That would be a very real risk. One thing you could do is make the Mailman server sit behind a firewall, and accept incoming connections only from your local network. This would mean that someone would have to be able to get access to one of your internal machines in order to send out stuff as your process, in addition to spoofing the address.How can we secure our list server?
And if users need access to the -request address I could route them from another server.
Or couldn't I just disable the list address and let the script post newsletters via inject?
Best regards, Jacob ------------------------------------------------------ Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
