Implement security log.

author: Mark Sapiro <mark@msapiro.net> 2018-06-11 09:59:26 -0700
committer: Mark Sapiro <mark@msapiro.net> 2018-06-11 09:59:26 -0700
commit: d363c183a208a1ef34847656533cb818d7a7cf50 (patch)
tree: 1481f31598316e141fba03af3e549b28fbef349b /Mailman/Cgi/admindb.py
parent: 0c2912a8d2a295a00260262cf6b7c01559d368b0 (diff)
parent: 540452e22108455e4efebc8fa7340760a68607f7 (diff)
download: mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.tar.gz
mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.tar.xz
mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.zip
1 files changed, 7 insertions, 0 deletions
diff --git a/Mailman/Cgi/admindb.py b/Mailman/Cgi/admindb.py
index cc863306..010d8aae 100644
--- a/Mailman/Cgi/admindb.py
+++ b/Mailman/Cgi/admindb.py
@@ -159,6 +159,13 @@ def main():
         if cgidata.has_key('adminpw'):
             # This is a re-authorization attempt
             msg = Bold(FontSize('+1', _('Authorization failed.'))).Format()
+            remote = os.environ.get('HTTP_FORWARDED_FOR',
+                     os.environ.get('HTTP_X_FORWARDED_FOR',
+                     os.environ.get('REMOTE_ADDR',
+                                    'unidentified origin')))
+            syslog('security',
+                   'Authorization failed (admindb): list=%s: remote=%s',
+                   listname, remote)
         else:
             msg = ''
         Auth.loginpage(mlist, 'admindb', msg=msg)
author	Mark Sapiro <mark@msapiro.net>	2018-06-11 09:59:26 -0700
committer	Mark Sapiro <mark@msapiro.net>	2018-06-11 09:59:26 -0700
commit	d363c183a208a1ef34847656533cb818d7a7cf50 (patch)
tree	1481f31598316e141fba03af3e549b28fbef349b /Mailman/Cgi/admindb.py
parent	0c2912a8d2a295a00260262cf6b7c01559d368b0 (diff)
parent	540452e22108455e4efebc8fa7340760a68607f7 (diff)
download	mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.tar.gz mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.tar.xz mailman2-d363c183a208a1ef34847656533cb818d7a7cf50.zip