198123 – should not try to write to /usr/lib/mailman/Mailman when mm_cfg.py changes

Bug 198123 - should not try to write to /usr/lib/mailman/Mailman when mm_cfg.py changes

Summary: should not try to write to /usr/lib/mailman/Mailman when mm_cfg.py changes

Keywords:
Status:	CLOSED WORKSFORME
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	mailman
Sub Component:
Version:	5
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Harald Hoyer
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2006-07-09 23:31 UTC by Russell Coker
Modified:	2007-11-30 22:11 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2006-09-29 12:37:58 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Russell Coker 2006-07-09 23:31:18 UTC

When mm_cfg.py is changed the Python scripts try to compile it to mm_cfg.pyc 
which requires write access to /usr/lib/mailman.  Such access is not 
appropriate and is prevented by SE Linux policy.

A better solution would be to have the file mm_cfg.py installed in a directory 
of it's own so that write access could be granted to it without granting write 
access to other files.

The FHS says: "/usr/lib includes object files, libraries, and internal 
binaries that are not intended to be executed directly by users or shell 
scripts", so it seems that config files should not be there anyway.

Comment 1 Harald Hoyer 2006-09-29 12:37:58 UTC

does /etc/mailman/ not work?

$ ls /etc/mailman/
adm.pw  mm_cfg.py  mm_cfg.pyc  mm_cfg.pyo  sitelist.cfg

Note You need to log in before you can comment on or make changes to this bug.