On 5/29/08 6:23 AM, Charles Marcus at [EMAIL PROTECTED] wrote: > On 5/28/2008, Brad Knowles ([EMAIL PROTECTED]) wrote: >> From /usr/local/mailman/Mailman/Defaults.py: >> >> # Normally when a site administrator authenticates to a web page with the >> site >> # password, they get a cookie which authorizes them as the list admin. It >> # makes me nervous to hand out site auth cookies because if this cookie is >> # cracked or intercepted, the intruder will have access to every list on the >> # site. OTOH, it's dang handy to not have to re-authenticate to every list >> on >> # the site. Set this value to Yes to allow site admin cookies. >> ALLOW_SITE_ADMIN_COOKIES = No > > Sorry, guess I should have looked a little closer... but thanks... > > I made the change and restarted mailman, and still have to log into each > list, so I'm guessing this only applies to new lists? I'll have to run a > command to make it apply to existing lists?
Is your site password the same as the list admin passwords? My playing around with the feature says the site admin password must be different from the list admin password. Otherwise, it will be authenticated as the list password, not the site password, and you'll need to log into the other lists. -- Larry Stone [EMAIL PROTECTED] http://www.stonejongleux.com/ ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
