Re: [Mailman-Users] mailman problem after 2.1.5 -> 2.1.7 update

Hauke Fath wrote: > >Basically, both the .../mailman/listinfo and .../mailman/admin pages >have the URLs to the existing mailing lists wrong. They look like > >href="https://www.spg.tu-darmstadt.de/mailman/listinfo""/rt2-praktikum";>RT2-Praktikum > >-- note the extra pair of quotes between the base

Re: [Mailman-Users] any info on this reported exploit?

Mark Sapiro wrote: > Jim Popovitch wrote: >> OK, but what about the next one? What do Mailman system admins do, wait? > > Yes, I think so. The alternative is everyone goes off half-cocked and > you have a situation such as occurred about a year ago with the > CAN-2005-0202 issue

Re: [Mailman-Users] Virtual-domain support?

At 1/26/2006 10:38 PM, Mark Sapiro wrote: > >The followup question (assuming the above answer...which may or may not be > >a fair assumption): will this architecture ever be changed to remove this > >limitation? > >Yes again. I think you'll see it in Mailman 3, but as I'm sure you well >know, I ca

Re: [Mailman-Users] An interesting problem 2.1.6

Charles M. Owen wrote: >One of my users is getting the owner e-mail for some reason I can't figure >out. There are only two places (admin & Moderator) and He is not there. He >gets the request and the confirmation of the subscription. > >Where do I look? Generally, internally generated Mailman ow

Re: [Mailman-Users] Virtual-domain support?

Matt England wrote: > >So the question is: is there any move afoot to change Mailman to support >same list names across multiple domains? Yes. See . >Why can't Mailman index it's list names such that the domain name is >associated with the internal list name...

Re: [Mailman-Users] Virtual-domain support?

At 1/26/2006 09:43 PM, Mark Sapiro wrote: >There are some patches around. See >. >There is also a link to cPanel's patches at >. >But re

Re: [Mailman-Users] any info on this reported exploit?

Jim Popovitch wrote: > >OK, but what about the next one? What do Mailman system admins do, wait? Yes, I think so. The alternative is everyone goes off half-cocked and you have a situation such as occurred about a year ago with the CAN-2005-0202 issue . In this

[Mailman-Users] Sitewide headers/footers & XHTML Compliant Web UI

i have just uploaded a patch to Sourforge that allows you to set sitewide headers and footers for the Mailman 2.1.7 web UI, [ 1415956 ] Sitewide headers/footers & XHTML Compliant Web UI This patch was borne out of a request I received to make the Mailman UI fit the look of the web site. This patch

Re: [Mailman-Users] Determine List Bandwidth

On 22/01/06, Mark Sapiro <[EMAIL PROTECTED]> wrote: > >Also, is there someplace on Sourceforge that I can post this, so that > >everyone can "enjoy" it too? > > You can post it to the Mailman patches tracker. See I have now posted this file to the patch tracker [ 1415961 ] List bandwidth monitor

Re: [Mailman-Users] Virtual-domain support?

Matt England wrote: > >[EMAIL PROTECTED] and [EMAIL PROTECTED] (ie, same list name, different >domains, different lists/reflectors) will not work for the same Mailman >server...or at least, so I'm told. You are correct, at least as far as the standard 2.1.x distribution is concerned. There are s

Re: [Mailman-Users] Virtual-domain support?

Matt England wrote: > > sendmail. ** shudder ** Hey, no shudder here. I fully understand Sendmail, it works well and I sleep good at night. YMMV. > [... rest of stuff deleted, not sure why we are talking about an MTA > if it's a Mailman problem ...but yes, I know how to get my MTA to do > this

Re: [Mailman-Users] Virtual-domain support?

At 1/26/2006 09:09 PM, Jim Popovitch wrote: >That depends on a few things. For starters, does your MTA support >[EMAIL PROTECTED] AND [EMAIL PROTECTED] Yes. >If it does, then you will need to use the virtualization features of your >MTA to map each list to a unique local email account. Alrea

Re: [Mailman-Users] Virtual-domain support?

Matt England wrote: > At 1/26/2006 07:47 PM, Jim Popovitch wrote: >> I run multiple lists with Mailman, been doing so since v1.1 (or was it >> 1.2?). Anyway, virtual domains work for me. What virtual domain >> problem do you have with recent MM versions? > > [EMAIL PROTECTED] and [EMAIL PROTEC

[Mailman-Users] MMDSR was Re: any info on this reported exploit?

On 26/01/06, Tokio Kikuchi <[EMAIL PROTECTED]> wrote: > Brad Knowls' Daily Status Report should help in this respect. I really > want to rewrite it in python and include in the official cron jobs (if I > had enough time before the next release of mailman 2.2). Tokio, I'll take a stab at rewriti

Re: [Mailman-Users] Virtual-domain support?

At 1/26/2006 07:47 PM, Jim Popovitch wrote: >I run multiple lists with Mailman, been doing so since v1.1 (or was it >1.2?). Anyway, virtual domains work for me. What virtual domain problem >do you have with recent MM versions? [EMAIL PROTECTED] and [EMAIL PROTECTED] (ie, same list name, differ

Re: [Mailman-Users] any info on this reported exploit?

Brad Knowles wrote: > > Fortunately, in this case it is a known issue (which others have > apparently decided to portray in a very different way), and which has > already been addressed (as described by Tokio). OK, but what about the next one? What do Mailman system admins do, wait? -Jim

Re: [Mailman-Users] Virtual-domain support?

Matt England wrote: > I've been away from the list for a while, and am curious: > > Will "virtual domains" support be included in Mailman 2.2...if they are not > already? > > By "virtual domain" support I mean the ability to support email lists from > multiple domains via one GNUMailman install

[Mailman-Users] An interesting problem 2.1.6

One of my users is getting the owner e-mail for some reason I can't figure out. There are only two places (admin & Moderator) and He is not there. He gets the request and the confirmation of the subscription. Where do I look? Help! Charles --

[Mailman-Users] Virtual-domain support?

I've been away from the list for a while, and am curious: Will "virtual domains" support be included in Mailman 2.2...if they are not already? By "virtual domain" support I mean the ability to support email lists from multiple domains via one GNUMailman installation on one server. I manage vi

Re: [Mailman-Users] How to avoid dup copies to *multiple* email lists?

Thanks for the quick and thorough reply. At 1/26/2006 06:41 PM, Tokio Kikuchi wrote: >Do you want this feature? >http://sourceforge.net/tracker/index.php?func=detail&aid=1347962&group_id=103&atid=300103 From what I can read from the above link, I say yes. >I plan to integrate it in mailman-2.2.

[Mailman-Users] Problem with Postfix and default mailbox

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi there, I have a working mailman and postfix installation. in my postfix config I have a virtual user alias for my domain which allows me to get all mail which has no explicit EMail-Box goes to one default box [EMAIL PROTECTED]-> mailbox1 this

Re: [Mailman-Users] How to avoid dup copies to *multiple* email lists?

Matt England wrote: > How can someone subscribed to 2 (or more) emails lists from the same > GNUMailman email server avoid duplicate copies of emails that are sent to > both (or more) of these email lists? Do you want this feature? http://sourceforge.net/tracker/index.php?func=detail&aid=1347962

Re: [Mailman-Users] prevent address spoofs [dnk]

Dustin Krysak wrote: > Good day -- I am looking at using mailman for a list that will just > have 1 -4 addresses that will be authorized to actually post to the > list. I am also looking for a way to manage list members with a web > interface as well as the usual subscription type functions.

Re: [Mailman-Users] any info on this reported exploit?

At 5:53 PM -0500 2006-01-26, Jim Popovitch wrote: > Fair enough. I would like to find a way for myself (and other Mailman > admins) to be in that appropriate place. This doesn't mean all Mailman > users, perhaps their should be a pre-screened > [EMAIL PROTECTED] list. IMO, this is t

Re: [Mailman-Users] How to avoid dup copies to *multiple* email lists?

At 1/26/2006 05:45 PM, Matt England wrote: >My 2.1.6-rc2 server Actually, it's a 2.1.6rc4 server. Sorry for any confusion. -Matt -- Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mail

[Mailman-Users] How to avoid dup copies to *multiple* email lists?

How can someone subscribed to 2 (or more) emails lists from the same GNUMailman email server avoid duplicate copies of emails that are sent to both (or more) of these email lists? My 2.1.6-rc2 server simply sends me multiple emails in such a case, even though I have the "avoid duplicates" set o

Re: [Mailman-Users] prevent address spoofs [dnk]

Dustin Krysak wrote: > Good day -- I am looking at using mailman for a list that will just > have 1 -4 addresses that will be authorized to actually post to the > list. I am also looking for a way to manage list members with a web > interface as well as the usual subscription type functions.

[Mailman-Users] prevent address spoofs [dnk]

Good day -- I am looking at using mailman for a list that will just have 1 -4 addresses that will be authorized to actually post to the list. I am also looking for a way to manage list members with a web interface as well as the usual subscription type functions. Now one of my main concern

Re: [Mailman-Users] any info on this reported exploit?

Brad Knowles wrote: > At 3:28 PM -0500 2006-01-26, Jim Popovitch wrote: > >> OK, that makes some sense to keep it hush-hush for a while. HOWEVER, >> what >> is the process for notifying Mailman admins of temporary workarounds for >> this and any other situation? I honestly don't want to wait

Re: [Mailman-Users] any info on this reported exploit?

At 3:28 PM -0500 2006-01-26, Jim Popovitch wrote: > OK, that makes some sense to keep it hush-hush for a while. HOWEVER, what > is the process for notifying Mailman admins of temporary workarounds for > this and any other situation? I honestly don't want to wait for an > official patch if th

Re: [Mailman-Users] any info on this reported exploit?

At 4:40 PM -0500 2006-01-26, Jim Popovitch wrote: >> >>http://sourceforge.net/tracker/index.php?func=detail&aid=1123383&group_id=103&atid=300103 > > Excellent addition to Mailman. I presume this will wind up in the > distribution one day? There is a slightly older version of the scrip

Re: [Mailman-Users] any info on this reported exploit?

Tokio Kikuchi wrote: > [snip] > > This is the mechanism of "Denial of Service". Thank you Tokio for the very detailed info. > Therefore, the site administrator should check the qfiles/shunt > directory and the logs/error file periodically. > > Brad Knowls' Daily Status Report should help in t

Re: [Mailman-Users] any info on this reported exploit?

Thank you for your prompt response and suggestion! ~~~ Diana Mayer Orrick email: [EMAIL PROTECTED] University Computing Services ph: (850) 644-2591 Florida State University fax: (850) 644-8722 ~

Re: [Mailman-Users] any info on this reported exploit?

Hi, Diana Orrick wrote: > http://www.securityfocus.com/bid/16248/discuss > > GNU Mailman Large Date Data Denial Of Service Vulnerability > > GNU Mailman is prone to a denial of service attack. This issue affects the > email date parsing functionality of Mailman. > > The vulnerability could be t

Re: [Mailman-Users] any info on this reported exploit?

Brad Knowles wrote: > All security-related questions should be handled in accordance > with FAQ 1.27, see > . OK, that makes some sense to keep it hush-hush for a while. HOWEVER, what is the process for notifying Mailm

Re: [Mailman-Users] any info on this reported exploit?

At 1:05 PM -0500 2006-01-26, Diana Orrick wrote: > http://www.securityfocus.com/bid/16248/discuss > > GNU Mailman Large Date Data Denial Of Service Vulnerability > > GNU Mailman is prone to a denial of service attack. This issue affects the > email date parsing functionality of Mailman. > > T

Re: [Mailman-Users] denying mbox AND txt archives

And I have now added this info to the MM FAQ as 4.66. disabling "bulk" pipermal archive files (.mbox and .txt) ** -Jim P. Jim Popovitch wrote: > OK, I solved my own problem with > > this bit of Apache config: > RedirectMatch permanent /mailman/private/.*/.*\.txt /mailman/ > Red

[Mailman-Users] any info on this reported exploit?

http://www.securityfocus.com/bid/16248/discuss GNU Mailman Large Date Data Denial Of Service Vulnerability GNU Mailman is prone to a denial of service attack. This issue affects the email date parsing functionality of Mailman. The vulnerability could be triggered by mailing list posts and will

Re: [Mailman-Users] mailman problem after 2.1.5 -> 2.1.7 update

At 6:46 PM +0100 2006-01-26, Hauke Fath wrote: > I haven't found a way of tweaking this and assume that the list URLs > are made up dynamically by the cgi script (rather, binary). > > Does anybody else see this? Any pointers? The URLs are probably messed up in your mm_cfg.py (mailman

[Mailman-Users] mailman problem after 2.1.5 -> 2.1.7 update

Hi, I am seeing a problem with mail/mailman after updating an existing 2.1.5 installation to 2.1.7nb1. This is a NetBSD pkgsrc setup; an update leaves changed config files and the lists database around and installs the new binaries, scripts etc., just like you'd do a manual update. Basically,

Re: [Mailman-Users] Responses getting through to one-way list

At 12:01 PM -0500 2006-01-26, David Ellsworth wrote: > I'm running Mailman on a xserve Tiger install and I thought I had it set up > to deny all attempts to post to the list, but recently several posts are > getting through to the whole list. Are there specific instructions on how to > prevent

[Mailman-Users] Responses getting through to one-way list

I'm running Mailman on a xserve Tiger install and I thought I had it set up to deny all attempts to post to the list, but recently several posts are getting through to the whole list. Are there specific instructions on how to prevent this and insure a one-way list? Thanks in advance! David --

Re: [Mailman-Users] Regenerate the archives index.html file

At 9:56 AM -0600 2006-01-26, Kyle Pinkley wrote: > I am working with a server where some of the html pages got defaced via the > "NeverEverNoSanity" (old) worm). One of the pages that got defaced was the > index.html page of one of the archives > (/mailman/archives/public/list_name). How can

[Mailman-Users] Regenerate the archives index.html file

Hello, I am working with a server where some of the html pages got defaced via the "NeverEverNoSanity" (old) worm). One of the pages that got defaced was the index.html page of one of the archives (/mailman/archives/public/list_name). How can I regenerate this file? Thanks in advance.

Re: [Mailman-Users] Mailman, Postfix and MySQL-based virtual domains

Hi, You could check the "Web-Cyradm and Mailman Integration HOWTO" - http://archives.free.net.ph/message/20050828.134201.19d55b0e.en.html I've wrote some time ago. This should solve your problem. Best Regards, Leon Kolchinsky -Original Message- From: Mark Sapiro [mailto:[EMAIL PROTECTE

Re: [Mailman-Users] pgp key E099F769?

On Thu, 26 Jan 2006, Tokio Kikuchi wrote: > [EMAIL PROTECTED] wrote: >> Hi, >> >> 2.1.7 is signed by key-id E099F769, but i can't find that key anywhere! >> >> can someone put it on the public keyservers pls? >> > > Sorry for the inconvenience. Now it can be found at: > http://keyserver.veridi