On 12/15/2016 10:48 PM, John Covici wrote: > > When I try to do anything on the web, I get permission denied error on > /var/lib/mailman/logs/error . If I then make that file world > read/write, I get permission denied error on config.pck of the list I > am trying to access. > > Now, everything under /var/lib/mailman is owned by mailman.mailman and > the cgi wrappers are all like the following: > -rwxr-sr-x 1 mailman mailman 10512 Nov 16 12:45 > /usr/lib/mailman/cgi-bin/admin
Probably the file system containing /usr/lib/mailman/cgi-bin/ is mounted with the 'nosuid' option so the SETGID bit on the wrapper is not effective. You could work around this by changing the ownership of everything to webuser:mailman where webuser is the user the web server runs the CGIs as, but better to mount the filsystem suid. -- Mark Sapiro <m...@msapiro.net> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org