On 4/20/20 6:30 PM, Thomas Coradeschi via Mailman-Developers wrote: > All: trying to get an update from 2.1.20 to 2.1.30 working properly. We’ve > got mailman compiled and installed and lists seem to be working nominally, > but the web interface is simply not working, so hoping for some help here. > > Attempting access via http://lists.ibmwr.org/mailman/admin/ results in the > browser returning “You don’t have permission to access this resource" > > The following lines appear in /var/log/apache2/error.log > > [Mon Apr 20 20:27:22.532588 2020] [authz_core:debug] [pid 12925] > mod_authz_core.c(809): [client 73.195.119.82:46636] AH01626: authorization > result of Require all denied: denied > [Mon Apr 20 20:27:22.532633 2020] [authz_core:debug] [pid 12925] > mod_authz_core.c(809): [client 73.195.119.82:46636] AH01626: authorization > result of <RequireAny>: denied > [Mon Apr 20 20:27:22.532646 2020] [authz_core:error] [pid 12925] [client > 73.195.119.82:46636] AH01630: client denied by server configuration: > /var/lib/mailman/cgi-bin/admin > > Ownership and permissions for that binary *appear* OK to me (but clearly are > not?) > > -rwxr-sr-x 1 list list 27280 Apr 20 06:45 /var/lib/mailman/cgi-bin/admin
This appears to be a web server issue rather than a Mailman issue. Did you also upgrade Apache. Note that where older versions of Apache required things like <Directory "/var/lib/mailman/cgi-bin/"> ... Order allow,deny Allow from all </Directory> Current Apache requires <Directory "/var/lib/mailman/cgi-bin/"> ... Require all granted </Directory> See "Run-Time Configuration Changes" at <https://httpd.apache.org/docs/2.4/upgrading.html>. -- Mark Sapiro <m...@msapiro.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan _______________________________________________ Mailman-Developers mailing list -- mailman-developers@python.org To unsubscribe send an email to mailman-developers-le...@python.org https://mail.python.org/mailman3/lists/mailman-developers.python.org/ Mailman FAQ: https://wiki.list.org/x/AgA3 Security Policy: https://wiki.list.org/x/QIA9