ISPsystem.com Forums - View Single Post

Com2 · 09-03-2009, 03:36 PM

Dear sir,

We just migrated from another control panel to ISPmanager.

I would like to request these three items:

1.

When you create an account with php access, a local php.ini file is
created.
In this file there is a line:

sendmail_path = "/usr/sbin/sendmail -t -i -f webmaster@domain.com"

However, if there is no e-mail box with the name webmaster@domain.com
the e-mail forms are giving an error and the mail is not send out.

I would suggest that when creating an account, you also create a
mailbox with the name webmaster@domain.com that customers can not delete.

Now we create this mailbox manulally, however customers will delete this box
because they do not think they need it.
Afterwards they raise tickets because their forms are not handeled.

2.

You have implemented Mailman.
You can create a new mailing list, can add a subscriber and a sender to a list.

That is working fine.

However, in every mail that is send out with Mailman, there is a link
in it like:

https://domain.com/mailman/admindb/.....

to the Mailman webinterface that you can not access because the folder of the webinterface is outside
the docroot and that is not allowed using suphp.

Beside that in the webinterface you can considerate a request, set filters, blocke e-mail addresses etc.

I think you must agree that sending out e-mails with a non accessable link is quite confusing
and our customers had some questions about this.

I would like to see that:

a) The webinterface will become available (other control panels tweaked Mailman and the webinterface is available)

or

b) add the features of the webinterface inside ISPmanager so you can filter, allow a post etc. inside ISPmanager
and remove the links to the webinterface from all the e-mails.

3.

If you log in into the control panel a cookie is set.
However, it seems that a session will never expire.

If you not log out, but just close the window with the top right x and open
a new browser, go to the control panel, you are logged in without being promted for
you log in details.
This will lead to problems when you are using a central log in (master with slaves) and it
is a security issue.
I was logged in without the need of giving details on the computer of a friend of
mine the next day, after a brwoser crash the day before.

I would suggest the session expires in half an hour of non activity.

Thanks

09-03-2009, 03:36 PM	#1
Com2 Junior Member Join Date: Aug 2009 Posts: 5	Local php.ini, Mailman, session expire Dear sir, We just migrated from another control panel to ISPmanager. I would like to request these three items: 1. When you create an account with php access, a local php.ini file is created. In this file there is a line: sendmail_path = "/usr/sbin/sendmail -t -i -f webmaster@domain.com" However, if there is no e-mail box with the name webmaster@domain.com the e-mail forms are giving an error and the mail is not send out. I would suggest that when creating an account, you also create a mailbox with the name webmaster@domain.com that customers can not delete. Now we create this mailbox manulally, however customers will delete this box because they do not think they need it. Afterwards they raise tickets because their forms are not handeled. 2. You have implemented Mailman. You can create a new mailing list, can add a subscriber and a sender to a list. That is working fine. However, in every mail that is send out with Mailman, there is a link in it like: https://domain.com/mailman/admindb/..... to the Mailman webinterface that you can not access because the folder of the webinterface is outside the docroot and that is not allowed using suphp. Beside that in the webinterface you can considerate a request, set filters, blocke e-mail addresses etc. I think you must agree that sending out e-mails with a non accessable link is quite confusing and our customers had some questions about this. I would like to see that: a) The webinterface will become available (other control panels tweaked Mailman and the webinterface is available) or b) add the features of the webinterface inside ISPmanager so you can filter, allow a post etc. inside ISPmanager and remove the links to the webinterface from all the e-mails. 3. If you log in into the control panel a cookie is set. However, it seems that a session will never expire. If you not log out, but just close the window with the top right x and open a new browser, go to the control panel, you are logged in without being promted for you log in details. This will lead to problems when you are using a central log in (master with slaves) and it is a security issue. I was logged in without the need of giving details on the computer of a friend of mine the next day, after a brwoser crash the day before. I would suggest the session expires in half an hour of non activity. Thanks