[Mailman-Users] Non-Member filter Notations

2009-05-27 Thread Ferdinand Escudero 

In Mailman 2.1.5
Under Privacy Options|Senders Filters  non-member filters.. are regular 
expressions case sensitive ?


--
Ferdinand Escudero
Systems Administrator
University of California San Diego
Computer Science and Engineering
Phone:858 822-6561
email:fer...@ucsd.edu

--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

Re: [Mailman-Users] my mailman has been hacked !!

2009-05-27 Thread Rob MacGregor 
On Wed, May 27, 2009 at 19:23, Khalil Abbas  wrote:
>
> HELP!!
>
> one of my lists has been hacked.. all members are moderated, except my own 
> email address (m...@email.com) which I use to post to the list ..
>
> someone sent from my address to the list and all my subscribers has recieved 
> a damn virus as an attachment!!  but the 'From' name is not me, which means 
> that the sender didn't use my email to send but used a kind of open-relayed 
> server or something ..
>
> please help what should I do ???

Look at the headers and work out what really happened.

Forging email addresses is trivial.  It is the work of a few seconds
to send an email with somebody else's email address.  You can mitigate
somewhat by using SPF and DKIM, but it does require that everybody
checks your SPF and DKIM records - not everybody does.

-- 
 Please keep list traffic on the list.

Rob MacGregor
  Whoever fights monsters should see to it that in the process he
doesn't become a monster.  Friedrich Nietzsche
--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

[Mailman-Users] Odd Behavior

2009-05-27 Thread Dennis Putnam 
I'm not sure this is really a Mailman issue but at this point, I don't
know where else to start. The problem stems from email to the root user.
I have an alias set (postfix) to send mail for root to my administrator
address. If it matters this address is in a different domain so the form
of the alias is administra...@myotherdomain.com. Also, FWIW, this seems
to have started when I upgraded from Mandriva 2007 to 2008.2.

What is happening, is that mail to root is somehow being routed through
Mailman. Each time something is sent to root, the following error email
is generated:

---

This is the mail system at host home.mydomain.com.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

   The mail system

<"mailman-loop:/var/lib/mailman/data/owner-bounces.mbox"@home.mydomain.com>
(expanded from ): unknown user:
"mailman-loop:/var/lib/mailman/data/owner-bounces.mbox"

<"mailman:|/usr/lib/mailman/mail/mailman post mailman"@home.mydomain.com>
(expanded from ): unknown user:
"mailman:|/usr/lib/mailman/mail/mailman post mailman"

<"mailman-admin:|/usr/lib/mailman/mail/mailman admin
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-admin:|/usr/lib/mailman/mail/mailman admin mailman"

<"mailman-bounces:|/usr/lib/mailman/mail/mailman bounces
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-bounces:|/usr/lib/mailman/mail/mailman bounces mailman"

<"mailman-confirm:|/usr/lib/mailman/mail/mailman confirm
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-confirm:|/usr/lib/mailman/mail/mailman confirm mailman"

<"mailman-join:|/usr/lib/mailman/mail/mailman join mailman"@home.mydomain.com>
(expanded from ): unknown user:
"mailman-join:|/usr/lib/mailman/mail/mailman join mailman"

<"mailman-leave:|/usr/lib/mailman/mail/mailman leave
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-leave:|/usr/lib/mailman/mail/mailman leave mailman"

<"mailman-owner:|/usr/lib/mailman/mail/mailman owner
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-owner:|/usr/lib/mailman/mail/mailman owner mailman"

<"mailman-request:|/usr/lib/mailman/mail/mailman request
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-request:|/usr/lib/mailman/mail/mailman request mailman"

<"mailman-subscribe:|/usr/lib/mailman/mail/mailman subscribe
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-subscribe:|/usr/lib/mailman/mail/mailman subscribe mailman"

<"mailman-unsubscribe:|/usr/lib/mailman/mail/mailman unsubscribe
mailman"@home.mydomain.com> (expanded from ): unknown user:
"mailman-unsubscribe:|/usr/lib/mailman/mail/mailman unsubscribe mailman"

.
.
.

Reporting-MTA: dns; home.mydomain.com
X-Postfix-Queue-ID: C0B9C85073
X-Postfix-Sender: rfc822; r...@home.mydomain.com
Arrival-Date: Mon, 25 May 2009 04:11:19 -0400 (EDT)

Final-Recipient: rfc822; 
"mailman-loop:/var/lib/mailman/data/owner-bounces.mbox"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman-loop:/var/lib/mailman/data/owner-bounces.mbox"

Final-Recipient: rfc822; "mailman:|/usr/lib/mailman/mail/mailman post 
mailman"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman:|/usr/lib/mailman/mail/mailman post mailman"

Final-Recipient: rfc822; "mailman-admin:|/usr/lib/mailman/mail/mailman admin 
mailman"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman-admin:|/usr/lib/mailman/mail/mailman admin mailman"

Final-Recipient: rfc822; "mailman-bounces:|/usr/lib/mailman/mail/mailman 
bounces mailman"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman-bounces:|/usr/lib/mailman/mail/mailman bounces mailman"

Final-Recipient: rfc822; "mailman-confirm:|/usr/lib/mailman/mail/mailman 
confirm mailman"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman-confirm:|/usr/lib/mailman/mail/mailman confirm mailman"

Final-Recipient: rfc822; "mailman-join:|/usr/lib/mailman/mail/mailman join 
mailman"@home.mydomain.com
Original-Recipient: rfc822; root
Action: failed
Status: 5.1.1
Diagnostic-Code: X-Postfix; unknown user:
"mailman-join:|/usr/lib/mailman/mail/mailman join mailman"

Final-Recipient: rfc822; "mailman-leave:|/usr/lib/mailm

Re: [Mailman-Users] Will Mailman inform a sender of a bounced message that it was approved?

2009-05-27 Thread Brad Knowles 

on 5/26/09 4:23 PM, Jane Frizzell said:

Is there a feature in Mail Man that would notify the sender of a 
message, when it bounces for moderation, to be informed when it is 
cleared by the moderator?  This person is not a member of the list so 
could not tell if it is eventually delivered.


The standard version of Mailman can be configured to inform the sender 
that their message is being held for moderation, but there is no method 
I know of to configure it to notify the sender when the message has been 
released.


I don't know what kind of source-code level modifications might be 
necessary to make that happen.


--
Brad Knowles 
LinkedIn Profile: 
--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

Re: [Mailman-Users] my mailman has been hacked !!

2009-05-27 Thread Mark Sapiro 
Jeffrey Goldberg wrote:

>On May 27, 2009, at 1:23 PM, Khalil Abbas wrote:
>
>> all members are moderated, except my own email address  
>> (m...@email.com) which I use to post to the list ..
>
>> someone sent from my address
>
>
>> the 'From' name is not me,
>
>Please clarify.  Did the From line contain your email address (m...@email.com 
>) or not?  You seem to be saying two different things.
>
>If, as I suspect, someone is merely forging your address to post to  
>the list, there are two things that you can do (I would recommend that  
>you do (1) as an immediate and temporary measure, until you can get  
>(2) in place).
>
>(1) Moderate even your own postings, so that your list moderator  
>password is required to post, even if "from" your own address.
>
>(2) Improve the spam/virus filtering on your mailserver.  A forged  
>message from an open relay containing a virus should have been stopped  
>by your mail system long before it reached mailman.


Two comments in addition to the above good advice.

1) Almost anyone can spoof your address in the From: of an email. This
does not require an open relay server or anything fancy. Almost any
MUA can do it.

2) That is why for announce lists we recommend moderating everyone and
if you want to avoid moderation when posting, use an Approved: header
to bypass moderation. See the FAQs at 
and .

-- 
Mark Sapiro The highway is for gamblers,
San Francisco Bay Area, Californiabetter use your sense - B. Dylan

--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

Re: [Mailman-Users] Mailman Sibling lists

2009-05-27 Thread Tokio Kikuchi 
Hi,

> I currently have the below setup
> 
> Parent list   Sibling list
> 
> Staff staff-info
> 
>   All-info
> 
>  
> 
> Non-staff non-staff-info
> 
>   All-info
> 
> This all works correctly except when a e-mail is sent to both the staff and
> non-staff parent lists. It results in the people on 'All-info' list
> receiving duplicate e-mails. I have tried adding the staff list into the
> regular_exclude_lists in the 'non-staff' list but this does not work

Exclude/include is done if the list address appears explicitly on the
To:/Cc: headers.  You should write 'staff-info' and 'non-staff-info' in
the regular_exclude_lists of 'All-info' and send a message
'To:staff-info,non-staff-info,All-info' to avoid duplicates.



-- 
Tokio Kikuchi, tkiku...@is.kochi-u.ac.jp
http://weather.is.kochi-u.ac.jp/
--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

Re: [Mailman-Users] my mailman has been hacked !!

2009-05-27 Thread Jeffrey Goldberg 

On May 27, 2009, at 1:23 PM, Khalil Abbas wrote:

all members are moderated, except my own email address  
(m...@email.com) which I use to post to the list ..



someone sent from my address




the 'From' name is not me,


Please clarify.  Did the From line contain your email address (m...@email.com 
) or not?  You seem to be saying two different things.


If, as I suspect, someone is merely forging your address to post to  
the list, there are two things that you can do (I would recommend that  
you do (1) as an immediate and temporary measure, until you can get  
(2) in place).


(1) Moderate even your own postings, so that your list moderator  
password is required to post, even if "from" your own address.


(2) Improve the spam/virus filtering on your mailserver.  A forged  
message from an open relay containing a virus should have been stopped  
by your mail system long before it reached mailman.


Cheers,

-j


--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

[Mailman-Users] my mailman has been hacked !!

2009-05-27 Thread Khalil Abbas 

HELP!!

 

one of my lists has been hacked.. all members are moderated, except my own 
email address (m...@email.com) which I use to post to the list ..

 

someone sent from my address to the list and all my subscribers has recieved a 
damn virus as an attachment!!  but the 'From' name is not me, which means that 
the sender didn't use my email to send but used a kind of open-relayed server 
or something .. 

 

please help what should I do ???

_
Windows Live™: Keep your life in sync. Check it out!
http://windowslive.com/explore?ocid=TXT_TAGLM_WL_t1_allup_explore_012009
--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

Re: [Mailman-Users] Help! "Stuck Messages"

2009-05-27 Thread John 
I have a similar problem... I use a Virtual Dedicated server to host several
domains with a number of Mailman lists on them. Every so often the traffic on
the Mailman lists drops to a trickle or stops. Bounce volume and regular email
is usually unaffected. I've given up trying to debug it, I just reboot the
server and the flood-gates open. Sometimes the easiest solution/work-around is
brute force...  :-/

John

--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

[Mailman-Users] Will Mailman inform a sender of a bounced message that it was approved?

2009-05-27 Thread Jane Frizzell 

Hello,
Is there a feature in Mail Man that would notify the sender of a 
message, when it bounces for moderation, to be informed when it is 
cleared by the moderator?  This person is not a member of the list so 
could not tell if it is eventually delivered.


Thanks.  Jane.

--
Jane Frizzell   Network Services Administrator
Bates College Information and Library Services
jfriz...@bates.edu  786-6457110 Russell St

--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

[Mailman-Users] Mailman Sibling lists

2009-05-27 Thread Damion Theobald 
Hi,

 

Could anyone be of help in the setting up of mailman sibling lists.

 

I currently have the below setup

 

Parent list   Sibling list

Staff staff-info

  All-info

 

Non-staff non-staff-info

  All-info

 

This all works correctly except when a e-mail is sent to both the staff and
non-staff parent lists. It results in the people on 'All-info' list
receiving duplicate e-mails. I have tried adding the staff list into the
regular_exclude_lists in the 'non-staff' list but this does not work

 

Any help would be most appreciated.

 

Regards

Damion

 

--
Mailman-Users mailing list
Mailman-Users@python.org
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9