[Mailman-Developers] [ mailman-Bugs-585229 ] opening holes by
changing permissions?
noreply@sourceforge.net
noreply@sourceforge.net
Mon, 22 Jul 2002 20:03:21 -0700
Bugs item #585229, was opened at 2002-07-22 22:03
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100103&aid=585229&group_id=103
Category: configuring/installing
Group: 2.1 beta
Status: Open
Resolution: None
Priority: 5
Submitted By: Paul Marshall (paulmarshll)
Assigned to: Nobody/Anonymous (nobody)
Summary: opening holes by changing permissions?
Initial Comment:
I was having problems adding a list in Mailman 2.1beta
via the web interface, it was giving me an error regarding
permissions to the mailman/data/aliases.db file.
This is the error I got:
...
File "/var/mailman/Mailman/MTA/Postfix.py", line 46, in
_update_maps
raise RuntimeError, msg % (acmd, status, errstr)
RuntimeError: command failed: /usr/sbin/postalias
/var/mailman/data/aliases (status: 1, Operation not
permitted)
To fix this I changed the permissions on this file so
apache could write to it.
chmod a+w aliases.db
This did fix the problem of creating and deleting lists via
the web interface.
Does anyone know if this would open up any security
holes?
Is there another way to fix the permissions problem that
is more logical?
Thanks for your help.
Paul Marshall
----------------------------------------------------------------------
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100103&aid=585229&group_id=103