Yves Bajard wrote: > >For one of the 11 mailing lists I host and manage as list owner, when >clicking on URL of the admin page, I get directly into it without having >to go through the password filter. > >I noticed that people who look for that list on Google can also access >directly the admin page of that list without being blocked by the >password filter. > >Anybody could tell me how to correct that flaw? I am not the webmaster >of my websites, but have contracted it to a local server in my city.
It is unclear to me what is happening here, but here are some things to think about. Do you have a saved login cookie for the list? Can anyone from any computer get to list admin pages via google, or just from your computer? Does the google link have a query part with adminpw=? Have you tried changing the list password? What happens if you click the 'logout' link on an admin page? -- Mark Sapiro <[EMAIL PROTECTED]> The highway is for gamblers, San Francisco Bay Area, California better use your sense - B. Dylan ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp
