SSL support broken: form posts hard coded to insecure URL
Bug #266201 reported by
Graham Leggett
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
New
|
Medium
|
Unassigned |
Bug Description
After configuring mailman to be accessible from within
a secure webserver (httpd v2.1.3, RHEL3), if the
"create" option is used, the insecure http:// complete
website URL is encoded into the page form, thus
bypassing the secure webserver.
All forms should submit to relative URLs, which will
ensure that the correct website prefix is used.
The FAQ implies that mailman can be run on a secure
webserver and everything should "just work", however
this does not seem to be the case.
[http://
To post a comment you must log in.
Have you set /%s/mailman/ ' www.python. org/cgi- bin/faqw- mm.py
DEFAULT_URL_PATTERN = 'https:/
in your mm_cfg.py ?
See 4.27 in mailman FAQ wizard:
http://