On Fri, 16 Dec 2016 11:10:00 -0500,
Mark Sapiro wrote:
>
> On 12/15/2016 10:48 PM, John Covici wrote:
> >
> > When I try to do anything on the web, I get permission denied error on
> > /var/lib/mailman/logs/error . If I then make that file world
> > read/write, I get permission denied error on config.pck of the list I
> > am trying to access.
> >
> > Now, everything under /var/lib/mailman is owned by mailman.mailman and
> > the cgi wrappers are all like the following:
> > -rwxr-sr-x 1 mailman mailman 10512 Nov 16 12:45
> > /usr/lib/mailman/cgi-bin/admin
>
>
> Probably the file system containing /usr/lib/mailman/cgi-bin/ is mounted
> with the 'nosuid' option so the SETGID bit on the wrapper is not effective.
>
> You could work around this by changing the ownership of everything to
> webuser:mailman where webuser is the user the web server runs the CGIs
> as, but better to mount the filsystem suid.
hmmm, the file system is mounted normally like this:
rpool/usr on /usr type zfs (rw,relatime,xattr,noacl)
and I verified that its capable of setting the bit according to its
properties.
--
Your life is like a penny. You're going to lose it. The question is:
How do
you spend it?
John Covici
cov...@ccs.covici.com
------------------------------------------------------
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe:
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
