[Mailman-Developers] Protecting email addresses from spam harvesters

Barry A. Warsaw barry@zope.com
Tue, 26 Feb 2002 02:05:03 -0500

>>>>> "DM" == Damien Morton <dm-temp-310102@nyc.rr.com> writes:

    DM> You could always use Basic Authentication, with authentication
    DM> being done by the cgi scripts against the membership list
    DM> (emailaddress,password) rather than the webserver. As far as I
    DM> can tell, this operates somewhat like a cookie in that
    DM> identifying information is handed to the server on every
    DM> request.

Yeah, except that AFAICT, basic auth is broken in that you can't
re-authenticate yourself or un-authenticate yourself.  I.e. you need
to do `Logout', especially when you're debugging the admin
interfaces. ;)

I could be totally off base though.