[Bug 266821] Re: privacy hole in password reminder

trampster 266821 at bugs.launchpad.net
Mon Oct 1 08:51:37 CEST 2012


It is completely unacceptable that such a widely used opensource tool as
this has such a major security flaw in it.

You should not be able to send me my password in plaintext. Because
passwords should be stored using an non reversible salted hash.

This is a major PR disaster just waiting to happen. Mainman would become
a laughing stock of the software world.

How has this gone unfixed for 6 years.

-- 
You received this bug notification because you are a member of Mailman
Coders, which is subscribed to GNU Mailman.
https://bugs.launchpad.net/bugs/266821

Title:
  privacy hole in password reminder

To manage notifications about this bug go to:
https://bugs.launchpad.net/mailman/+bug/266821/+subscriptions


More information about the Mailman-coders mailing list