On Aug 7, 2018, at 12:41 AM, Maarten Deen <[email protected]> wrote: > A huge backlog going back to january 1st? Because I now get reminders from > every month.
A huge backlog going back ... I don't know how far. Once we get the current list server stabilized, I'm hoping that issues like this will not reoccur. > And my password is in the reminder as plain text. Please move to mailman 3 > which does not store passwords in plain text and does not mail it in the > membership reminder. Note that I am a member of the Mailman Cabal, and I receive a copy of every message sent to [email protected]. However, I'm no longer the primary active postmaster for python.org, as was the case way back in 2003 when I got started with Mailman. I've been following the development of Mailman3 for as long as it has been in existence. I'm also following the amount of work that Mark Sapiro is still doing to transition python.org from Mailman2 to Mailman3, and I'm aware of functionality within Mailman2 that still have not yet been ported over to Mailman3 -- which is one of the reasons why we still have some lists on python.org that have not yet been moved over. I'm also aware of how much work still needs to be done to make Mailman3 fully operational and ready for use by normal admins. I hope to be part of the process of improving that state. But I can tell you that the last time I tried to install and configure Mailman3 ended in disaster and much wailing, gnashing of teeth, and pulling of hair. We will get there, I am determined to make that happen. But this isn't necessarily the simple process you might think it is. > This is a serious security issue. It should be a low-value password, and shouldn't be re-used anywhere. So, it's not that big of a risk. OTOH, this is something that was strengthened in Mailman3, and I support that work. In the meanwhile, you could always turn off password reminders for yourself, as described at <https://wiki.list.org/DOC/How%20do%20I%20turn%20off%20passwords%20completely%3F>. -- Brad Knowles <[email protected]>
signature.asc
Description: Message signed with OpenPGP
_______________________________________________ pool mailing list [email protected] http://lists.ntp.org/listinfo/pool
