[Bug 266821] Re: privacy hole in password reminder

trampster 266821 at bugs.launchpad.net
Mon Oct 1 08:51:37 CEST 2012

It is completely unacceptable that such a widely used opensource tool as
this has such a major security flaw in it.

You should not be able to send me my password in plaintext. Because
passwords should be stored using an non reversible salted hash.

This is a major PR disaster just waiting to happen. Mainman would become
a laughing stock of the software world.

How has this gone unfixed for 6 years.

You received this bug notification because you are a member of Mailman
Coders, which is subscribed to GNU Mailman.

  privacy hole in password reminder

To manage notifications about this bug go to:

More information about the Mailman-coders mailing list