i have searched the faq and asked google but haven't found anything for
my problem (so forgive me if i missed something obvious):
my basic problem is, that i want to forward mails from one mailing list
to another (on both lists only subscribers can post):
the setting is as follows: there is an "announce"-list and a
"users"-list; mails going to the "announce"-list should also go to the
"users"-list, so people don't have to subscribe to both lists
the subscribers to both lists overlap, but there are a lot of users
subscribed to only one of them.
so my first attempt was, to just subscribe "users" to the "announce"
list, but as soon as somebody who is subscribed to "announce" but NOT to
"users" posts to the announce-list, the mail is held for approval in the
this is rather inconvenient.
so my second thought was to auto-accept postings to the "users" list
which has a special header-field (i thought that the "List-ID"-field
would just be ok for my purposes).
unfortunately i found that this wasn't possible (i am running debian and
tried both 2.1.5-8sarge2 (which is basically 2.1.5 with some
cross-site-scripting security issues fixed) and 2.1.8)
the only header-field i found which could be used for auto-accepting is
the the "Approved: <moderator-password>".
so i did a quick hack to handle this at the MTA-level
i didn't want to patch mailman itself, because this is only a rather
long-term solution: wait until the patch gets accepted upstream; then
wait until the upstream version is in debian (and with the debian way of
releasing this will take years until it is in the stable branch which i
prefer for my servers); in the meantime i could either run the newest
mailman release (from source) or patch each and every security update of
basically now my working setting is like this (using mailman, exim4,
"users" is subscribed to "announce".
mails for "users" are not directly delivered to the mailman-wrapper by
the MTA but instead it is first piped through procmail.
if any mail directed to "users" appears to come from "announce" (based
on the "List-ID" header field) i add another header "Approved: <mod-pw>"
with formail, before it gets delivered to the mailman-wrapper for "users".
of course this is not very secure (but not much less secure then
accepting mails based on the "From:" field)
however, since this was a bit of work and somewhat hackish (though only
configuration and no patching was involved) my question is: is there as
simpler way to acchieve this? would an option for each mailing list to
auto-accept mails with a special header (perferrably a regex) make sense
or - if my setup is of some use for others - should i post a short howto