Login error when there are waiting admin approval requests
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
Invalid
|
High
|
Barry Warsaw |
Bug Description
When there are waiting admin approval requests for a Mailman 2.0beta5
mailing list i get an error that does not allow me to login. I'm running
Debian v2.3 (woody) & python v1.5.2. Here is the full text of the
error:
-------
Bug in Mailman version 2.0beta5
We're sorry, we hit a bug!
If you would like to help us identify the problem, please email a copy of
this page to the webmaster for this site with a description of what
happened. Thanks!
Traceback:
Traceback (innermost last):
File "/home/
main()
File "/home/
Auth.
File "/home/
authenticate
isauthed = mlist.WebAuthen
File "/home/
WebAuthenticate
self.
File "/home/
ConfirmAdminPas
if not self.ValidAdmin
File "/home/
ValidAdminPassword
return type(pw) == StringType and \
TypeError: argument 2: expected string without null bytes, string found
Python information:
Variable
sys.version
(Debian GNU/Linux)]
sys.executable
sys.prefix
sys.exec_prefix
sys.path
sys.platform
Environment variables:
Variable
DOCUMENT_ROOT
SERVER_ADDR
HTTP_ACCEPT_
CONTENT_LENGTH
CONTENT_TYPE
PATH_TRANSLATED
REMOTE_ADDR
SERVER_SOFTWARE
mod_perl/1.24
GATEWAY_INTERFACE
UNIQUE_ID
HTTP_ACCEPT_
REMOTE_PORT
SERVER_PORT
HTTP_CONNECTION
HTTP_USER_AGENT
HTTP_ACCEPT_
HTTP_ACCEPT
image/png, */*
REQUEST_URI
PATH
QUERY_STRING
SERVER_PROTOCOL
PATH_INFO
HTTP_HOST
REQUEST_METHOD
SERVER_SIGNATURE
SCRIPT_NAME
SERVER_ADMIN
SCRIPT_FILENAME
PYTHONPATH
HTTP_REFERER
SERVER_NAME
[http://
Somehow, and I'm not sure how, you have gotten a list password with
embedded null bytes in it. I don't see how that could have happened. Do
you have any idea?
I don't believe this bug is related to waiting admin approval requests,
since I do that all the time and it works for me.
More information on how you got to this situation is definitely needed, as
I believe the web interface has the proper tests for cryptability of
passwords.
In any event, you might be able to fix this by using the site password and
changing the list password to something without null bytes.