[Mailman-Developers] [Greg Stark <gsstark@mit.edu>] Re: Bounce
removal parameters default values
Barry Warsaw
barry at python.org
Thu Jun 17 16:19:25 EDT 2004
On Thu, 2004-06-17 at 14:36, Greg Stark wrote:
> It is using messages posted to the list -- the content and format of which it
> does not control -- to detect bouncing email addresses. Because of this it
> cannot tell if the bounces it's receiving are caused by a broken email address
> or caused by some particularity of the posted message.
> Really Mailman should simply not trust outside data for any purpose. It should
> treat the bounces received from mailing list messages purely as hints. It
> should then send its *own* message with content not subject to any control
> from outside to the user. Only if that known inoffensive message bounces
> should it consider removing the user.
Upgrade to Mailman 2.1.5, which sends out probe messages after the
bounce threshold is reached. Members will only get disabled if the
probe message bounces, it should be computationally infeasible to forge
a probe bounce, and bogus probes bounces are simply ignored. When a
probe is sent, the member's bounce score is reset to zero, since it's
impossible to tell whether the probe actually reached its destination --
all you know is that it hasn't bounced... yet.
-Barry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 307 bytes
Desc: This is a digitally signed message part
Url : http://mail.python.org/pipermail/mailman-developers/attachments/20040617/8bf89f02/attachment.bin
More information about the Mailman-Developers
mailing list