Hi,
There was recently a mail on the (closed) Mailman security list from the CERT Coordination Center which had this strange CC field:
CC: '@mail.python.org, C@mail.python.org, E@mail.python.org, R@mail.python.org, T@mail.python.org, o@mail.python.org, r@mail.python.org, d@mail.python.org, i@mail.python.org, n@mail.python.org, a@mail.python.org, t@mail.python.org, e@mail.python.org, c@mail.python.org, "", "."@mail.python.org, g@mail.python.org
I guess those are "conformant" email addresses, but they seem unlikely to be mailboxes at python.org. I'm not sure if these addresses were added by the generating software at CERT, some MTA, or Mailman.
Has anybody seen anything like this before?
P.S. I hope I'm not spoiling this for any amateur sleuths who wanted to figure it out for themselves, but yes, except for the apostrophe and the empty address, those are the letters in "CERT Coordination Center cert@cert.org", in order, with dupes eliminated.
P.P.S. It's about a conference, not a CVE. Hakuna matata!
Steve
On 4/21/21 11:25 AM, Stephen J. Turnbull wrote:
Hi,
There was recently a mail on the (closed) Mailman security list from the CERT Coordination Center which had this strange CC field:
CC: '@mail.python.org, C@mail.python.org, E@mail.python.org, R@mail.python.org, T@mail.python.org, o@mail.python.org, r@mail.python.org, d@mail.python.org, i@mail.python.org, n@mail.python.org, a@mail.python.org, t@mail.python.org, e@mail.python.org, c@mail.python.org, "", "."@mail.python.org, g@mail.python.org
I guess those are "conformant" email addresses, but they seem unlikely to be mailboxes at python.org. I'm not sure if these addresses were added by the generating software at CERT, some MTA, or Mailman.
Has anybody seen anything like this before?
My fault. There was an issue on mpo causing a shunted message https://gitlab.com/mailman/mailman/-/issues/881, and I installed a quick but incorrect patch to fix it which caused this. The patch has since been removed. I've got a correct fix, but am working on tests before committing it.
Mark Sapiro writes:
On 4/21/21 11:25 AM, Stephen J. Turnbull wrote:
Has anybody seen anything like this before?
My fault. There was an issue on mpo causing a shunted message https://gitlab.com/mailman/mailman/-/issues/881, and I installed a quick but incorrect patch
Sorry you have to do extra work, but no problem for me. I almost complained to CERT ;-) but then I actually thought about it :-P, so no harm done (to me, anyway).