1 Maybe for security have USE_HTTP_AUTH = ['user1', 'user2']
3 --- mailman-2.1.11/Mailman/Defaults.py.in~ 2009-06-08 16:45:29.000000000 +0300
4 +++ mailman-2.1.11/Mailman/Defaults.py.in 2009-06-08 16:45:31.967055253 +0300
6 AuthListModerator = 4 # List Moderator (can only handle held requests)
7 AuthSiteAdmin = 5 # Site Administrator (total control over everything)
9 +# If value is True, site administrator is trusted from REMOTE_USER CGI variable
10 +# Use this to if you want to use password authentication for site admin.
11 +USE_HTTP_AUTH = False
14 LIST_DATA_DIR = os.path.join(VAR_PREFIX, 'lists')
16 --- mailman-2.1.11/Mailman/Utils.py~ 2009-06-08 16:45:22.000000000 +0300
17 +++ mailman-2.1.11/Mailman/Utils.py 2009-06-08 16:45:25.094129761 +0300
21 def check_global_password(response, siteadmin=True):
22 + if mm_cfg.USE_HTTP_AUTH:
23 + if os.getenv('AUTH_TYPE') != None and os.getenv('REMOTE_USER') != None:
25 + # Fallback to global password auth
27 challenge = get_global_password(siteadmin)