Sorry Ashley, May be I am missing something here: The sticky bit is on the group id so the group stays as mailman.
-My webserver (apache) runs as nobody:nogroup -The config.db file has permissions -rw-rw---- (./ drwxrwsr-x) -mailman cron runs and changes nobody:mailman to mailman:mailman How can a webserver running as nobody:nogroup modify config.db once it becomes owned by mail:mail? .. it could (I suppose) if nobody somehow also run under group mail but this _can't_ be right. Or are there subtle things about the cgi scripts (SUID) that I do not know about when run with apache. Thanks for your help - I am determined to understand this. I did try your idea that all files should be owned by mail:mail and I just got the bug page (why has Printing of traceback and other system information has been explicitly inhibited?) and in the error file: Permission denied: '/var/lib/mailman/lists/test/config.db' permissions on this file: -rw-rw---- 1 mail mail *** Considering all the above I have found this in my /etc/fstab: # <file system> <mount point> <type> <options><dump> <pass> /dev/hda5 /usr ext2 rw 0 2 Should this be 'defaults'?--------------^^^ I am not an fstab expert but could THIS be my problem? the python executables likely reside here (as does apache) but not the mailman scripts - what do you think? perhaps "defaults" (that includes suid) may be a better option.. **** cheers scott On Tue, 19 Feb 2002, Ashley M. Kirchner wrote: > Scott Spence wrote: > > > But according to Ted's posting his config.db had the nobody:mailman > > permission - not the mailman:mailman permission - so when the cron is run > > the permissions will change from nobody:mailman to mailman:mailman > > (rw-rw----) right? > > My crontask runs as mailman.mailman, however the webserver runs as httpd.daemon. > Whenever something comes through over the web, config.db becomes httpd.mailman, >however as > soon as the next crontask runs, everything becomes mailman.mailman again. > > All the files ought to be owned by mailman.mailman, and the sticky bit should >help in > retaining the permissions even after the web server has changed. > > -- > W | I haven't lost my mind; it's backed up on tape somewhere. > +-------------------------------------------------------------------- > Ashley M. Kirchner <mailto:[EMAIL PROTECTED]> . 303.442.6410 x130 > IT Director / SysAdmin / WebSmith . 800.441.3873 x130 > Photo Craft Laboratories, Inc. . 3550 Arapahoe Ave. #6 > http://www.pcraft.com ..... . . . Boulder, CO 80303, U.S.A. > > > > > Scott Mobile: +34 65 337 8573 Fiona Mobile: +34 65 337 8574 ------------------------------------------------------ Mailman-Users maillist - [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users
