OpenPKG Specs / file revision

mailman/mailman-apache.conf@0ba300bdf30a

mailman/mailman-apache.conf

Mon, 20 Apr 2009 19:22:00 +0200

author
Michael Schloh von Bennewitz <michael@schloh.com>
date
Mon, 20 Apr 2009 19:22:00 +0200
changeset 178
0ba300bdf30a
permissions
-rw-r--r--

Change unfortunate but partly useful overreaching security tradeoff.
The principle of allocating each running process an individual system
user and group can have security benefits, however maintining a plethora
of users, groups, processes, file modes, file permissions, and even
nonportable file ACLs on a host serving from a hundred processes has
some security disadvantages. This tradeoff is even worse for systems
like OpenPKG which benefit from administration transparency through the
use of minimal system intrusion and only three usage privilege levels.

     1 ##

     2 ##  mailman-apache.conf -- Apache Configuration for Mailman

     3 ##

     4 

     5 <VirtualHost host.example.com>

     6     #   server information

     7     ServerName        host.example.com

     8     ServerAdmin       hostmaster@host.example.com

     9     ServerSignature   on

    10 

    11     #   document area

    12     DocumentRoot @l_prefix@/libexec/mailman/htdocs/

    13     <Directory "@l_prefix@/libexec/mailman/htdocs">

    14         Options       FollowSymLinks

    15         AllowOverride None

    16         Order         allow,deny

    17         Allow         from all

    18     </Directory>

    19 

    20     #   pipermail area

    21     Alias /mailman/pipermail/ @l_prefix@/var/mailman/archives/public/

    22     <Directory "@l_prefix@/var/mailman/archives/public">

    23         Options       FollowSymLinks

    24         AllowOverride None

    25         Order         allow,deny

    26         Allow         from all

    27     </Directory>

    28 

    29     #   icon area

    30     Alias /mailman/icons/ @l_prefix@/libexec/mailman/icons/

    31     <Directory "@l_prefix@/libexec/mailman/icons">

    32         Options       FollowSymLinks

    33         AllowOverride None

    34         Order         allow,deny

    35         Allow         from all

    36     </Directory>

    37 

    38     #   executable area

    39     ScriptAlias /mailman/ @l_prefix@/libexec/mailman/cgi-bin/

    40     <Directory "@l_prefix@/libexec/mailman/cgi-bin">

    41         Options       FollowSymLinks ExecCGI

    42         AllowOverride None

    43         Order         allow,deny

    44         Allow         from all

    45     </Directory>

    46 

    47     #   logging

    48     CustomLog         @l_prefix@/var/mailman/logs/http-access.log common

    49     ErrorLog          @l_prefix@/var/mailman/logs/http-error.log

    50     LogLevel          warn

    51 </VirtualHost>

    52

Mercurial Repository: OpenPKG Specs

Europalab SCM Repository Server

mercurial