#9038 Mailman is sending unauthorized fedmsgs
Closed: Fixed 2 years ago by kevin. Opened 2 years ago by abompard.

I'm getting a lot of these messages in the briges log:

Authorization/routing_policy error.  Topic 'org.fedoraproject.prod.mailman.receive'.  Signer 'mailman-mailman01.phx2.fedoraproject.org'.

I don't know if the mailman servers have been moved yet, but:

  • if they are they are still sending fedmsgs signed with .phx2 while only .iad2 is authorized
  • if they are not then we need to also authorize .iad2 messages for the mailman topic.

Kevin created new certs last night but it does not seem to be updating. I am running the playbook to hopefully correct this.

fedmsg certs have been updated. please test and let me know.

The bridges did not get restarted, I'm restarting them now.

Actually the bridges didn't need restarting... Anyway, apparently mailman is still sending fedmsgs signed as mailman-mailman01.phx2.fedoraproject.org.

I have removed all the old certs from the system and restarted mailman and httpd. At this point i don't know where else it could be squirreled away.

Metadata Update from @kevin:
- Issue close_status updated to: Fixed
- Issue status updated to: Closed (was: Open)

2 years ago

Login to comment on this ticket.