[Mailman-Developers] Doubt about security
adam-mailman at amyl.org.uk
Mon Jan 5 17:06:58 CET 2009
On Mon, Jan 05, 2009 at 09:34:47AM -0500, Dan Mahoney, System Admin wrote:
> I see this as a non-issue, personally, but I do think it looks bad, and
> think that screen should in a perfect world only be shown ONLY if there is
> a "list creator" password with no other privileges (but then, if that was
> the behavior, it would leak that fact).
If anyone were that'd bothered, they'd presumably use the
authentication/protection methods of their webserver on /create : or,
indeed, not bother maaking the Alias (or equiv) at all.
An Englishman thinks that 100 miles is a long way;
an American thinks that 100 years is a long time.
More information about the Mailman-Developers