Just to expand a bit on something I should have elaborated:
There is exactly one member of the mailman group, the user mailman. When
the MTA or web server want to perform a mailman operation it invokes
what is called a wrapper. The wrappers are group mailman and are setgid,
this means the wrapper
On Tue, 2005-07-12 at 17:34 -0400, Poster wrote:
> Ok, according to the docs, if the account that runs CGI scripts is a
> member of the mailman group, then private archives can be seen by
> everyone. This is a bad thing. However, in order for apache to update
> files in the mailman paths (like lock
Ok, according to the docs, if the account that runs CGI scripts is a
member of the mailman group, then private archives can be seen by
everyone. This is a bad thing. However, in order for apache to update
files in the mailman paths (like locks and such), these files have to
be writable by the CGI
