First, an enthusiastic +1 to Steve's comments re security being
compatible with risk.
Second, Mailman is -- at this point -- easily the best available option
for mailing list management. That is not to say it's perfect, of course
it's not -- but in terms of capability, support, development,
On Nov 2, 2012, at 3:56 PM, John R Levine jo...@taugh.com wrote:
Why does the mailing list memberships reminder send passwords in the
clear?
Because that's what Mailman does. Send code.
And that's acceptable to the IETF? You're kidding me, right?
I can't speak for the IETF, but I do
John,
Why does the mailing list memberships reminder send passwords in the clear?
Because that's what Mailman does. Send code.
And that's acceptable to the IETF? You're kidding me, right?
P.
are never sent
in the clear.
I find it hard to understand that this is acceptable to the IETF.
Thanks,
P.
On 1 Nov 2012, at 20:20, Paul Aitken pait...@cisco.com wrote:
Why does the mailing list memberships reminder send passwords in the clear?
Because mailman is brain-dead stupid. See:
http
John,
I can't speak for the IETF, but I do note that the same password
notices have been going out on the first of every month for years.
You just noticed iit now?
No, I've been getting the passwords for years. However I just finished a
crypto class and really wondered what the history is
On Nov 2, 2012, at 3:39 PM, Paul Aitken pait...@cisco.com wrote:
John,
Why does the mailing list memberships reminder send passwords in the
clear?
Because that's what Mailman does. Send code.
And that's acceptable to the IETF? You're kidding me, right?
Because the security
On 2 Nov 2012, at 21:51, John Levine jo...@taugh.com wrote:
Only majordomo2, which has been unmaintained for a while now (and
it's author calls it Dead holds much of a chance, but I doubt it
?would work for the IETF in its current condition.
Actually, MJ2 works great, I've been using it in
Why does the mailing list memberships reminder send passwords in the
clear?
For everything else I'm subscribed to, if I forget my details, one click
sends a one-time password-reset link.
Passwords are never mailed out, and never shown.
Thanks,
P.
In article 5092d99f.3070...@cisco.com you write:
Why does the mailing list memberships reminder send passwords in the
clear?
Because that's what Mailman does. Send code.
--
Regards,
John Levine, jo...@iecc.com, Primary Perpetrator of The Internet for Dummies,
Please consider the environment
On 1 Nov 2012, at 20:20, Paul Aitken pait...@cisco.com wrote:
Why does the mailing list memberships reminder send passwords in the clear?
Because mailman is brain-dead stupid. See:
http://www.jwz.org/doc/mailman.html
Sadly, and despite my best efforts to find alternative mailing list software
privacy, claims passwords will not be /en clair/)
On Nov 2, 2012, at 11:24 AM, John Levine wrote:
In article 5092d99f.3070...@cisco.com you write:
Why does the mailing list memberships reminder send passwords in the
clear?
Because that's what Mailman does. Send code.
--
Regards,
John
Why does the mailing list memberships reminder send passwords in the
clear?
Because that's what Mailman does. Send code.
And that's acceptable to the IETF? You're kidding me, right?
I can't speak for the IETF, but I do note that the same password notices
have been going out on the first
Only majordomo2, which has been unmaintained for a while now (and
it's author calls it Dead holds much of a chance, but I doubt it
?would work for the IETF in its current condition.
Actually, MJ2 works great, I've been using it in production for years,
but I agree that we'd need to locate a perl
13 matches
Mail list logo
