The mailing list for listmasters using Sympa

[Miles Fidelman <address@concealed>]

As far as I know, there is no special "listmaster" account.  Rather one 
or more normal user/password entries have special privileges.

Now that I think about it, I believe this is actually designated in 
sympa.conf - which suggests that, in theory, one could change the 
address(es) listed in sympa.conf, restart sympa and wwsympa, and simply 
log in with the alternate username/password.  Not sure I'd want to try 
that, though.

Miles Fidelman

On 2/24/16 3:36 PM, Casey Workman wrote:
> OK, i got it fixed.  I finally found the templates and it looks like
> when it was set up initially someone had edited the change-password
> template.  I found the original and edited back in the line with the
> link.  So I'm back in, yea!
>
> Any thoughts on this however.  While looking through the user_table I
> noticed that the listmanager account was not there.  I created the
> line in the db and put in a random string for the password.  Then
> later, after I found the templates I changed the password to that
> account.  Went back to the db and noticed that the password field was
> updated as well as the last login was added as well.  So, what would
> have deleted the main listmanager account?  Can you even do that via
> the web interface?  I'm the only one that has command line access to
> the server and it sits behind a datacenter firewall where the access
> is controlled via special "management virtual machines".
>
> --------------------------------------
> Casey Workman
> Systems Engineer
> Murray State University
> 270-255-9675
>
> ***Please note that Murray State will NEVER ask for your username and
> password via email***
>
>
> On Wed, Feb 24, 2016 at 2:11 PM, Tim Kuehn <address@concealed> wrote:
> > In that case create a new account, find it in the db, and use that.
> >
> > On Wed, Feb 24, 2016 at 3:10 PM, Casey Workman <address@concealed> 
> > wrote:
> > > I would love to do that.  Unfortunately I'm just the admin to the
> > > system, I don't really use it.  So I don't have any other passwords
> > > available to me at this point.  In fact the web server interface is
> > > behind a firewall that no one can access.  Our user base just pushes
> > > email to it and they never log in, so out of luck there.  If anyone
> > > want to send me a hash of something simple stupid that would be great.
> > > If I could get a hash of "changeme", then I could use that in the
> > > database to get me in and change it from there.
> > >
> > > --------------------------------------
> > > Casey Workman
> > > Systems Engineer
> > > Murray State University
> > > 270-255-9675
> > >
> > > ***Please note that Murray State will NEVER ask for your username and
> > > password via email***
> > >
> > >
> > > On Wed, Feb 24, 2016 at 2:06 PM, Tim Kuehn <address@concealed> wrote:
> > > > copy the hashed password from an account you know the password to, and
> > > > you should be good to go.
> > > >
> > > > On Wed, Feb 24, 2016 at 2:58 PM, Casey Workman
> > > > <address@concealed> wrote:
> > > > > I should be good to go on changing the password in the user_table,
> > > > > that's not a big deal.  Other than I need to know how to hash it so
> > > > > it's correctly formatted.
> > > > >
> > > > > And, yeah I have checked through the email to make sure it wasn't a
> > > > > formatting problem or it was "hidden".  I have it open in Gmail and
> > > > > viewed the original message so it was showing the raw message headers
> > > > > and everything.  I even went so far as to go to someone else's sympa
> > > > > installation and clicked on their forgotten email link.  Then email
> > > > > from them was complete and I could see everything in it, including the
> > > > > link to go reset a password on their server.
> > > > >
> > > > > --------------------------------------
> > > > > Casey Workman
> > > > > Systems Engineer
> > > > > Murray State University
> > > > > 270-255-9675
> > > > >
> > > > > ***Please note that Murray State will NEVER ask for your username and
> > > > > password via email***
> > > > >
> > > > >
> > > > > On Wed, Feb 24, 2016 at 1:53 PM, Miles Fidelman
> > > > > <address@concealed> wrote:
> > > > > > I expect someone else will be able to provide a more detailed answer, but,
> > > > > > in the interim....
> > > > > >
> > > > > > - Passwords are stored in the database
> > > > > > - There's a section in the Sympa Reference Manual titled "Sympa and its
> > > > > > Database" - essential reading if you're going to play there
> > > > > > - /etc/sympa/sympa.conf probably has your database access info (username,
> > > > > > password) - assuming you have root access
> > > > > > - if you're good with SQL, you can change things using the the command line
> > > > > > (e.g., for mysql, the mysql command line), but, you're probably better off
> > > > > > using a GUI like phpmyadmin (or see
> > > > > > http://www.databasejournal.com/features/mysql/slideshows/top-10-mysql-gui-tools.html)
> > > > > >
> > > > > > But before digging around, you might try to figure out why you're list reset
> > > > > > password is coming through without the link.  You'd need to figure out which
> > > > > > routine generates it and look at the formatting files.  It could be that
> > > > > > your email program is displaying the link properly - look at the source
> > > > > > email.
> > > > > >
> > > > > > Hope this helps,
> > > > > >
> > > > > > Miles Fidelman
> > > > > >
> > > > > >
> > > > > > On 2/24/16 2:15 PM, Casey Workman (via sympa-users Mailing List) wrote:
> > > > > > > I can't get logged into our Sympa installation with the main
> > > > > > > listmaster account.  I think one of the other admins accidentally
> > > > > > > changed the password and now we are locked out.  I have tried to use
> > > > > > > the "Lost Password" link but the email I recieve is incomplete.  All
> > > > > > > it says is...
> > > > > > >
> > > > > > > ------------------------
> > > > > > > Someone, probably you, requested to create or renew your password for
> > > > > > > your list server account list.abcdefg.edu. (This request cames from
> > > > > > > host x.x.x.x at ).
> > > > > > > ------------------------
> > > > > > >
> > > > > > > It is missing the link at the end of the email that takes me to the
> > > > > > > form to change the password.  So my question is, how do I go about
> > > > > > > resetting that password?  Can it be accomplished from the command
> > > > > > > line?  In the database?
> > > > > > >
> > > > > > >
> > > > > > > --------------------------------------
> > > > > > > Casey Workman
> > > > > > > Systems Engineer
> > > > > > > Murray State University
> > > > > > > 270-255-9675
> > > > > > >
> > > > > > > ***Please note that Murray State will NEVER ask for your username and
> > > > > > > password via email***
> > > > > >
> > > > > > --
> > > > > > In theory, there is no difference between theory and practice.
> > > > > > In practice, there is.  .... Yogi Berra
> > > >
> > > >
> > > > --
> > > > Tim Kuehn - Senior Consultant, TDK Consulting Services
> > > > Progress Openedge and Application Modernization Consulting, Moodle
> > > > Learning Management Systems
> > > >
> > > > Skype: timothy.kuehn
> > > > Ph: 519-576-8100
> > > > Cell: 519-781-0081
> >
> >
> > --
> > Tim Kuehn - Senior Consultant, TDK Consulting Services
> > Progress Openedge and Application Modernization Consulting, Moodle
> > Learning Management Systems
> >
> > Skype: timothy.kuehn
> > Ph: 519-576-8100
> > Cell: 519-781-0081

--
In theory, there is no difference between theory and practice.
In practice, there is.  .... Yogi Berra