Re: You don't have permission to access /pipermail/ on this server.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> > > > mailman-2.1.7
> > > > apache 2.2.0
> > > > 
> > > > Okay I just upgrade from apache 1.3.x to apache 2.2.0 and arriving at a
> > > > permissions problem when viewing pipermail mailman directories.  
> > > > 
> > > > 
> > > > 
> > > > --- Browser error message ---
> > > > 
> > > > You don't have permission to access /pipermail/list/ on this server.
> > > > Additionally, a 403 Forbidden error was encountered while trying to use an
> > > > ErrorDocument to handle the request.
> > > > 
> > > > --- snip ---
> > > > 
> > > > Here is what apache places in the error_log:
> > > > 
> > > > --- snip ---
> > > > 
> > > > Symbolic link not allowed or link target not accessible:
> > > > /usr/home/mailman/archives/public/list, referer:
> > > > http://hostname.garbled.com/mailman/listinfo/list
> > > > 
> > > > ---- snip ----
> > > > 
> > > > 
> > > > Here is what I've done so far:
> > > > 
> > > > ---- apache httpd.conf file ----
> > > > 
> > > > in the virtual host stanza
> > > > 
> > > >         ScriptAlias /mailman/ /usr/home/mailman/cgi-bin/
> > > >         Alias /pipermail/ /usr/home/mailman/archives/public/
> > > >         Alias /icons/ /usr/home/mailman/icons/
> > > >         <Directory /usr/home/mailman/archives/public/>
> > > >                   Options +FollowSymlinks
> > > >                   Allow from all 
> > > >         </Directory>
> > > > 
> > > > --- snip ---
> > > > 
> > > > then restarted apache.
> > > > 
> > > > --- snip ---
> > > > 
> > > > looks like the directories have proper permissions:
> > > > typhoon# ls -ld /usr/local/mailman/archives/private
> > > > drwxrws---  103 mailman  mailman  2560 Apr 21 21:49
> > > > /usr/local/mailman/archives/private
> > > > typhoon# ls -ld /usr/local/mailman/archives/public/
> > > > drwxrwsr-x  2 mailman  mailman  1536 Apr 21 21:49
> > > > /usr/local/mailman/archives/public/
> > > > typhoon# ls -ld /usr/local/mailman/archives/public/list
> > > > lrwxr-xr-x  1 root  mailman  54 Apr 21 19:00
> > > > /usr/local/mailman/archives/public/list ->
> > > > /usr/local/mailman/archives/private/list
> > > > typhoon# ls -ld /usr/local/mailman/archives/private/list
> > > > drwxrwsr-x  50 www  mailman  4096 Apr 21 18:34
> > > > /usr/local/mailman/archives/private/list
> > > > 
> > > > --- snip ---
> > > > 
> > > > 
> > > > 
> > > > what else could be the problem here?
> > > 
> > > 1. Are you running SELinux? If yes, see my response to your previous
> > > posting on this subject.
> > 
> > 
> > nope - FC
> > 
> > > 
> > > 2. Is the apache user a member of the mailman group? If not, how is the
> > > web server (usually running as user apache, group apache) supposed to
> > > read things under /usr/local/mailman/archives/private, which has no
> > > permissions open for anyone other than user and group apache?
> > 
> > 
> > hmmm - that didnt fix it.
> > 
> > I did this:
> > mailman:*:89:www
> > 
> > also a side note - my private archieves are viewable.  its only the public
> > archives that are getting the 403 error.
> 
> The next oddity I notice is that your virtual host configuration
> specifies /usr/home/mailman yet your files live
> under /usr/local/mailman. I'm guessing you've got a symlink somewhere
> but you may need a <Directory> section for the directory containing the
> symlink too.


Hey Paul,

great points.  I am still seeing things not working properly.

Here is the apache error:

--- snip ---

Symbolic link not allowed or link target not accessible:
/usr/local/mailman/archives/public/list, referer:
http://hostname.garbled.com/mailman/listinfo/list

--- snip ---


here is how my httpd.lists.conf file looks now - I have it places in the
/usr/local/etc/apache/Includes directory

--- snip ---

        <Directory /usr/local/mailman/archives/public/>
                Options All
                Order allow,deny
                Allow from all
        </Directory>

        <Directory /usr/home/mailman/archives/public/>
                Options All
                Order allow,deny
                Allow from all
        </Directory>

        <Directory /usr/local/mailman/archives/private/>
                Options +FollowSymLinks
                Order allow,deny
                Allow from all
        </Directory>


--- snip ---


cheers,

Noah

> 
> Paul.
> 
> -- 
> fedora-list mailing list
> fedora-list@xxxxxxxxxx
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list


[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux