June 13, 2014
2:07 a.m.
John R Levine writes:
Honestly, Tough Noogies. Let list managers make their own security decisions.
Revealing a user password is not a list security decision, it's a user security decision. Asking users for their passwords is evil, period.
I mentioned the impact on lists (becoming targets) as additional reasons not to do this in Mailman.