events, holidays, whatever.
M. Onur ERGiN wrote:
nah, nothing works. I've checked all off the binaries in bin's and sbin's. Also tryed the cookie modules of the web server and verified that they work.
From this point, would you have some recommendations? should I reinstall mailman? or should I start with trying reinstalling web server?
In a recent thread <http://mail.python.org/pipermail/mailman-users/2005-November/047677.html> this problem was caused a personal firewall on the affected computer. In your case, perhaps some more global, network firewall or proxy is involved.
Also, I know you said you saw FAQ 4.45, but since there were httpd changes, I would look at these very carefully to see if some redirect or other httpd change may be losing post data or cookies.
-- Mark Sapiro <msapiro@value.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
configuration of httpd is not changed. In this server, I also run sqwebmail, a cgi based user interface for maildirs, and it runs just perfect. I am sure, nothing is wrong with the post information.. And when I check the cookies, I just see the following hex data as mailman's cookies: 2802000000691b8fbd43732800000062363332363834313838613135333262393534636264633432616634373730316532353532316665
is there a way to verify this data?
And for the firewall, there is one in the network, but i also try to access the admin console from the lan. I don't think the network firewall would affect my server that way, but if it does so, is there a way to detect it?
Thanks, Onur.
Mark Sapiro <msapiro@value.net> wrote: M. Onur ERGiN wrote:
nah, nothing works. I've checked all off the binaries in bin's and sbin's. Also tryed the cookie modules of the web server and verified that they work.
From this point, would you have some recommendations? should I reinstall mailman? or should I start with trying reinstalling web server?
In a recent thread
this problem was caused a personal firewall on the affected computer. In your case, perhaps some more global, network firewall or proxy is involved.
Also, I know you said you saw FAQ 4.45, but since there were httpd changes, I would look at these very carefully to see if some redirect or other httpd change may be losing post data or cookies.
-- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
Yahoo! DSL Something to write home about. Just $16.99/mo. or less
M. Onur ERGiN wrote:
configuration of httpd is not changed. In this server, I also run sqwebmail, a cgi based user interface for maildirs, and it runs just perfect. I am sure, nothing is wrong with the post information.. And when I check the cookies, I just see the following hex data as mailman's cookies: 2802000000691b8fbd43732800000062363332363834313838613135333262393534636264633432616634373730316532353532316665
is there a way to verify this data?
What is the name of this cookie? It should be 'LISTNAME+admin'. The data is of the correct form (110 hex digits). For more info, see the comments at the beginning of Mailman/SecurityManager.py. I think it is highly unlikely that the cookie is set with invalid data. If there is any problem with the cookie, it would be that it isn't accepted or returned by the browser or that it is blocked somehow, not that the data would be wrong.
And for the firewall, there is one in the network, but i also try to access the admin console from the lan. I don't think the network firewall would affect my server that way, but if it does so, is there a way to detect it?
I agree that if you have the same problem from the local side if the firewall, then the firewall probably isn't involved.
-- Mark Sapiro <msapiro@value.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
The name of the cookie, is LISTNAME+admin Path: /mailman/ Send For: Any type of connection Expires: at end of session
Cookie seems correct. Also, again, this problem happens everywhere. Not just on one specific computer.
Another detail that may be useful is; one day my web server crashed, an it took some time to find out the problem. It was related to mod_mime_magic module. In the httpd.conf, there were a line: MIMEMagicFile /etc/httpd/conf/magic . This line was preventing me from starting the http service. and its status was : httpd stopped but subsys locked!
When I changed that line to "MimeMagicFile /etc/httpd/conf/magic " (MIME --> Mime) I could be able to start the web service, and it is now working fine. Can the problem be somehow related to mod_mime_magic ?? (I suppose, it shouldn't be)
Thanks, Onur.
Mark Sapiro <msapiro@value.net> wrote: M. Onur ERGiN wrote:
configuration of httpd is not changed. In this server, I also run sqwebmail, a cgi based user interface for maildirs, and it runs just perfect. I am sure, nothing is wrong with the post information.. And when I check the cookies, I just see the following hex data as mailman's cookies: 2802000000691b8fbd43732800000062363332363834313838613135333262393534636264633432616634373730316532353532316665
is there a way to verify this data?
What is the name of this cookie? It should be 'LISTNAME+admin'. The data is of the correct form (110 hex digits). For more info, see the comments at the beginning of Mailman/SecurityManager.py. I think it is highly unlikely that the cookie is set with invalid data. If there is any problem with the cookie, it would be that it isn't accepted or returned by the browser or that it is blocked somehow, not that the data would be wrong.
And for the firewall, there is one in the network, but i also try to access the admin console from the lan. I don't think the network firewall would affect my server that way, but if it does so, is there a way to detect it?
I agree that if you have the same problem from the local side if the firewall, then the firewall probably isn't involved.
-- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
Yahoo! Photos Ring in the New Year with Photo Calendars. Add photos, events, holidays, whatever.
M. Onur ERGiN wrote:
Another detail that may be useful is; one day my web server crashed, an it took some time to find out the problem. It was related to mod_mime_magic module. In the httpd.conf, there were a line: MIMEMagicFile /etc/httpd/conf/magic . This line was preventing me from starting the http service. and its status was : httpd stopped but subsys locked!
When I changed that line to "MimeMagicFile /etc/httpd/conf/magic " (MIME --> Mime) I could be able to start the web service, and it is now working fine. Can the problem be somehow related to mod_mime_magic ?? (I suppose, it shouldn't be)
Two things here. Apache directive names (as opposed to arguments) are case-insensitive, so your change above shouldn't make any difference. And, assuming /etc/httpd/conf/magic is the default, I don't think this could be involved.
If this were my problem, I would run a packet sniffer on the host and make sure that the cookie is being properly returned in the GET and POST requests.
Or I might start by modifying Mailman/Cgi/admin.py to log some additional debugging information - in particular, os.environ.get('HTTP_COOKIE').
-- Mark Sapiro <msapiro@value.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
nah, everything goes worse.. I have updated to 2.1.7 and now it does not even deliver the messages..
Anyway, Another interesting detail that I noticed is; when I click on Logout, and then try to login, it does not authenticates me directly, and I can enter the web interface after a second login. After that, as i have described before, each click requires re-login.
Anyone having idea??
Onur.
Mark Sapiro <msapiro@value.net> wrote: M. Onur ERGiN wrote:
Another detail that may be useful is; one day my web server crashed, an it took some time to find out the problem. It was related to mod_mime_magic module. In the httpd.conf, there were a line: MIMEMagicFile /etc/httpd/conf/magic . This line was preventing me from starting the http service. and its status was : httpd stopped but subsys locked!
When I changed that line to "MimeMagicFile /etc/httpd/conf/magic " (MIME --> Mime) I could be able to start the web service, and it is now working fine. Can the problem be somehow related to mod_mime_magic ?? (I suppose, it shouldn't be)
Two things here. Apache directive names (as opposed to arguments) are case-insensitive, so your change above shouldn't make any difference. And, assuming /etc/httpd/conf/magic is the default, I don't think this could be involved.
If this were my problem, I would run a packet sniffer on the host and make sure that the cookie is being properly returned in the GET and POST requests.
Or I might start by modifying Mailman/Cgi/admin.py to log some additional debugging information - in particular, os.environ.get('HTTP_COOKIE').
-- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan
Yahoo! Photos Showcase holiday pictures in hardcover Photo Books. You design it and well bind it!
participants (3)
-
Brad Knowles
-
M. Onur ERGiN
-
Mark Sapiro