Hi all. I'm wondering if anybody has devised a way to authenticate to the admin/moderator interfaces in Mailman using browser certificates. We try to use them to authenticate to web services wherever possible, and have a fairly widely deployed PKI at my site.
It seems like this should be possible, but I really don't know python and am not very familiar with Mailman's code. We use Apache and mod_ssl, which means that we can make a bunch of environment variables associated with the certificates available to Mailman. In particular, we can find out the email address of the user. It seems like we should be able to look for that email address in the list of admin or moderator addresses and consider the user to be authenticated if it's there. The web server is already doing the necessary work to verify that the certificate is valid, so everything presented to Mailman should be trustworthy. Any help would be much appreciated. noah -- Noah Meyerhans System Administrator MIT Computer Science and Artificial Intelligence Laboratory
signature.asc
Description: Digital signature
------------------------------------------------------ Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ This message was sent to: [EMAIL PROTECTED] Unsubscribe or change your options at http://mail.python.org/mailman/options/mailman-users/archive%40jab.org
