[Mailman-Users] 2 initial config problems (virtual hostsandpermissions)

Tue Mar 1 21:50:47 CET 2005

FH wrote:

>Mark Sapiro wrote:
>> 
>> What's this? Do you mean
>> 
>> add_virtualhost('MACHINE', 'DOMAIN.TLD')
>>
>
>DOH!  You're right, typo in the email on my part.  I was using the correct
>entry in the mm_cfg file though.
> 
>> 
>> >but that's when I get the
>> >other "bug" page (apologies I don't have a copy handy but if it's 
>> >important I can probably regenerate it).
>> 
>> If it resulted after adding the above add_virtualhost() in mm_cfg.py, I
>> don't know why without seeing it.
>>
>
>I included the text from logs/error below[1].  If I'm reading that right, the
>two problems might actually be related, the first line is something about a
>permissions problem.
>

The add_virtualhost() line in mm_cfg.py does not cause this "error
report". It just fixes the problem with 'MACHINE' not being in the
VIRTUAL_HOSTS dictionary and allows the create script to proceed to
the point where it encounters this new error.

<snip>
>
>CREATE LIST VIA WEBPAGE -> Bug in Mailman version 2.1.6b4 We're sorry, we hit
>a bug! (error log below [1])
>
># ls -al data/  NOTE ALIASES REVERTED BACK TO ROOT
>total 44
>drwxrwsr-x   2 root     mailman      512 Mar  1 11:32 ./
>drwxrwsr-x  20 root     mailman      512 Feb 28 16:02 ../
>-rw-r-----   1 root     mailman       41 Feb 28 16:22 adm.pw
>-rw-rw----   1 root     mailman     1906 Mar  1 11:33 aliases
>-rw-r-----   1 mailman  mailman        0 Mar  1 11:32 aliases.dir
>-rw-r-----   1 mailman  mailman     1024 Mar  1 11:32 aliases.pag
>-rw-r--r--   1 root     mailman       10 Feb 28 16:07 last_mailman_version
>-rw-rw----   1 mailman  mailman        5 Feb 28 16:21 master-qrunner.pid
>-rw-r--r--   1 root     mailman    14110 Feb 28 16:02 sitelist.cfg
>
># bin/check_perms 
>No problems found
>
>I'm sure it's something simple/stupid I over looked, it usually is ;)  I can't
>for the life of me figure out what though.  Is it something w/ the web browser
>permissions/user maybe?  Should that user (nobody w/ one instance as root) be
>in the mailman group as well?

The error and trace information below seems to say that the create
script has finished creating the list and has called the Postscript
script to do the Postscript specific list stuff. This in turn has
added the alias information to the aliases file and is now trying to
execute the POSTFIX_ALIAS_CMD (/usr/sbin/postalias) to update the
alias map files.

The command appears to be complaining that the executing user (nobody)
doesn't own the alias file.

Mailman's security and permissions are based on the group. You will
note that both the mailman/ and mailman/data directories are group
"rws" group mailman, so the scripts which are running under group
'mailman' as set by the cgi-bin wrapper can do their things OK, but it
seems that Postfix's postalias command wants the executing user (not
group) to own the aliases file.

This is puzzling to me since the updated aliases file is owned by root,
I would guess that the user running the script was root and it seems
it should work.

What happens if you run postaliases manually? If you can figure out how
to make that work, you might be able to figure the rest.

Sorry for not being more specific. I really don't know much about the
Postfix stuff.

>[1]
>Mar 01 11:33:22 2005 (11039) command failed: /usr/sbin/postalias
>/local/home/mailman/data/aliases (status: 1, Not owner)
>Mar 01 11:33:22 2005 admin(11039):
>@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@ 
>admin(11039): [----- Mailman Version: 2.1.6b4 -----] 
>admin(11039): [----- Traceback ------] 
>admin(11039): Traceback (most recent call last):
>admin(11039):   File "/local/home/mailman/scripts/driver", line 101, in
>run_main
>admin(11039):     main()
>admin(11039):   File "/local/home/mailman/Mailman/Cgi/create.py", line 55, in
>main
>admin(11039):     process_request(doc, cgidata)
>admin(11039):   File "/local/home/mailman/Mailman/Cgi/create.py", line 227, in
>process_request
>admin(11039):     sys.modules[modname].create(mlist, cgi=1)
>admin(11039):   File "/local/home/mailman/Mailman/MTA/Postfix.py", line 232,
>in create
>admin(11039):     _update_maps()
>admin(11039):   File "/local/home/mailman/Mailman/MTA/Postfix.py", line 53, in
>_update_maps
>admin(11039):     raise RuntimeError, msg % (acmd, status, errstr)
>admin(11039): RuntimeError: command failed: /usr/sbin/postalias
>/local/home/mailman/data/aliases (status: 1, Not owner)
>admin(11039): [----- Python Information -----] 
>admin(11039): sys.version     =   2.3.5 (#1, Feb 28 2005, 12:33:10) 
>[GCC 3.4.2] 
>admin(11039): sys.executable  =   /usr/local/bin/python 
>admin(11039): sys.prefix      =   /usr/local 
>admin(11039): sys.exec_prefix =   /usr/local 
>admin(11039): sys.path        =   /usr/local 
>admin(11039): sys.platform    =   sunos5 
>admin(11039): [----- Environment Variables -----] 
>admin(11039):   HTTP_COOKIE:
>iPlanetPortalServer=YmlchoifpftnfneanBTBHG at uggcf@fcyvggre.vfv.rqh at 443@/arj 
>admin(11039):   SERVER_SOFTWARE: Apache/2.0.52 (Unix) 
>admin(11039):   SCRIPT_NAME: /mailman/create 
>admin(11039):   SERVER_SIGNATURE: <address>Apache/2.0.52 (Unix) Server at
>DOMAIN.TLD Port 80</address>
>admin(11039): 
>admin(11039):   REQUEST_METHOD: POST 
>admin(11039):   HTTP_KEEP_ALIVE: 300 
>admin(11039):   SERVER_PROTOCOL: HTTP/1.1 
>admin(11039):   QUERY_STRING:  
>admin(11039):   CONTENT_LENGTH: 151 
>admin(11039):   HTTP_ACCEPT_CHARSET: ISO-8859-1,utf-8;q=0.7,*;q=0.7 
>admin(11039):   HTTP_USER_AGENT: Mozilla/5.0 (Windows; U; Windows NT 5.0;
>en-US; rv:1.7.2) Gecko/20040804 Netscape/7.2 (ax) 
>admin(11039):   TZ: US/Eastern 
>admin(11039):   HTTP_REFERER: http://DOMAIN.TLD/mailman/create 
>admin(11039):   SERVER_NAME: DOMAIN.TLD
>admin(11039):   REMOTE_ADDR: x.x.x.x
>admin(11039):   SERVER_PORT: 80 
>admin(11039):   HTTP_XXXXXXXXXXXXXXX: XXXXXXXXXXXX 
>admin(11039):   SERVER_ADDR: x.x.x.x 
>admin(11039):   DOCUMENT_ROOT: /local/home/apache2/htdocs 
>admin(11039):   PYTHONPATH: /local/home/mailman 
>admin(11039):   SCRIPT_FILENAME: /local/home/mailman/cgi-bin/create 
>admin(11039):   SERVER_ADMIN: USER at DOMAIN.TLD
>admin(11039):   HTTP_HOST: DOMAIN.TLD 
>admin(11039):   HTTP_CONNECTION: keep-alive 
>admin(11039):   REQUEST_URI: /mailman/create 
>admin(11039):   HTTP_ACCEPT:
>text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
>
>admin(11039):   GATEWAY_INTERFACE: CGI/1.1 
>admin(11039):   REMOTE_PORT: 1558 
>admin(11039):   HTTP_ACCEPT_LANGUAGE: en-us,en;q=0.5 
>admin(11039):   CONTENT_TYPE: application/x-www-form-urlencoded 

--
Mark Sapiro <msapiro at value.net>       The highway is for gamblers,
San Francisco Bay Area, California    better use your sense - B. Dylan