[Mailman-Users] mailman and httpd vhost
Hey,
I've installed mailman and I'm trying to get webUI.
Fedora release 20 (Heisenbug)
mailman-2.1.18.1-1.fc20.x86_64
I have nginx as reverse proxy and vhost in apache for mailman.
/etc/nginx/conf.d/apache-proxy.conf
server {
listen 80 default_server;
server_name web.clanwars.org mm.clanwars.org;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
client_max_body_size 512M;
proxy_pass http://127.0.0.1:8080;
}
location ~ /\.ht {
deny all;
}
}
/etc/httpd/conf.d/mailman.conf
ServerName clanwars.org
ServerAlias mm.clanwars.org
ServerAdmin i.gnatenko.br...@gmail.com
AllowOverride None
Options ExecCGI
Require all granted
Options MultiViews FollowSymLinks
AllowOverride None
Require all granted
AddDefaultCharset Off
ScriptAlias /mailman/ /usr/lib/mailman/cgi-bin/
Alias /pipermail/ /var/lib/mailman/archives/public/
ScriptAlias mm.clanwars.org:8080 /usr/lib/mailman/cgi-bin/
# Uncomment the following line, replacing www.example.com with your server's
# name, to redirect queries to /mailman to the listinfo page (recommended).
# RedirectMatch ^/mailman[/]*$ http://mm.clanwars.org/mailman/listinfo
Trying to open mm.clanwars.org/mailman, mm.clanwars.org:8080/mailman
Always - "Not Found"
The requested URL /mailman was not found on this server.
In logs nothing interesting.
217.26.6.9 - - [08/Nov/2014:17:22:48 +0300] "GET /mailman HTTP/1.1"
404 205 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:33.0) Gecko/20100101
Firefox/33.0" "-"
/var/log/audit/audit.log is empty. SELinux in Enforcing state.
Thoughts?
--
-Igor Gnatenko
--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe:
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
Re: [Mailman-Users] mailman and httpd vhost
On 11/08/2014 06:29 AM, Igor Gnatenko wrote: > > ScriptAlias /mailman/ /usr/lib/mailman/cgi-bin/ > Alias /pipermail/ /var/lib/mailman/archives/public/ > ScriptAlias mm.clanwars.org:8080 /usr/lib/mailman/cgi-bin/ > > # Uncomment the following line, replacing www.example.com with your server's > # name, to redirect queries to /mailman to the listinfo page (recommended). > > # RedirectMatch ^/mailman[/]*$ http://mm.clanwars.org/mailman/listinfo > Trying to open mm.clanwars.org/mailman, mm.clanwars.org:8080/mailman > Always - "Not Found" > The requested URL /mailman was not found on this server. Your ScriptAlias is for /mailman/. Have you tried something like mm.clanwars.org/mailman/ or mm.clanwars.org/mailman/listinfo? The former probably won't work, but both it and mm.clanwars.org/mailman probably will if you actually uncomment the RedirectMatch. > In logs nothing interesting. > 217.26.6.9 - - [08/Nov/2014:17:22:48 +0300] "GET /mailman HTTP/1.1" > 404 205 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:33.0) Gecko/20100101 > Firefox/33.0" "-" how about /var/log/httpd/error_log? -- Mark Sapiro The highway is for gamblers, San Francisco Bay Area, Californiabetter use your sense - B. Dylan -- Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
[Mailman-Users] Unsubscribe Using Web Form
>> (2) It appears that the Subscription sequence always returns the contents >> of the file "subscribe.html". Is this in fact always the case? I tried to >> subscribe to email address "foo" and did not receive an error -- even >> though this is not a valid email address. I suppose I could validate the >> email address format with my PHP code and provide user feedback. >If you post an address like 'foo' to the subscribe CGI, you should get a >result like >Listname Subscription results >The email address you supplied is not valid. (E.g. it must contain an `@'.) >The validation is somewhat primitive and syntactic only, but it should >refuse to subscribe a syntactically valid address. >Did 'foo' actually get added to your list? 'foo' did not get added to the list as there is no way to for the system to send a validation email and get a response from the user. It appears that Posting: http:///mailman/subscribe/ with: email => fullname => email-button => "Subscribe" always returns the contents of the file "subscribe.html" even in the presence of an invalid address like 'foo'. This is easy for me to work around as I simply check that EMAIL_ADDRESS has a valid format before Posting. My Subscribe code is working well for both normal and error cases. >> (3) It appears the Unsubscribe sequence I created allows for anyone to >> unsubscribe anyone else -- all they need to know is an email address that >> is subscribed to the list. >This is exactly why Mailman does not allow unsubscribes without >authentication or confirmation. I am now a believer that validating Unsubscribe through the user's email is the correct approach for my application. I have code that works for the normal Unsubscribe case but am having problems with the error cases. Posting: http:///mailman/options/ with: email => login-unsub => "Unsubscribe" always returns the string "The confirmation email has been sent.". This is true even when the email address is not subscribed to the list -- this will likely be the case if the user mistypes their email address. I did another test that was even more confusing. I entered a valid email address that was not subscribed to the list. In this case the string "The confirmation email has been sent." was received by my code consistent with what I said above. The reality is the unsubscribe validation email is never sent in this case. This would be very confusing for the user and will likely result in an "I Need Help Unsubscribing!" email to our webmaster. I need to find a way to Post a CGI to Unsubscribe that tells my code if the EMAIL_ADDRESS is subscribed to the list and if a validation email was actually sent. I tried to Post: http:///mailman/options/ with: email => email-button => "Unsubscribe" this does not seem to work for the normal path. I feel like we are getting close. The good news is my solution is only 50 lines of code including the Subscribe / Unsubscribe on a single page. It might be interesting to others if we can get this last piece sorted out. Thanks again Mark! Greg -- Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
Re: [Mailman-Users] Unsubscribe Using Web Form
Mailman tries (and I think succeeds) at not letting an outsider know who is subscribed to a list (unless the list publishes its member list, then that list will reveal those who don't hide their email address.) If you want to help someone unsubscribe without them needing to use the confirmation email, you should first validate that the email address is theirs (maybe through having your own account system where they have confirmed that the email address is theirs), then, using the admin password, check the membership list for the email, and then you can use the web form to unsubscribe them, again using the admin password. -- Mailman-Users mailing list Mailman-Users@python.org https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
