On Wednesday, August 03, 2011 01:52:23 PM Mailman Admin wrote: > Hello Rekhesh Mohan > > On 08/03/2011 08:23 AM, Rekhesh Mohan wrote: > > I can now confirm that issue is with system/OS security and not > > with mailman. getgrgid()->gr_name returns meaningful value only if > > a member of "wheel" group calls it. I added my apache-user "www" > > to wheel group (his primary group is still www) and mailman is > > happy - web interface is working. I am not sure about the security > > implications of apache user being a member of wheel group. > > The wheel group is the group for all admins not named root! > > You never should give the apache user admin privileges. > If someone breaks into your apache she can overtake your whole > machine at once. > > I don't know freeBSD. Does it use something like SELinux?
Hi Christian, Sure :) I have already pulled out the www from wheel. That was one of the many things I have been trying out to understand the issue. I am new to freeBSD - There is nothing like selinux.. but it has some kernel security level setting, which is disabled on my system. Thanks! --R ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org
