# Turn off the brp-python-bytecompile script %global __os_install_post %(echo '%{__os_install_post}' | sed -e 's!/usr/lib[^[:space:]]*/brp-python-bytecompile[[:space:]].*$!!g') Summary: Mailing list manager with built in Web access Name: mailman Version: 2.1.29 Release: 12%{?dist}.2 Epoch: 3 Group: Applications/Internet Source0: ftp://ftp.gnu.org/pub/gnu/mailman/mailman-%{version}.tgz #Source0: http://prdownloads.sourceforge.net/mailman/mailman-%{version}.tgz Source1: mm_cfg.py Source3: httpd-mailman.conf Source4: mailman.logrotate Source5: mailman.INSTALL.REDHAT.in Source6: mailman-crontab-edit Source7: mailman-migrate-fhs Source8: mailman-update-cfg Source9: mailman-tmpfiles.conf Source10: mailman.service Patch1: mailman-2.1.12-multimail.patch Patch2: mailman-2.1-build.patch Patch3: mailman-2.1-mailmanctl-status.patch Patch4: mailman-2.1.11-cron.patch Patch5: mailman-2.1.13-FHS.patch Patch6: mailman-python-compile.patch Patch7: mailman-2.1.13-archive-reply.patch Patch13: mailman-2.1.9-unicode.patch Patch21: mailman-2.1.13-env-python.patch Patch22: mailman-2.1.15-check_perms.patch Patch24: mailman-specify_python_version.patch Patch25: mailman-CVE-2020-12137.patch Patch26: mailman-bouncer_oom_crash.patch Patch27: mailman-2.1.29-login_content_injection.patch Patch28: mailman-2.1.29-options_content_njection.patch Patch29: mailman-2.1.29-cmd_reply_encoding.patch Patch30: mailman-CVE-2021-42096-2021-42097.patch Patch31: mailman-CVE-2021-44227.patch License: GPLv2+ URL: http://www.list.org/ Requires(pre): shadow-utils Requires: cronie, httpd, python2, coreutils, python2-dns Requires(post): systemd Requires(post): systemd-sysv Requires(preun): systemd Requires(postun): systemd BuildRequires: automake BuildRequires: python2-devel BuildRequires: systemd-units BuildRequires: python2-dns %global contentdir /usr/share/httpd # Installation directories # rpmlint will give an error about hardcoded library path, # but this is necessary, because there are python executables inside, # which the user can run in their scripts. # see rhbz#226117 for more information %global mmdir /usr/lib/%{name} %global varmmdir /var/lib/%{name} %global docdir %{?_pkgdocdir}%{!?_pkgdocdir:%{_docdir}/%{name}-%{version}} %global configdir /etc/%{name} %global datadir %{varmmdir}/data %global archivesdir %{varmmdir}/archives %global lockdir /var/lock/%{name} %global logdir /var/log/%{name} %global piddir /var/run/%{name} %global queuedir /var/spool/%{name} %global templatedir %{configdir}/templates %global httpdconfdir /etc/httpd/conf.d %global restart_flag /var/run/%{name}-restart-after-rpm-install %global mmbuilddir %{_builddir}/%{name}-%{version} %global httpdconffile %{name}.conf # Now, the user and group the CGIs will expect to be run under. This should # match the user and group the web server is configured to run as. The scripts # will error out if they are invoked by any other user. %global cgiuser apache %global cgigroup apache # Now, the user and group the scripts will actually execute as. %global mmuser mailman %global mmuserid 41 %global mmgroup mailman %global mmgroupid 41 # Directory/File modes & permissions %global dirmode 2775 %global exemode 2755 # Now, the groups your mail spoolers run as. Sendmail uses 'mail'(12) # and postfix used to use 'nobody', but now uses 'postfix' %global mailgroup "mail postfix mailman nobody daemon" # The mail wrapper program %global mail_wrapper mailman %description Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from the Web. Mailman also integrates most things people want to do with mailing lists, including archiving, mail <-> news gateways, and so on. Documentation can be found in: %{docdir} When the package has finished installing, you will need to perform some additional installation steps, these are described in: %{docdir}/INSTALL.REDHAT %prep %setup -q -n mailman-%{version} %patch1 -p1 -b .multimail %patch2 -p1 -b .permissions %patch3 -p1 -b .status %patch4 -p1 -b .cron %patch5 -p1 -b .FHS %patch6 -p1 -b .python-compile %patch7 -p1 -b .archive-in-reply-to %patch13 -p1 -b .unicode %patch21 -p1 %patch22 -p1 %patch24 -p1 -b .python_version %patch25 -p0 -b .cve_obj_mime %patch26 -p0 -b .bouncer_match %patch27 -p0 -b .login_injection %patch28 -p0 -b .options_injection %patch29 -p0 -b .cmd_reply_encoding %patch30 -p1 -b .CVE-2021-42096-2021-42097 %patch31 -p1 -b .CVE-2021-44227 #cp $RPM_SOURCE_DIR/mailman.INSTALL.REDHAT.in INSTALL.REDHAT.in cp %{SOURCE5} INSTALL.REDHAT.in rm -f contrib/redhat_fhs.patch mv contrib/sitemapgen contrib/sitemapgen.in %build CFLAGS="$RPM_OPT_FLAGS -fPIE -DPIE"; export CFLAGS # Full relro export LDFLAGS="$LDFLAGS -pie -Wl,-z,relro -Wl,-z,now" rm -f configure aclocal autoconf # rpmlint will give an error about hardcoded library path, # but this is necessary, because there are python executables inside, # which the user can run in their scripts. # see rhbz#226117 for more information ./configure \ --libdir=/usr/lib \ --prefix=%{mmdir} \ --with-var-prefix=%{varmmdir} \ --with-config-dir=%{configdir} \ --with-lock-dir=%{lockdir} \ --with-log-dir=%{logdir} \ --with-pid-dir=%{piddir} \ --with-queue-dir=%{queuedir} \ --with-template-dir=%{templatedir} \ --with-python=%{__python2} \ --with-mail-gid=%{mailgroup} \ --with-cgi-id=%{cgiuser} \ --with-cgi-gid=%{cgigroup} \ --with-mailhost=localhost.localdomain \ --with-urlhost=localhost.localdomain \ --without-permcheck function SubstituteParameters() { sed -e 's|@VAR_PREFIX@|%{varmmdir}|g' \ -e 's|@VARMMDIR@|%{varmmdir}|g' \ -e 's|@prefix@|%{mmdir}|g' \ -e 's|@MMDIR@|%{mmdir}|g' \ -e 's|@CONFIG_DIR@|%{configdir}|g' \ -e 's|@DATA_DIR@|%{datadir}|g' \ -e 's|@LOCK_DIR@|%{lockdir}|g' \ -e 's|@LOG_DIR@|%{logdir}|g' \ -e 's|@PID_DIR@|%{piddir}|g' \ -e 's|@QUEUE_DIR@|%{queuedir}|g' \ -e 's|@DOC_DIR@|%{docdir}|g' \ -e 's|@HTTPD_CONF_DIR@|%{httpdconfdir}|g' \ -e 's|@HTTPD_CONF_FILE@|%{httpdconffile}|g' \ $1 > $2 } SubstituteParameters "INSTALL.REDHAT.in" "INSTALL.REDHAT" SubstituteParameters "%{SOURCE1}" "Mailman/mm_cfg.py.dist" SubstituteParameters "%{SOURCE3}" "httpd-mailman.conf" SubstituteParameters "%{SOURCE4}" "mailman.logrotate" rm -f contrib/*.in make %install # Normal install. make DESTDIR=%{buildroot} install #make install prefix=%{buildroot}%{mmdir} var_prefix=%{buildroot}%{varmmdir} # Install the mailman cron.d script mkdir -p %{buildroot}/etc/cron.d cat > %{buildroot}/etc/cron.d/%{name} < %{buildroot}%{mmdir}/templates/README < /dev/null ; then /usr/sbin/groupmod -g %{mmgroupid} -n %{mmgroup} %{mmgroup} 2> /dev/null || : else /usr/sbin/groupadd -g %{mmgroupid} %{mmgroup} 2> /dev/null || : fi if grep -q "^mailman:" /etc/passwd 2> /dev/null ; then /usr/sbin/usermod -s /sbin/nologin -c "GNU Mailing List Manager" -d %{mmdir} -u %{mmuserid} -g %{mmgroupid} %{mmuser} 2> /dev/null || : else /usr/sbin/useradd -s /sbin/nologin -c "GNU Mailing List Manager" -d %{mmdir} -u %{mmuserid} -g %{mmgroupid} -M -r %{mmuser} 2> /dev/null || : fi # Mailman should never be running during an install, but a package upgrade # shouldn't silently stop the service, so if mailman was running # we'll leave a temp file in the lock directory as a flag so in # the post install phase we can restart it. # # rpmlint will complain here about "dangerous use of rm" # but this is OK because we are only rm-ing our temporary file if [ -d %{lockdir} ]; then rm -f %{restart_flag} /sbin/systemctl status %{name}>/dev/null 2>&1 if [ $? -eq 0 ]; then touch %{restart_flag} /sbin/systemctl stop %{name} >/dev/null 2>&1 fi fi # Remove older rpm-state dir if [ -d %{_localstatedir}/lib/rpm-state/mailman ]; then rm -rf %{_localstatedir}/lib/rpm-state/mailman fi # Move mm_cfg.py to different location to be able to copy it to /etc/mailman # later in post. This is needed, otherwise RPM would remove it. mkdir -p %{_localstatedir}/lib/rpm-state/mailman/ if [ -L %{configdir}/mm_cfg.py -a ! -L %{mmdir}/Mailman/mm_cfg.py -a -d %{configdir} ]; then mv %{mmdir}/Mailman/mm_cfg.py %{_localstatedir}/lib/rpm-state/mailman/mm_cfg.py fi # Move templates dir to different location to be able to copy it to # /etc/mailman later in post. This is needed, otherwise RPM would remove it. if [ ! -d %{templatedir} -a -d %{mmdir}/templates ]; then mv %{mmdir}/templates %{_localstatedir}/lib/rpm-state/mailman/ fi # rpm should not abort if last command run had non-zero exit status, exit cleanly exit 0 %post # We no longer use crontab, but previous versions of the spec file did, so clean up if [ -f /var/spool/cron/%{mmuser} ]; then crontab -u %{mmuser} -r fi # Restart mailman if it had been running before installation if [ -e %{restart_flag} ]; then rm %{restart_flag} /sbin/systemctl start %{name} >/dev/null 2>&1 fi # Move mm_cfg.py from /usr/lib/mailman/Mailman to /etc/mailman and create # symlink to it (#905845). if [ -f %{_localstatedir}/lib/rpm-state/mailman/mm_cfg.py ]; then cp -p %{_localstatedir}/lib/rpm-state/mailman/mm_cfg.py %{configdir}/mm_cfg.py fi # Move mmdir/templates to /etc/mailman/templates if [ -d %{_localstatedir}/lib/rpm-state/mailman/templates ]; then cp -pr %{_localstatedir}/lib/rpm-state/mailman/templates/* %{templatedir} rm -rf %{_localstatedir}/lib/rpm-state/mailman/templates/ fi if [ -d %{_localstatedir}/lib/rpm-state/mailman ]; then rm -rf %{_localstatedir}/lib/rpm-state/mailman fi # systemd %systemd_post mailman.service # rpm should not abort if last command run had non-zero exit status, exit cleanly exit 0 %preun # if [ $1 = 0 ]' checks that this is the actual deinstallation of # the package, as opposed to just removing the old package on upgrade. %systemd_preun mailman.service # rpm should not abort if last command run had non-zero exit status, exit cleanly exit 0 %postun if [ $1 = 0 ]; then crontab -u %{mmuser} -r 2>/dev/null fi # systemd %systemd_postun_with_restart mailman.service # rpm should not abort if last command run had non-zero exit status, exit cleanly exit 0 %triggerun -- mailman < 3:2.1.14-9 %{_bindir}/systemd-sysv-convert --save mailman >/dev/null 2>&1 ||: /bin/systemctl enable mailman.service >/dev/null 2>&1 /sbin/chkconfig --del mailman >/dev/null 2>&1 || : /bin/systemctl try-restart mailman.service >/dev/null 2>&1 || : %files %defattr(-,root,%{mmgroup}) %dir %{mmdir} %dir %{mmdir}/Mailman %{mmdir}/templates %{mmdir}/bin %dir %{mmdir}/cgi-bin/ %attr(2755, root, %{mmgroup}) %{mmdir}/cgi-bin/* %dir %{mmdir}/cron %{mmdir}/icons %dir %{mmdir}/mail %attr(2755, root, %{mmgroup}) %{mmdir}/mail/mailman %{mmdir}/messages %{mmdir}/pythonlib %{mmdir}/scripts # rpmlint will complain here about config files being in /usr # but these are both data files -parts of mailman's web UI- # and config files - user can change them to match the design # and/or content of their web pages %config(noreplace) %{templatedir} %{mmdir}/tests %dir %{varmmdir} %{varmmdir}/data %{varmmdir}/lists %{varmmdir}/spam %dir %{archivesdir} %{archivesdir}/public # fix for security issue #459530 %attr(2770,%{cgiuser},%{mmgroup}) %{archivesdir}/private #cron dir minus one file which is listed later %{mmdir}/cron/bumpdigests %{mmdir}/cron/checkdbs %{mmdir}/cron/cull_bad_shunt %{mmdir}/cron/disabled %{mmdir}/cron/gate_news %{mmdir}/cron/mailpasswds %{mmdir}/cron/nightly_gzip %{mmdir}/cron/paths.py %{mmdir}/cron/paths.pyc %{mmdir}/cron/paths.pyo %{mmdir}/cron/senddigests #Mailman dir minus one file which is listed later %{mmdir}/Mailman/Archiver %{mmdir}/Mailman/Autoresponder.py %{mmdir}/Mailman/Autoresponder.pyc %{mmdir}/Mailman/Autoresponder.pyo %{mmdir}/Mailman/Bouncer.py %{mmdir}/Mailman/Bouncer.pyc %{mmdir}/Mailman/Bouncer.pyo %{mmdir}/Mailman/Bouncers %{mmdir}/Mailman/Cgi %{mmdir}/Mailman/Commands %{mmdir}/Mailman/CSRFcheck.py %{mmdir}/Mailman/CSRFcheck.pyc %{mmdir}/Mailman/CSRFcheck.pyo %{mmdir}/Mailman/Defaults.py %{mmdir}/Mailman/Defaults.pyc %{mmdir}/Mailman/Defaults.pyo %{mmdir}/Mailman/Deliverer.py %{mmdir}/Mailman/Deliverer.pyc %{mmdir}/Mailman/Deliverer.pyo %{mmdir}/Mailman/Digester.py %{mmdir}/Mailman/Digester.pyc %{mmdir}/Mailman/Digester.pyo %{mmdir}/Mailman/Errors.py %{mmdir}/Mailman/Errors.pyc %{mmdir}/Mailman/Errors.pyo %{mmdir}/Mailman/GatewayManager.py %{mmdir}/Mailman/GatewayManager.pyc %{mmdir}/Mailman/GatewayManager.pyo #%%{mmdir}/Mailman/Generator.py #%%{mmdir}/Mailman/Generator.pyc #%%{mmdir}/Mailman/Generator.pyo %{mmdir}/Mailman/Gui %{mmdir}/Mailman/Handlers %{mmdir}/Mailman/htmlformat.py %{mmdir}/Mailman/htmlformat.pyc %{mmdir}/Mailman/htmlformat.pyo %{mmdir}/Mailman/HTMLFormatter.py %{mmdir}/Mailman/HTMLFormatter.pyc %{mmdir}/Mailman/HTMLFormatter.pyo %{mmdir}/Mailman/i18n.py %{mmdir}/Mailman/i18n.pyc %{mmdir}/Mailman/i18n.pyo %{mmdir}/Mailman/__init__.py %{mmdir}/Mailman/__init__.pyc %{mmdir}/Mailman/__init__.pyo %{mmdir}/Mailman/ListAdmin.py %{mmdir}/Mailman/ListAdmin.pyc %{mmdir}/Mailman/ListAdmin.pyo %{mmdir}/Mailman/LockFile.py %{mmdir}/Mailman/LockFile.pyc %{mmdir}/Mailman/LockFile.pyo %{mmdir}/Mailman/Logging %{mmdir}/Mailman/Mailbox.py %{mmdir}/Mailman/Mailbox.pyc %{mmdir}/Mailman/Mailbox.pyo %{mmdir}/Mailman/MailList.py %{mmdir}/Mailman/MailList.pyc %{mmdir}/Mailman/MailList.pyo %{mmdir}/Mailman/MemberAdaptor.py %{mmdir}/Mailman/MemberAdaptor.pyc %{mmdir}/Mailman/MemberAdaptor.pyo %{mmdir}/Mailman/Message.py %{mmdir}/Mailman/Message.pyc %{mmdir}/Mailman/Message.pyo %{mmdir}/Mailman/mm_cfg.py.dist %{mmdir}/Mailman/MTA %{mmdir}/Mailman/OldStyleMemberships.py %{mmdir}/Mailman/OldStyleMemberships.pyc %{mmdir}/Mailman/OldStyleMemberships.pyo %{mmdir}/Mailman/Pending.py %{mmdir}/Mailman/Pending.pyc %{mmdir}/Mailman/Pending.pyo %{mmdir}/Mailman/Post.py %{mmdir}/Mailman/Post.pyc %{mmdir}/Mailman/Post.pyo %{mmdir}/Mailman/Queue %{mmdir}/Mailman/SafeDict.py %{mmdir}/Mailman/SafeDict.pyc %{mmdir}/Mailman/SafeDict.pyo %{mmdir}/Mailman/SecurityManager.py %{mmdir}/Mailman/SecurityManager.pyc %{mmdir}/Mailman/SecurityManager.pyo %{mmdir}/Mailman/Site.py %{mmdir}/Mailman/Site.pyc %{mmdir}/Mailman/Site.pyo %{mmdir}/Mailman/TopicMgr.py %{mmdir}/Mailman/TopicMgr.pyc %{mmdir}/Mailman/TopicMgr.pyo %{mmdir}/Mailman/UserDesc.py %{mmdir}/Mailman/UserDesc.pyc %{mmdir}/Mailman/UserDesc.pyo %{mmdir}/Mailman/Utils.py %{mmdir}/Mailman/Utils.pyc %{mmdir}/Mailman/Utils.pyo %{mmdir}/Mailman/Version.py %{mmdir}/Mailman/Version.pyc %{mmdir}/Mailman/Version.pyo %{mmdir}/Mailman/versions.py %{mmdir}/Mailman/versions.pyc %{mmdir}/Mailman/versions.pyo %{_unitdir}/mailman.service %doc %{docdir} %dir %attr(0755,root,root) %{contentdir}/icons %attr(0644,root,root) %{contentdir}/icons/* %attr(0644, root, %{mmgroup}) %config(noreplace) %verify(not md5 size mtime) %{configdir}/mm_cfg.py %attr(0644, root, %{mmgroup}) %config(noreplace) %verify(not md5 size mtime) %{mmdir}/Mailman/mm_cfg.py %verify(not md5 size mtime) %{mmdir}/Mailman/mm_cfg.py? %config(noreplace) %{httpdconfdir}/%{httpdconffile} %config(noreplace) /etc/logrotate.d/%{name} /etc/smrsh/%{mail_wrapper} %dir %attr(2755,root,%{mmgroup}) %{configdir} %attr(0644, root, %{mmgroup}) %config(noreplace) %verify(not md5 size mtime) %{configdir}/sitelist.cfg %attr(775,root,%{mmgroup}) %{logdir} %{_prefix}/lib/tmpfiles.d/mailman.conf %attr(2775,root,%{mmgroup}) %{queuedir} %attr(0644,root,root) %config(noreplace) %verify(not md5 size mtime) /etc/cron.d/mailman %attr(0644,root,%{mmgroup}) %config(noreplace) %{mmdir}/cron/crontab.in %attr(0755,root,root) %{mmdir}/bin/mailman-update-cfg %dir %attr(775,root,%{mmgroup}) %{piddir} %dir %attr(775,root,%{mmgroup}) %{lockdir} %changelog * Sun Nov 28 2021 Martin Osvald - 3:2.1.29-12.2 - Fix for CVE-2021-44227 - Resolves: #2026871 * Tue Nov 09 2021 Martin Osvald - 3:2.1.29-12.1 - Fix for CVE-2021-42096 - Fix for CVE-2021-42097 - Resolves: #2021139, #2020692 * Mon Apr 12 2021 Tomas Korbar - 3:2.1.29-12 - Fix encoding handling of command replies - Resolves: rhzb#1907323 * Wed Sep 30 2020 Pavel Zhukov - 3:2.1.29-11 - Fixes for CVE-2020-12108 and CVE-2020-15011 * Mon May 25 2020 Pavel Zhukov - 3:2.1.29-10 - Fix match patter to reduce false allocation * Mon May 25 2020 Pavel Zhukov - 3:2.1.29-9 - Fix for CVE-2020-12137 * Wed May 6 2020 Pavel Zhukov - 3:2.1.29-8 - Drop unversioned python from comments. * Wed May 6 2020 Pavel Zhukov - 3:2.1.29-7 - Change attr of /etc/mailman * Thu Apr 23 2020 Pavel Zhukov - 3:2.1.29-6 - Update run directory references (#1805954) - fix #1188043 - set 2775 permission for /etc/mailman * Mon Oct 8 2018 Pavel Zhukov - 3:2.1.29-4 - Resolves: #1636432 - Delete env python shebangs * Thu Sep 13 2018 Pavel Zhukov - 3:2.1.29-3 - Related: #1628242 - Specify python version * Tue Jul 31 2018 Pavel Zhukov - 3:2.1.29-2 - Do not require initscripts * Mon Jul 30 2018 Pavel Zhukov - 3:2.1.29-1 - New release 2.1.29 * Mon Jul 2 2018 Pavel Zhukov - 3:2.1.21-11 - Resolves: #1596460 - Add fix for CVE-2018-0618 * Thu Apr 26 2018 Pavel Zhukov - 3:2.1.21-10 - Replace __python with __python2 for stream-2.1 * Wed Apr 25 2018 Pavel Zhukov - 3:2.1.21-8 - Specify python2 for shebang * Wed Mar 7 2018 Pavel Zhukov - 3:2.1.21-6 - Resolves: 1545975 - Fix XSS in webui. Use proper patch * Wed Feb 21 2018 Pavel Zhukov - 3:2.1.21-5 - Fix XSS in webui (#1545975) * Thu Aug 03 2017 Fedora Release Engineering - 3:2.1.21-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering - 3:2.1.21-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Fri Feb 10 2017 Fedora Release Engineering - 3:2.1.21-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Wed Mar 02 2016 Jan Kaluza - 3:2.1.21-1 - update to new upstream version 2.1.21 (#1304360) * Thu Feb 04 2016 Fedora Release Engineering - 3:2.1.20-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Fri Jul 24 2015 Jan Kaluza - 3:2.1.20-3 - move tmpfiles.d configuration to /usr/lib and fix its permissions (#1183579) * Wed Jun 17 2015 Fedora Release Engineering - 3:2.1.20-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Wed Apr 01 2015 Jan Kaluza - 3:2.1.20-1 - update to new upstream versino 2.1.20 (#1207900) * Mon Mar 02 2015 Jan Kaluza - 3:2.1.19-1 - update to new upstream version 2.1.19 (#1187894) * Tue Feb 17 2015 Jan Kaluza - 3:2.1.18.1-4 - require python-dns * Sun Aug 17 2014 Fedora Release Engineering - 3:2.1.18.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 07 2014 Fedora Release Engineering - 3:2.1.18.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon May 12 2014 Jan Kaluza - 3:2.1.18.1-1 - update to new upstream version 2.1.18-1 (#1089971) * Thu Jan 02 2014 Jan Kaluza - 3:2.1.17-3 - fix #1043677 - fix setgid for /usr/lib/mailman/mail/mailman * Wed Dec 18 2013 Jan Kaluza - 3:2.1.17-2 - fix #1043677 - fix setgid for cgi binaries * Tue Dec 03 2013 Jan Kaluza - 3:2.1.17-1 - update to new upstream version 2.1.17 (#1034083) - remove patches patching unused init script * Fri Oct 18 2013 Jan Kaluza - 3:2.1.16-1 - update to new upstream version 2.1.16 (#984536) * Wed Jul 31 2013 Ville Skyttä - 3:2.1.15-15 - Install docs to %%{_pkgdocdir} where available. * Tue Jul 23 2013 Jan Kaluza - 3:2.1.15-14 - build with full relro support * Thu Apr 04 2013 Jan Kaluza - 3:2.1.15-13 - move mailman-update-cfg to /usr/lib/mailman/bin * Tue Apr 02 2013 Jan Kaluza - 3:2.1.15-12 - fix #947191 - change contentdir to /usr/share/httpd * Thu Mar 14 2013 Jan Kaluza - 3:2.1.15-11 - do not use py_byte_compile, remove python3-devel dependency * Thu Mar 14 2013 Jan Kaluza - 3:2.1.15-10 - fix #921421 - fix /var/spool/mailman/ permissions - fix #921423 - move mm_cfg.py to /etc/mailman - move templates from /usr/lib/mailman to /etc/mailman * Thu Feb 14 2013 Fedora Release Engineering - 3:2.1.15-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jan 22 2013 Jan Kaluza - 3:2.1.15-8 - fix #838580 - check if directories are 0755, there is no need to need 02775 on all Mailman directories * Thu Dec 06 2012 Jan Kaluza - 3:2.1.15-7 - remove fuzz=3 and rebase patches * Wed Nov 21 2012 Jan Kaluza - 3:2.1.15-6 - clean up spec file * Wed Oct 24 2012 Václav Pavlín - 3:2.1.15-5 - Scriptlets replaced with new systemd macros (#850198) * Tue Aug 21 2012 Jan Kaluza - 3:2.1.15-4 - fix ownership of unowned directories * Thu Aug 16 2012 Jan Kaluza - 3:2.1.15-3 - Python executables does not need setgid * Thu Jul 19 2012 Jan Kaluza - 3:2.1.15-2 - do not set setgid bit on directories where it is not needed * Mon Jun 18 2012 Jan Kaluza - 3:2.1.15-1 - fix #822096 - update to version 2.1.15 - fixed httpd config file to work with httpd-2.4 * Wed Jan 11 2012 Jan Kaluza - 3:2.1.14-13 - fix #751581 - changed systemd service file to create error log with proper permissions, changed logrotate conf to swifth to proper username/group * Wed Jan 11 2012 Jan Kaluza - 3:2.1.14-12 - fix #773188 - fix typo in reset_pw.py causing it to not work * Thu Dec 15 2011 Jan Kaluza - 3:2.1.14-11 - fix #754898 - decode subjects * Wed Oct 12 2011 Jan Kaluza - 3:2.1.14-10 - fix #745411 - remove Indexes from httpd config * Wed Jul 13 2011 Jan Kaluza - 3:2.1.14-9 - fix #719371 - added native systemd unit file * Wed May 18 2011 Jan Kaluza - 3:2.1.14-8 - fix #701539 - fixed permissions of all directories in mailman dir * Mon May 09 2011 Jan Kaluza - 3:2.1.14-7 - fix #701539 - fixed cgi-bin permissions * Tue Apr 05 2011 Jan Kaluza - 3:2.1.14-6 - fix #688435 - set proper permissions for private archive - fix badly rebased LC_CTYPE patch which caused newlist to fail with traceback * Wed Feb 23 2011 Jan Kaluza - 3:2.1.14-5 - fix #679644 - fixed CVE-2011-0707: three XSS flaws due improper escaping of the full name of the member * Tue Feb 08 2011 Fedora Release Engineering - 3:2.1.14-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Dec 06 2010 Jan Kaluza - 3:2.1.14-3 - fix #656619 - use tmpfiles.d to create directories in /var/run and /var/lock * Wed Sep 29 2010 jkeating - 3:2.1.14-2 - Rebuilt for gcc bug 634757 * Tue Sep 21 2010 Jan Kaluza 3:2.1.14-1 - fix #632542 - updated to new upstream version * Wed Sep 15 2010 Jan Kaluza 3:2.1.13-6 - fix #631881 - CVE-2010-3089: Multiple security flaws leading to cross-site scripting (XSS) attacks * Wed Aug 11 2010 David Malcolm - 3:2.1.13-5 - recompiling .py files against Python 2.7 (rhbz#623334) * Tue Jul 13 2010 Jan Kaluza 3:2.1.13-4 - #459530 - fix permissions of archives/private directory * Tue May 25 2010 Daniel Novotny 3:2.1.13-3 - #595715 - Fix instances of #!/usr/bin/env python in mailman * Tue Apr 20 2010 Daniel Novotny 3:2.1.13-2 - fix #583966 - mailman-update-cfg script should use %%{mmdir}, not %%{_libdir} * Thu Mar 25 2010 Daniel Novotny 3:2.1.13-1 - update to 2.1.13, de-fuzz patches * Wed Jan 13 2010 Daniel Novotny 3:2.1.12-14 - revert _libdir change, because it disturbs scripts invocation (see #226117 discussion) * Tue Dec 22 2009 Daniel Novotny 3:2.1.12-13 - the service is now not on by default (change for merge review, #226117) * Wed Oct 14 2009 Daniel Novotny 3:2.1.12-12 - fix the last patch (bz#528492), no space between "coding" and ":" * Tue Oct 13 2009 Daniel Novotny 3:2.1.12-11 - fix French translation, "coding" keyword must be untranslated (bz#528492) * Wed Oct 07 2009 Daniel Novotny 3:2.1.12-10 - init script cleanup and fixes for LSB compliance (bz#524016) * Tue Jul 28 2009 Daniel Novotny 3:2.1.12-9 - regenerated patches so patch fuzz 3 is not needed (bz#513207) - mm_cfg.pyc and .pyo are now %%verify(not md5 size mtime) (bz#512794) * Sat Jul 25 2009 Fedora Release Engineering - 3:2.1.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed Jul 22 2009 Daniel Novotny 3:2.1.12-7 - fix bz#512798 - Mailman path in /usr/bin/mailman-update-cfg is incorrect on x86_64. - added explanation comment in mailman-update-cfg, to justify why this script is needed * Wed Jul 08 2009 Daniel Novotny 3:2.1.12-6 - fix bz#509689 - please remove execute perms * Tue Jul 07 2009 Daniel Novotny 3:2.1.12-5 - hardcoded library path removed - mixed use of spaces and tabs fixed - added --libdir to configure - fixed URL to tarball - permissions of source files changed to 0644 - got rid of "file listed twice" warnings: listing the files explicitly - all this were cleanups for merge review (#226117) * Thu Apr 02 2009 Daniel Novotny 3:2.1.12-4 - fix bz#481446 (Recompile of mailman's config causes SElinux denials) * Tue Mar 31 2009 Daniel Novotny 3:2.1.12-3 - fix bz#447784 (List-Archive URL for private archives broken) * Mon Mar 30 2009 Daniel Novotny 3:2.1.12-2 - "AddDefaultCharset Off" in httpd configuration (#463115) * Wed Mar 11 2009 Daniel Novotny 3:2.1.12-1 - upgrade to 2.1.12, drop upstreamed patches, rebase other patches * Wed Feb 25 2009 Fedora Release Engineering - 3:2.1.11-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Thu Feb 12 2009 Daniel Novotny 3:2.1.11-6 - added a script to recompile the config file b/c of selinux policy (bz#484328) * Sun Nov 30 2008 Ignacio Vazquez-Abrams - 3:2.1.11-5 - Rebuild for Python 2.6 * Wed Oct 29 2008 Daniel Novotny 3:2.1.11-4 fix #460820 - msg_footer gets its trailing spaces trimmed * Thu Jul 31 2008 Tomas Smetana - 3:2.1.11-3 - fix #457388 - don't call "/usr/bin/python" from /etc/cron.d/mailman - fix #457389 - cron complains about bad username * Wed Jul 23 2008 Tomas Smetana - 3:2.1.11-2 - temporary fix for --fuzz=0 * Tue Jul 22 2008 Tomas Smetana - 3:2.1.11-1 - new upstream version - fix #246978 - FHS compliant initscript * Mon May 12 2008 Tomas Smetana - 3:2.1.10-1 - new upstream version * Tue Feb 05 2008 Tomas Smetana - 3:2.1.9-10 - patch for CVE-2008-0564; XSS triggerable by list administrator * Thu Jan 10 2008 Tomas Smetana - 3:2.1.9-9 - fix #393911 - mail is not added to the archive * Tue Oct 16 2007 Tomas Smetana - 3:2.1.9-8 - fix #333011 - withlist crashes with NameError - fix #350461 - init script prevents proper SELinux domain transitions - fix #303061 - broken multipart mail headers * Wed Aug 22 2007 Tomas Smetana - 3:2.1.9-7 - fix #242678 wrong init script - fix #247160 INSTALL.REDHAT references non-existent README.POSTFIX file, patch by Todd Zullinger - fix #132495 jp character encoding is not UTF8, patch by Todd Zullinger - update license, add dist to release * Thu May 24 2007 Tomas Smetana - 3:2.1.9-6 - fix #237315 - permissions for .so files - fix forgotten '_(' in check_perms - cleanup spec file * Mon Jan 29 2007 Harald Hoyer - 3:2.1.9-5 - mailman-2.1.9-LC_CTYPE.patch added (bug #132495) - Resolves: rhbz#132495 * Tue Jan 23 2007 Florian La Roche - add fix from rhbz#219054: usage output mentions "status" option * Thu Oct 05 2006 David Woodhouse - 3:2.1.9-3 - fix broken In-Reply-To: header in mailto: URL in archives (#123768) * Sun Oct 01 2006 Jesse Keating - 3:2.1.9-2 - rebuilt for unwind info generation, broken in gcc-4.1.1-21 * Mon Sep 25 2006 Harald Hoyer - 3:2.1.9-1 - updated to mailman-2.1.9 which fixes bug #206607 * Wed Jul 12 2006 Jesse Keating - 3:2.1.8-3.1 - rebuild * Tue Jun 27 2006 Florian La Roche - 3:2.1.8-3 - quieten postun of crontab removal * Mon Jun 12 2006 Harald Hoyer - 3:2.1.8-2 - more build requirements * Mon May 08 2006 Harald Hoyer - 3:2.1.8-1 - version 2.1.8 * Fri Feb 10 2006 Jesse Keating - 3:2.1.7-1.2 - bump again for double-long bug on ppc(64) * Tue Feb 07 2006 Jesse Keating - 3:2.1.7-1.1 - rebuilt for new gcc4.1 snapshot and glibc changes * Tue Jan 10 2006 Harald Hoyer - 3:2.1.7-1 - version 2.1.7 * Fri Dec 16 2005 Jesse Keating - rebuilt for new gcj * Wed Dec 14 2005 Harald Hoyer - 3:2.1.5-36.fc4.1 - fix for bug #173139 (CVE-2005-3573 Mailman Denial of Service) * Fri Dec 09 2005 Jesse Keating - rebuilt * Thu Nov 10 2005 Harald Hoyer - 3:2.1.6-2 - added help to the initscript (bug #162724) * Wed Jun 8 2005 John Dennis - 3:2.1.6-1.fc4 - initial port of 2.1.6 remove mailman-2.1.5-moderator-request.patch, present in new release remove mailman-2.1-CAN-2005-0202.patch, present in new release remove mailman-2.1-CAN-2004-1177.patch, present in new release * Thu Apr 28 2005 John Dennis - 3:2.1.5-36.fc4 - fix bug #156159 insecure location of restart flag file * Mon Mar 7 2005 John Dennis 3:2.1.5-35.fc4 - bump rev for gcc4 build * Wed Mar 2 2005 John Dennis - 3:2.1.5-34.fc4 - fix bug #150065, provide migration script for new FHS installation * Fri Feb 25 2005 John Dennis - 3:2.1.5-33.fc4 - fix bug #147833, CAN-2004-1177 * Mon Feb 14 2005 John Dennis - 3:2.1.5-31.fc4 - fix bug #132750, add daemon to mail-gid so courier mail server will work. - fix bug #143008, wrong location of mailmanctl in logrotate - fix bug #142605, init script doesn't use /var/lock/subsys * Tue Feb 8 2005 John Dennis - 3:2.1.5-30.fc4 - fix release tag * Tue Feb 8 2005 John Dennis - 3:2.1.5-29 - fix security vulnerability CAN-2005-0202, errata RHSA-2005:137, bug #147344 * Tue Nov 9 2004 John Dennis 3:2.1.5-28 - fix bug #137863, buildroot path in .pyc files * Sat Oct 16 2004 John Dennis 3:2.1.5-26 - fix typo in install documentation - fix error in templates/Makefile.in, bad install args, fixes bug #136001, thank you to Kaj J. Niemi for spotting this. * Thu Oct 14 2004 John Dennis 3:2.1.5-24 - more FHS changes, matches with new SELinux security policy * Wed Sep 29 2004 John Dennis 3:2.1.5-21 - move list data dir to /var/lib/mailman to conform to FHS move lock dir to /var/lock/mailman to conform to FHS move config dir (VAR_PREFIX/data) to /etc/mailman to conform to FHS Thanks to Matt Domsch for pointing this out. * Tue Sep 28 2004 John Dennis 3:2.1.5-20 - fix bug #132732, security policy violations, - bump release verison move non-data installation files from /var/mailman to /usr/lib/mailman, update documentation * Fri Sep 10 2004 John Dennis 3:2.1.5-19 - add il18n start/stop strings to init.d script * Fri Sep 10 2004 John Dennis 3:2.1.5-18 - fix bug #89250, add condrestart also fix status return values in mailmanctl and init.d script * Tue Sep 7 2004 John Dennis 3:2.1.5-17 - fix bug #120930, add contents of contrib to doc area * Tue Sep 7 2004 John Dennis 3:2.1.5-16 - fix bug #121220, httpd config file tweaks add doc to INSTALL.REDHAT for selecting MTA * Fri Sep 3 2004 John Dennis 3:2.1.5-15 - fix bug #117615, don't overwrite user modified templates on install made template directory "config noreplace" * Thu Sep 2 2004 John Dennis 3:2.1.5-14 - add comments into the crontab files so users know the /etc/cron.d file is volitile and will edit the right file. Also make the master crontab file "config noreplace" so edits are preserved. * Wed Sep 1 2004 John Dennis 3:2.1.5-13 - fix bug #124208, enable mailman cron jobs from init.d rather than during installation * Tue Aug 31 2004 John Dennis 3:2.1.5-12 - fix bug #129920, cron jobs execute under wrong SELinux policy * Mon Aug 30 2004 John Dennis 3:2.1.5-11 - remove all editing of aliases file in %%pre and %%post, fixes #bug 125651 * Mon Aug 9 2004 John Dennis 3:2.1.5-10 - fix bug #129492 and bug #120912 stop using crontab to setup mailman's cron jobs, instead install cron script in /etc/cron.d * Mon Aug 9 2004 John Dennis 3:2.1.5-9 - apply patch to elminate "-1 LISTNAME moderator request(s) waiting" messages problem desciption here: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq03.038.htp * Tue Jun 15 2004 Elliot Lee - rebuilt * Wed Jun 9 2004 John Dennis - 3:2.1.5-7 - bump rev for rebuild * Wed Jun 9 2004 John Dennis - 3:2.1.5-6 - fix bug in pre scriplet, last command had been "service mailman stop" which should have been harmless if mailman was not installed except that it left the exit status from the script as non-zero and rpm aborted the install. * Wed Jun 9 2004 John Dennis - 3:2.1.5-5 - add status reporting to init.d control script stop mailman during an installation restart mailman if it had been running prior to installation * Mon Jun 7 2004 John Dennis - 3:2.1.5-4 - back python prereq down to 2.2, should be sufficient * Thu May 20 2004 John Dennis 3:2.1.5-3 - make python prereq be at least 2.3 * Tue May 18 2004 Jeremy Katz 3:2.1.5-2 - rebuild * Mon May 17 2004 John Dennis 3:2.1.5-1 - bring up to latest 2.1.5 upstream release From Barry Warsaw: Mailman 2.1.5, a bug fix release that also contains new support for the Turkish language, and a few minor new features. Mailman 2.1.5 is a significant upgrade which should improve disk i/o performance, administrative overhead for discarding held spams, and the behavior of bouncing member disables. This version also contains a fix for an exploit that could allow 3rd parties to retrieve member passwords. It is thus highly recommended that all existing sitesupgrade to the latest version * Tue May 04 2004 Warren Togami 3:2.1.4-4 - #105638 fix bytecompile and rpm -V - postun /etc/postfix/aliases fix - clean uninstall (no more empty dirs) - #115378 RedirectMatch syntax fix * Fri Feb 13 2004 Elliot Lee - rebuilt * Fri Jan 9 2004 John Dennis 3:2.1.4-1 - upgrade to new upstream release 2.1.4 - fixes bugs 106349,112851,105367,91463 * Wed Jun 04 2003 Elliot Lee - rebuilt * Wed May 7 2003 John Dennis - bring up to next upstream release 2.1.2 * Sun May 04 2003 Florian La Roche - fix typo in post script: mmusr -> mmuser * Thu Apr 24 2003 John Dennis - fix bug 72004, 74483, 74484, 87856 - improper log rotation - fix bug 88083 - mailman user/group needed to exist during build - fix bug 88144 - wrong %%file attributes on mm_cfg.py - fix bug 89221 - mailman user not created on install - fix bug 89250 - wrong pid file name in initscript * Wed Mar 05 2003 Florian La Roche - change to /etc/rc.d/init.d as in all other rpms * Thu Feb 20 2003 John Dennis - change mailman login shell from /bin/false to /sbin/nologin * Fri Feb 14 2003 John Dennis - bring package up to 2.1.1 release, add /usr/share/doc files * Sat Feb 01 2003 Florian La Roche - make the icon dir owned by root:root as in other rpms * Fri Jan 31 2003 John Dennis - various small tweaks to the spec file to make installation cleaner - use %%{__python} when compiling, redirect compile output to /dev/null, - don't run update in %%post, let the user do it, remove the .pyc files in %%postun, - add setting of MAILHOST and URLHOST to localhost.localdomain, don't let - configure set them to the build machine. * Mon Jan 27 2003 John Dennis - add the cross site scripting (xss) security patch to version 2.1 * Fri Jan 24 2003 John Dennis - do not start mailman service in %%post * Wed Jan 22 2003 Tim Powers - rebuilt * Mon Jan 20 2003 John Dennis - 1) remove config patch, mailmanctl was not the right file to install in init.d, - it needed to be scripts/mailman - 2) rename httpd-mailman.conf to mailman.conf, since the file now lives - in httpd/conf.d directory the http prefix is redundant and inconsistent - with the other file names in that directory. * Tue Jan 7 2003 John Dennis - Bring package up to date with current upstream source, 2.1 - Fix several install/packaging problems that were in upstream source - Add multiple mail group functionality - Fix syntax error in fblast.py - Remove the forced setting of mail host and url host in mm_cfg.py * Tue Nov 12 2002 Tim Powers 2.0.13-4 - remove files from $$RPM_BUILD_ROOT that we don't intent to ship * Thu Aug 14 2002 Nalin Dahyabhai 2.0.13-3 - set MAILHOST and WWWHOST in case the configure script can't figure out the local host name * Fri Aug 2 2002 Nalin Dahyabhai 2.0.13-2 - rebuild * Fri Aug 2 2002 Nalin Dahyabhai 2.0.13-1 - specify log files individually, per faq wizard - update to 2.0.13 * Wed May 22 2002 Nalin Dahyabhai 2.0.11-1 - update to 2.0.11 * Fri Apr 5 2002 Nalin Dahyabhai 2.0.9-1 - include README.QMAIL in with the docs (#58887) - include README.SENDMAIL and README.EXIM in with the docs - use an included httpd.conf file instead of listing the configuration directives in the %%description, which due to specspo magic might look wrong sometimes (part of #51324) - interpolate the DEFAULT_HOST_NAME value in mm.cfg into both the DEFAULT_URL and MAILMAN_OWNER (#57987) - move logs to /var/log/mailman, qfiles to /var/spool/mailman, rotate logs in the log directory (#48724) - raise exceptions when someone tries to set the admin address for a list to that of the admin alias (#61468) * Thu Apr 4 2002 Nalin Dahyabhai - fix a default permissions problem in %%{_var}/mailman/archives/private, reported by Johannes Erdfelt - update to 2.0.9 * Tue Apr 2 2002 Nalin Dahyabhai - make the symlink in /etc/smrsh relative * Tue Dec 11 2001 Nalin Dahyabhai 2.0.8-1 - set FQDN and URL at build-time so that they won't be set to the host the RPM package is built on (#59177) * Wed Nov 28 2001 Nalin Dahyabhai - update to 2.0.8 * Sat Nov 17 2001 Florian La Roche 2.0.7-1 - update to 2.0.7 * Wed Jul 25 2001 Nalin Dahyabhai 2.0.6-1 - update to 2.0.6 * Mon Jun 25 2001 Nalin Dahyabhai - code in default user/group names/IDs * Wed May 30 2001 Nalin Dahyabhai - update to 2.0.5 - change the default hostname from localhost to localhost.localdomain in the default configuration - chuck configuration file settings other than those dependent on the host name (the build system's host name is not a good default) (#32337) * Tue Mar 13 2001 Nalin Dahyabhai - update to 2.0.3 * Tue Mar 6 2001 Nalin Dahyabhai - update to 2.0.2 * Wed Feb 21 2001 Nalin Dahyabhai - patch from Barry Warsaw (via mailman-developers) to not die on broken Content-Type: headers * Tue Jan 9 2001 Nalin Dahyabhai - update to 2.0.1 * Wed Dec 6 2000 Nalin Dahyabhai - update to 2.0 final release - move the data to %%{_var} * Fri Oct 20 2000 Nalin Dahyabhai - update to beta 6 * Thu Aug 3 2000 Nalin Dahyabhai - add note about adding FollowSymlinks so that archives work * Wed Aug 2 2000 Nalin Dahyabhai - make the default owner root again so that root owns the docs - update to 2.0beta5, which fixes a possible security vulnerability - add smrsh symlink * Mon Jul 24 2000 Prospector - rebuilt * Wed Jul 19 2000 Nalin Dahyabhai - update to beta4 - change uid/gid to apache.apache to match apache (#13593) - properly recompile byte-compiled versions of the scripts (#13619) - change mailman alias from root to postmaster * Sat Jul 1 2000 Nalin Dahyabhai - update to beta3 - drop bugs and arch patches (integrated into beta3) * Tue Jun 27 2000 Nalin Dahyabhai - move web files to reside under %%{contentdir} - move files from /usr/share to %%{_datadir} - integrate spot-fixes from mailman lists via gnome.org * Mon Jun 19 2000 Nalin Dahyabhai - rebuild for Power Tools * Wed May 23 2000 Nalin Dahyabhai - Update to 2.0beta2 to pick up security fixes. - Change equires python to list >= 1.5.2 * Mon Nov 8 1999 Bernhard Rosenkränzer - 1.1 * Tue Sep 14 1999 Preston Brown - 1.0 final. * Tue Jun 15 1999 Preston Brown - security fix for cookies - moved to /usr/share/mailman * Fri May 28 1999 Preston Brown - fix up default values. * Fri May 07 1999 Preston Brown - modifications to install scripts * Thu May 06 1999 Preston Brown - initial RPM for SWS 3.0