suexec/mailman problem (modedit)

B

bdraco

Guest
[quote:ecba989c48]Hi,

I updated cpanel - still same problem. Today I am gonna do what Feanor said now :)

--James [/quote:ecba989c48]

Where is cpanel sending you to? (What is the link inside cpanel)
 
B

bdraco

Guest
suexec insists on a secure env to run anything. By turning it off you are really just band-aid fixing the problem.

[2002-01-01 16:18:31]: info: (target/actual) uid: (dvdcrit/dvdcrit) gid: (dvdcrit/dvdcrit) cmd: hello.pl
[2002-01-01 16:18:31]: error: directory is writable by others: (/home/dvdcrit/public_html/cgi-bin)
[2002-01-01rit/public_html/cgi-bin)
[2002-01-01 16:18:49]: info: (target/actual) uid: (dvdcrit/dvdcrit) gid: (dvdcrit/dvdcrit) cmd: hello.cgi
[2002-01-01 16:18:49]: error: directory is writable by others: (/home/dvdcrit/public_html/cgi-bin)

From the Error log it is telling you that the dir the script is in is WRITABLE BY OTHER USERS. This is generally a BAD THING :). Just chmod the dir so that other users/groups can\'t write to it.

chmod 755 /home/dvdcrit/public_html/cgi-bin 16:18:49]: info: (target/actual) uid: (dvdcrit/dvdcrit) gid: (dvdcrit/dvdcrit) cmd: hello.cgi
[2002-01-01 16:18:49]: error: directory is writable by others: (/home/dvdcrit/public_html/cgi-bin)

From the Error log it is telling you that the dir the script is in is WRITABLE BY OTHER USERS. This is generally a BAD THING :). Just chmod the dir so that other users/groups can\'t write to it.

chmod 755 /home/dvdcrit/public_html/cgi-bin
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
the cgi-bin dir is always setup as 775 when adding an account.

Also, if I do as u suggest, it fixes the Perl problem, but the MailMan problem still exists.

So I am back to disabling SUEXEC.

--James
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
[quote:7a98f1b920][i:7a98f1b920]Originally posted by bdraco[/i:7a98f1b920]
[quote:7a98f1b920]Hi,

I updated cpanel - still same problem. Today I am gonna do what Feanor said now :)

--James [/quote:7a98f1b920]

Where is cpanel sending you to? (What is the link inside cpanel) [/quote:7a98f1b920]

Forgive me, it is New Years day and been up all night :)
What do you mean?

I fixed the problem, or work around it but removing suexec and changing every single domain entry in httpd.conf by removing the User/Group definitions.

Now MailMan and Perl/CGI work.

--James
 

moronhead

Well-Known Member
Aug 12, 2001
706
0
316
Wildwayz,[quote:e9bc781017][2002-01-01 16:18:31]: error: directory is writable by others: (/home/dvdcrit/public_html/cgi-bin)[/quote:e9bc781017][quote:e9bc781017]
the cgi-bin dir is always setup as 775 when adding an account.[/quote:e9bc781017]It seems that in this case the folder was later chmod to 777. ;)
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
[quote:231d197a9a][i:231d197a9a]Originally posted by moronhead[/i:231d197a9a]
Wildwayz,[quote:231d197a9a][2002-01-01 16:18:31]: error: directory is writable by others: (/home/dvdcrit/public_html/cgi-bin)[/quote:231d197a9a][quote:231d197a9a]
the cgi-bin dir is always setup as 775 when adding an account.[/quote:231d197a9a]It seems that in this case the folder was later chmod to 777. ;) [/quote:231d197a9a]

Nope :)
I never set cgi-bin to 777 :)
It is always left at the default which was 775 :/
Should be 755 for SUEXEC.

--James
 

pfmartin

Well-Known Member
Aug 18, 2001
167
0
316
Earth
Does anyone have a fix for this problem? Ever since suexec was enabled, mailman no longer works. The suexec log says:
[quote:06df46b70b]
[2002-01-07 06:48:24]: error: directory is writable by others: (/usr/local/cpanel/3rdparty/mailman/cgi-bin)
[/quote:06df46b70b]

My cgi-bin directory looks like this:

[quote:06df46b70b]
drwxrwsr-x 2 mailman mailman 4096 Jan 7 03:40 cgi-bin/
[/quote:06df46b70b]

and under that:

[quote:06df46b70b]
total 328
drwxrwsr-x 2 mailman mailman 4096 Jan 7 03:40 ./
drwxrwsr-x 18 mailman mailman 4096 Dec 2 22:41 ../
-rwxr-sr-x 1 mailman mailman 30858 Jan 7 03:40 admin*
-rwxr-sr-x 1 mailman mailman 30862 Jan 7 03:40 admindb*
-rwxr-sr-x 1 mailman mailman 30870 Jan 7 03:40 archives*
-rwxr-sr-x 1 mailman mailman 30870 Jan 7 03:40 edithtml*
-rwxr-sr-x 1 mailman mailman 30878 Jan 7 03:40 handle_opts*
-rwxr-sr-x 1 mailman mailman 30870 Jan 7 03:40 listinfo*
-rwxr-sr-x 1 mailman mailman 30862 Jan 7 03:40 options*
-rwxr-sr-x 1 mailman mailman 30862 Jan 7 03:40 private*
-rwxr-sr-x 1 mailman mailman 30858 Jan 7 03:40 roster*
-rwxr-sr-x 1 mailman mailman 30874 Jan 7 03:40 subscribe*
[/quote:06df46b70b]

Any help is greatly appreciated!
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
I had the same problem with SUEXEC - in the end I looked at the SUEXEC thread and disabled it.

All workin now

James
 

zex

Well-Known Member
Aug 12, 2001
98
0
306
cPanel Access Level
Root Administrator
mailman & suexec

My mailman and suexec still does not work!
I download and install latest buildapache and do upcp. And that still does not work.

When will that be fixed?
 

pfmartin

Well-Known Member
Aug 18, 2001
167
0
316
Earth
The change log says it is supposed to be fixed but it\'s not. I reported the bug in the bug tracker and hopefully someone will get to it soon.

Simply disabling suexec is no longer an option. We already had all our users adjust to the new suexec thing (for example, by not using 777 directories for stuff) and it would be a nightmare to go back to non-suexec life.
 
B

bdraco

Guest
suexec + mailman should work fine if

1. The hostname of the server actually has a dns entry
2. The ServerName directive in httpd.conf is set to the hostname
3. The ServerName directive is not commented out
4. You do not have a vhost for the hostname of the server.
 

zex

Well-Known Member
Aug 12, 2001
98
0
306
cPanel Access Level
Root Administrator
I still got this error when i try to access mailman.
[2002-01-11 11:07:00]: error: directory is writable by others: (/usr/local/cpanel/3rdparty/mailman/cgi-bin

dir have mode 02775
and if i set mode 02755 then i got in suexec log this

error \"[2002-01-11 11:09:32]: error: file is either setuid or setgid: (/usr/local/cpanel/3rdparty/mailman/cgi-bin/admin)\"
 
B

bdraco

Guest
[quote:a8bf4f1b82][i:a8bf4f1b82]Originally posted by pfmartin[/i:a8bf4f1b82]
bdraco,

I am also having trouble... Can I also ICQ you? I need help bad. What\'s you ICQ ID? [/quote:a8bf4f1b82]

605408
 
B

bdraco

Guest
Important!!!

Make sure your hostname\'s dns entry points to the main ip of the server. Also make sure /etc/hosts is correct. These can both cause the problem. As a last resort you can run

/scripts/fixmailmanwithsuexec

However you shouldn\'t have to if dns is setup right...
 
B

bdraco

Guest
dns for hostnames seem to be setup wrong on a lot of servers, I\'ve created /scripts/ipcheck to check it and email the owner of the server nightly if something is setup wrong.
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
[quote:828bde84ad][i:828bde84ad]Originally posted by bdraco[/i:828bde84ad]
suexec + mailman should work fine if

1. The hostname of the server actually has a dns entry
2. The ServerName directive in httpd.conf is set to the hostname
3. The ServerName directive is not commented out
4. You do not have a vhost for the hostname of the server.
[/quote:828bde84ad]

Hi,

I still get this error...
[quote:828bde84ad]
[Sat Jan 12 15:59:51 2002] [error] [client 212.126.138.32] Premature end of script headers: /usr/local/cpanel/3rdparty/mailman/cgi-bin/listinfo
[/quote:828bde84ad]
When I go into mailman with SUEXEC enabled.

I followed your advice above and still got problems.

PLEASE can you help me.

James
 

WildWayz

Well-Known Member
Aug 14, 2001
209
0
316
Hmmmm

It works if I access it via
http://servername/mailman/listinfo/
but not via
http://www.domainname.com/mailman/listinfo/

I use to be able to do it that way.
Is this fixable?

--James