Previous Mailman Releases

From 01badf5c6b00ed72ce799064c9a567ab8f34e369 Mon Sep 17 00:00:00 2001 From: bwarsaw <> Date: Wed, 30 Aug 2006 14:55:23 +0000 Subject: Make a sweep through the web pages to update various bits of information. This is in prep for the 2.1.9 release. --- admin/www/admins.html | 38 +++++---- admin/www/bugs.ht | 10 +-- admin/www/bugs.html | 34 ++++---- admin/www/devs.html | 15 ++-- admin/www/docs.html | 24 +++--- admin/www/download.html | 38 +++++---- admin/www/faq.html | 38 +++++---- admin/www/features.html | 24 +++--- admin/www/help.ht | 18 +++-- admin/www/help.html | 44 +++++++---- admin/www/i18n.html | 36 ++++----- admin/www/index.ht | 36 ++++----- admin/www/index.html | 62 ++++++++------- admin/www/install.html | 38 +++++---- admin/www/inthenews.html | 38 +++++---- admin/www/jwzrebuttal.html | 38 +++++---- admin/www/links.h | 18 +++-- admin/www/lists.html | 38 +++++---- admin/www/mgrs.html | 38 +++++---- admin/www/mirrors.html | 40 +++++----- admin/www/otherstuff.html | 36 ++++----- admin/www/prev.ht | 19 ----- admin/www/prev.html | 184 -------------------------------------------- admin/www/requirements.ht | 16 ++-- admin/www/requirements.html | 40 +++++----- admin/www/security.ht | 38 +-------- admin/www/security.html | 76 +++++------------- admin/www/site.html | 38 +++++---- admin/www/todo.html | 40 +++++----- admin/www/users.html | 38 +++++---- admin/www/version.html | 36 ++++----- 31 files changed, 476 insertions(+), 750 deletions(-) delete mode 100644 admin/www/prev.ht delete mode 100644 admin/www/prev.html (limited to 'admin') diff --git a/admin/www/admins.html b/admin/www/admins.html index 1c9e78d6..c3195f75 100644 --- a/admin/www/admins.html +++ b/admin/www/admins.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - + - + - @@ -116,7 +117,7 @@ Email Us diff --git a/admin/www/i18n.html b/admin/www/i18n.html index d8666be9..48f3db1b 100644 --- a/admin/www/i18n.html +++ b/admin/www/i18n.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - + - + - + - +

Overview

Home +

Home

Security

Features -

Internationalization -

Rants, Papers, and Logos -

Mirrors +

More Information

Wiki (exit)

Discussion Lists

SF Project Page + (exit)

Rants, Papers, and Logos

Bugs and Patches

Mirrors

diff --git a/admin/www/lists.html b/admin/www/lists.html index 528710fd..b0392e59 100644 --- a/admin/www/lists.html +++ b/admin/www/lists.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - + - + diff --git a/admin/www/otherstuff.html b/admin/www/otherstuff.html index 08124821..d30bcf58 100644 --- a/admin/www/otherstuff.html +++ b/admin/www/otherstuff.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - - - - - - -Previous Mailman Releases - - - - - - -

@@ -94,7 +95,7 @@ Developer Exits

ZMailman

Email Us

-© 1998-2005 +© 1998-2006 Free Software Foundation, Inc. Verbatim copying and distribution of this entire article is permitted in any medium, provided this notice is preserved. diff --git a/admin/www/docs.html b/admin/www/docs.html index 1e570585..07a9afe5 100644 --- a/admin/www/docs.html +++ b/admin/www/docs.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - + - + - + - +

- - - - - - - - - - - - - - - - - -

- - - -

- - - - - - - - - - - - - - - - - - - - - - - - - - -

-Overview -

-Home -

-Security -

-Features -

-Internationalization -

-Rants, Papers, and Logos -

-Mailman in Use -

-Previous Releases -

-Bugs and Patches -

-Mirrors -

-Exits -

-SF Project Page -

-Discussion Lists -

-Python -

-GNU -

-Barry Warsaw -

-Email Us -

-mailman-users@python.org -

- -

Previous Mailman Releases

- -Mailman 2.0.13 is the most stable version of the 2.0 release -branch. It is in production use at thousands of sites. It should be -fairly easy to upgrade from Mailman 2.0.13 to Mailman 2.1 -- see the -documentation that comes with Mailman 2.1 for details. - -

Mailman 2.0.13 works with any Python version from 1.5.2 to 2.3 -(still in alpha development as of this writing 26-Dec-2002). Mailman -2.1 requires at least Python 2.1.3 and works best with Python 2.3 or 2.4. -If you plan on upgrading Mailman, I first recommend that you upgrade -Python, and then upgrade Mailman. - -

There are tons of new features in -Mailman 2.1, and no new development is being done on the Mailman 2.0.x -branch. - -

- diff --git a/admin/www/requirements.ht b/admin/www/requirements.ht index 977413cb..7226e5d7 100644 --- a/admin/www/requirements.ht +++ b/admin/www/requirements.ht @@ -13,8 +13,8 @@ Other-links:

Requirements

Mailman currently runs only on GNU/Linux and any other Un*x-like -operating system, such as *BSD, Solaris, etc. It should work on -MacOSX but not on MacOS 9. It probably does not work +operating system, such as *BSD, Solaris, etc. It works on +MacOS X but not on MacOS 9. It probably does not work on Windows, although it's possible you could get it running on a Cygwin system (please let the developer @@ -25,11 +25,11 @@ community know if you have success with this!) interpreter installed somewhere on your system. Currently Python 2.1 or newer is required, with Python 2.3 or 2.4 being recommended. Mailman should work with latest patch release on any Python branch from 2.1 to -2.4, which as of this writing (30-May-2005) is +2.4, which as of this writing (29-Aug-2006) is Python 2.1.3, Python 2.2.3, Python 2.3.5, and -Python 2.4.1. +Python 2.4.3.

Note that because Python 2.1 and 2.2 are no longer being developed, and only critical bugs are being fixed on the Python 2.3 branch, it is recommended @@ -44,7 +44,7 @@ by executing the following at your shell's command line:

% python -V -Python 2.4.1 +Python 2.4.3

@@ -62,7 +62,5 @@ for web server, and MTAs such as should work just fine.
You will need an ANSI C compiler to build Mailman's security -wrappers. The -GNU C compiler -gcc 2.8.1 or later is known to work -well. +wrappers. All modern versions of the +GNU C compiler should work well. diff --git a/admin/www/requirements.html b/admin/www/requirements.html index f8a86d3e..56b79d37 100644 --- a/admin/www/requirements.html +++ b/admin/www/requirements.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + diff --git a/admin/www/security.ht b/admin/www/security.ht index afe39420..6ac9473f 100644 --- a/admin/www/security.ht +++ b/admin/www/security.ht @@ -7,38 +7,6 @@ concerns should be emailed to mailman-security at python dot org. This is a closed list that reaches the core Mailman developers. -
Known issues and fixes
- -
- -
CAN-2005-0202 -- This is a very serious issue affecting the Mailman -2.1 series up to and including version 2.1.5. Mailman 2.1.6 is not -affected. This issue can allow for the leakage of member passwords. - -
A quick, immediate fix is to remove the /usr/local/mailman/cgi-bin/private -executable. However, this will break any private archives your lists may be -using. See below for a proper patch. - -
The extent of your exposure to this vulnerability depends on factors such -as which version of Apache you are running and how you have it configured. We -do not currently know the exact combination that enables the hole, although we -currently believe that Apache 2.0 sites are not vulnerable and that that many -if not most Apache 1.3 sites are vulnerable. In any event, the safest -approach is to assume the worst and it is recommended that you apply -this Mailman patch as soon as possible. - -
For additional peace of mind, it is -recommended that you regenerate your list member passwords using -the Mailman 2.1.6 reset_pw.py script. Put this file -in your Mailman installation's bin directory. After running the script, you -might also want to manually run the cron/mailpasswds script so that your users -will be informed of their new passwords. - -
Credit goes to Marcus Meissner for finding this issue. -
- -
Mailman 2.1.6 -- allows for more cryptographically secure (but less -user-friendly) list admin and auto-generated user passwords. Also, a -potential cross-site scripting hole has been closed. - -
+
To ensure the highest security of your Mailman site, it is always best to +run the latest release. If you are not running the latest release, please +upgrade before reporting security issues. diff --git a/admin/www/security.html b/admin/www/security.html index 0bfbe3cf..52b2b194 100644 --- a/admin/www/security.html +++ b/admin/www/security.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + diff --git a/admin/www/site.html b/admin/www/site.html index 8f7c463d..71ecad47 100644 --- a/admin/www/site.html +++ b/admin/www/site.html @@ -2,7 +2,7 @@ "http://www.w3.org/TR/html4/loose.dtd" > - + - + - + - +