[Mailman-Developers] Re: Mailman 2.1.30 webserver challenges

Mon, 20 Apr 2020 18:49:40 -0700 

On 4/20/20 6:30 PM, Thomas Coradeschi via Mailman-Developers wrote:
> All: trying to get an update from 2.1.20 to 2.1.30 working properly. We’ve 
> got mailman compiled and installed and lists seem to be working nominally, 
> but the web interface is simply not working, so hoping for some help here.
> 
> Attempting access via http://lists.ibmwr.org/mailman/admin/ results in the 
> browser returning “You don’t have permission to access this resource"
> 
> The following lines appear in /var/log/apache2/error.log
> 
> [Mon Apr 20 20:27:22.532588 2020] [authz_core:debug] [pid 12925] 
> mod_authz_core.c(809): [client 73.195.119.82:46636] AH01626: authorization 
> result of Require all denied: denied
> [Mon Apr 20 20:27:22.532633 2020] [authz_core:debug] [pid 12925] 
> mod_authz_core.c(809): [client 73.195.119.82:46636] AH01626: authorization 
> result of <RequireAny>: denied
> [Mon Apr 20 20:27:22.532646 2020] [authz_core:error] [pid 12925] [client 
> 73.195.119.82:46636] AH01630: client denied by server configuration: 
> /var/lib/mailman/cgi-bin/admin
> 
> Ownership and permissions for that binary *appear* OK to me (but clearly are 
> not?)
> 
> -rwxr-sr-x 1 list list 27280 Apr 20 06:45 /var/lib/mailman/cgi-bin/admin


This appears to be a web server issue rather than a Mailman issue. Did
you also upgrade Apache. Note that where older versions of Apache
required things like

<Directory "/var/lib/mailman/cgi-bin/">
    ...
    Order allow,deny
    Allow from all
</Directory>

Current Apache requires

<Directory "/var/lib/mailman/cgi-bin/">
    ...
    Require all granted
</Directory>

See "Run-Time Configuration Changes" at
<https://httpd.apache.org/docs/2.4/upgrading.html>.

-- 
Mark Sapiro <m...@msapiro.net>        The highway is for gamblers,
San Francisco Bay Area, California    better use your sense - B. Dylan
_______________________________________________
Mailman-Developers mailing list -- mailman-developers@python.org
To unsubscribe send an email to mailman-developers-le...@python.org
https://mail.python.org/mailman3/lists/mailman-developers.python.org/
Mailman FAQ: https://wiki.list.org/x/AgA3

Security Policy: https://wiki.list.org/x/QIA9

Reply via email to