In article <[EMAIL PROTECTED]> you wrote:
> On Tue, Apr 23, 2002 at 10:24:23PM -0600, Kurt Seifried wrote:
>
>> Is it not incumbant upon the openssl.org mailing list maintainer(s) to
>> prevent spam from making it onto the mailing lists? Generally speaking you
>> will want to restrict posting to list members, and for lists such as
>> openssl-announce require moderation approval.
>
> [...]
> Only list members are allowed to post. A short inspection of the headers
> shows, that the emails had fake sender addresses like "[EMAIL PROTECTED]".
> It should be no surprise that that Richard Levitte as a member of the
> developers team is actually subscribed to the list(s) and therefore
> no mailing list manager could automatically distinguish this SPAM from
> a legitimite mail.
Exactly. If the sender address is found in the subscriber list, the post
is automatically approved. Only the remaining mails got relayed through
my person for manual inspection.
> [...]
> I cannot comment on the OpenSSL-Announce list. Only the core members
> should be allowed to send via this list.
> Probably the list should be switched to "moderated" (it currently does
> not seem to be moderated, does it?).
Hmm... yes, correct, it not moderated, but allows only the team members
to post. Hmmm.. but as said, this does not prevent this new form of
spamming. I've switched it to full moderation status now. Thanks for the
hint.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
