[Mailman-Users] mailman on freeBSD 8.2: getgrgid error
Rekhesh Mohan
reks at iiap.res.in
Wed Aug 3 14:08:17 CEST 2011
On Wednesday, August 03, 2011 01:52:23 PM Mailman Admin wrote:
> Hello Rekhesh Mohan
>
> On 08/03/2011 08:23 AM, Rekhesh Mohan wrote:
> > I can now confirm that issue is with system/OS security and not
> > with mailman. getgrgid()->gr_name returns meaningful value only if
> > a member of "wheel" group calls it. I added my apache-user "www"
> > to wheel group (his primary group is still www) and mailman is
> > happy - web interface is working. I am not sure about the security
> > implications of apache user being a member of wheel group.
>
> The wheel group is the group for all admins not named root!
>
> You never should give the apache user admin privileges.
> If someone breaks into your apache she can overtake your whole
> machine at once.
>
> I don't know freeBSD. Does it use something like SELinux?
Hi Christian,
Sure :) I have already pulled out the www from wheel. That was one of
the many things I have been trying out to understand the issue.
I am new to freeBSD - There is nothing like selinux.. but it has some
kernel security level setting, which is disabled on my system.
Thanks!
--R
More information about the Mailman-Users
mailing list