« Return to Thread: Web Admin Security Question
Re: Web Admin Security Question
by Dennis Putnam-2
::
Rate this Message:
That didn't seem to help either. This is what is in
/etc/httpd/conf.d/mailman.conf
# Directives for the mailman web interface
RewriteEngine On
RewriteCond %{HTTPS} Off
RewriteRule ^(.*)$ https://%{HTTP_HOST}$1 [R,L]
Alias /pipermail/ "/var/lib/mailman/archives/public/"
ScriptAlias /mailman/ "/usr/lib/mailman/cgi-bin/"
# For the archives
<Directory "/var/lib/mailman/archives/public">
Options +FollowSymLinks
Order allow,deny
Allow from all
</Directory>
On 5/21/2012 4:38 PM, Mark Sapiro wrote:
> Dennis Putnam wrote:
>> I did not quite understand the looping caveat in option one
>> so I tried the rewrite rule in option 2. That did not seem to do
>> anything but there was no indication in the instructions where that
>> should go. I have a .conf file that loads the SSL module and sets up the
>> certificates. I added the rewrite code to that file.
>
> That's not where it belongs. One place to put it would be just ahead of
> wherever you have your Alias /pipermail/ and ScriptAlias /mailman/
> mailman directives in /etc/httpd/conf/httpd.conf or
> /etc/httpd/conf.d/mailman or wherever they are.
>
------------------------------------------------------
Mailman-Users mailing list Mailman-Users@...
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: http://mail.python.org/mailman/options/mailman-users/lists%40nabble.com
/etc/httpd/conf.d/mailman.conf
# Directives for the mailman web interface
RewriteEngine On
RewriteCond %{HTTPS} Off
RewriteRule ^(.*)$ https://%{HTTP_HOST}$1 [R,L]
Alias /pipermail/ "/var/lib/mailman/archives/public/"
ScriptAlias /mailman/ "/usr/lib/mailman/cgi-bin/"
# For the archives
<Directory "/var/lib/mailman/archives/public">
Options +FollowSymLinks
Order allow,deny
Allow from all
</Directory>
On 5/21/2012 4:38 PM, Mark Sapiro wrote:
> Dennis Putnam wrote:
>> I did not quite understand the looping caveat in option one
>> so I tried the rewrite rule in option 2. That did not seem to do
>> anything but there was no indication in the instructions where that
>> should go. I have a .conf file that loads the SSL module and sets up the
>> certificates. I added the rewrite code to that file.
>
> That's not where it belongs. One place to put it would be just ahead of
> wherever you have your Alias /pipermail/ and ScriptAlias /mailman/
> mailman directives in /etc/httpd/conf/httpd.conf or
> /etc/httpd/conf.d/mailman or wherever they are.
>
------------------------------------------------------
Mailman-Users mailing list Mailman-Users@...
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: http://mail.python.org/mailman/options/mailman-users/lists%40nabble.com
signature.asc (267 bytes) « Return to Thread: Web Admin Security Question
| Free embeddable forum powered by Nabble | Forum Help |
