Re: [Mailman-Users] Web Admin Security Question

On 5/23/2012 12:15 PM, Dennis Putnam wrote: > > I also figured out how to add debug info for the rewrite engine. I don't > know what is supposed to be there but here is what I got (the > implication being I must have the wrong condition or rule). > > 64.100.144.9 - - [23/May/2012:14:54:21 --0400]

Re: [Mailman-Users] Web Admin Security Question

On 5/23/2012 1:25 PM, Mark Sapiro wrote: > Dennis Putnam wrote: >> When I use http://... it brings up the correct page. As I said >> originally, everything works if I use http or if I manually use https. >> It is forcing https that doesn't. Once again it seems to be pointing to >> the rewrite engin

Re: [Mailman-Users] Web Admin Security Question

Dennis Putnam wrote: > >When I use http://... it brings up the correct page. As I said >originally, everything works if I use http or if I manually use https. >It is forcing https that doesn't. Once again it seems to be pointing to >the rewrite engine not working. When you use http://... and you

Re: [Mailman-Users] Web Admin Security Question

Hi Chris, Thanks for the reply. Yes, my SSL config is all working. Everything is fine if I manually use https. The problem is, using http is supposed to force https. I have not tried redirectmatch since I guess I didn't know about it until now. I'm not an Apache config expert so I'll have to inves

Re: [Mailman-Users] Web Admin Security Question

Hello Dennis, If you are using the CentOS 5 and installed Apache as part of the install, you should have a file called 'ssl.conf' in the '/etc/httpd/conf.d/' directory. Have you set up that file correctly? When I set up my system, I needed to make a few changes to that file. In my file, I have

Re: [Mailman-Users] Web Admin Security Question

Thanks and you are, of course, correct. I knew that but I was desperate to try to get something, anything, working. I did fix it but since the more generic version did not work, it is not a surprise that the more specific rule does not work either. Yes I did check all the logs I could thing of but

Re: [Mailman-Users] Web Admin Security Question

Dennis Putnam wrote: > >I assume you mean the entire mailman site as opposed to the entire web >site. No. I meant the entire web site. Just because you put something in /etc/httpd/conf.d/mailman.conf doesn't make it magically just apply to Mailman. It depends on where in httpd.conf that file is i

Re: [Mailman-Users] Web Admin Security Question

I assume you mean the entire mailman site as opposed to the entire web site. Yes, that is what I want. Yes, it SHOULD work but doesn't. The main problem is that there are no errors anywhere I can find and I have no idea how to debug this. Yes, I restarted httpd and even rebooted out of desperation

Re: [Mailman-Users] Web Admin Security Question

Dennis Putnam wrote: > >That didn't seem to help either. This is what is in >/etc/httpd/conf.d/mailman.conf > ># Directives for the mailman web interface > >RewriteEngine On >RewriteCond %{HTTPS} Off >RewriteRule ^(.*)$ https://%{HTTP_HOST}$1 [R,L] That should work assu

Re: [Mailman-Users] Web Admin Security Question

That didn't seem to help either. This is what is in /etc/httpd/conf.d/mailman.conf # Directives for the mailman web interface RewriteEngine On RewriteCond %{HTTPS} Off RewriteRule ^(.*)$ https://%{HTTP_HOST}$1 [R,L] Alias /pipermail/ "/var/lib/mailman/archives/public/"

Re: [Mailman-Users] Web Admin Security Question

It does for us. Thank you, Frank Bell Application Systems Admin ISS 785-670-2334 1 Cor 15:10 "By the grace of God I am what I am, and His grace toward me was not in vain . . .." On 5/21/2012 3:33 PM, Mark Sapiro wrote: Frank Bell wrote: Alias http://lists.washburn.edu/mailman/admin https:/

Re: [Mailman-Users] Web Admin Security Question

Dennis Putnam wrote: > >I did not quite understand the looping caveat in option one >so I tried the rewrite rule in option 2. That did not seem to do >anything but there was no indication in the instructions where that >should go. I have a .conf file that loads the SSL module and sets up the >certi

Re: [Mailman-Users] Web Admin Security Question

Frank Bell wrote: > >Alias http://lists.washburn.edu/mailman/admin >https://lists.washburn.edu/mailman/admin Does this actually work? Apache documentation states the target of an Alias is a file path or directory path, not a URL path. -- Mark Sapiro The highway is for gamblers, San Fra

Re: [Mailman-Users] Web Admin Security Question

sorry about that Alias http://lists.washburn.edu/mailman/admin https://lists.washburn.edu/mailman/admin Thank you, Frank Bell Application Systems Admin ISS 785-670-2334 1 Cor 15:10 "By the grace of God I am what I am, and His grace toward me was not in vain . . .." On 5/21/2012 9:30 AM,

Re: [Mailman-Users] Web Admin Security Question

try an alias Alias http://lists.washburn.edu/mailman/admin / https://lists.washburn.edu/mailman/admin / Thank you, Frank Bell Application Systems Admin ISS 785-670-2334 1 Cor 15:10 "By the grace

Re: [Mailman-Users] Web Admin Security Question

Thanks for the reply. Unfortunately I can't find any of this on the old server so I cannot understand what I did to make it work. I am not an Apache expert so I am having trouble with step 1 and hope someone can get me over this hump. I have SSL working as I can access the admin pages using https.

Re: [Mailman-Users] Web Admin Security Question

Dennis Putnam wrote: > >After migrating my OS from Mandriva to CentOS I noticed that SSL mailman >web access is no longer used. Is this something that is no longer >necessary or do I still have more configuring to do? Do I really need >SSL or is the management of web admin out of the box sufficient

[Mailman-Users] Web Admin Security Question

After migrating my OS from Mandriva to CentOS I noticed that SSL mailman web access is no longer used. Is this something that is no longer necessary or do I still have more configuring to do? Do I really need SSL or is the management of web admin out of the box sufficient? Thanks. signature.asc