* Hyrum Wright [Tue, 27 Jan 2004 at 09:25 -0700] > What does this say about who can send messages to the current-students > list? One would think that on list like that, there would be some sort > of authentication, either via a signed email or some other means. If > anybody can send a message to the a campus list, simply by spoofing the > from and reply-to headers, it opens up a whole new word for worms and > spammer and the like. Definitely *not* a Good Thing.
Yes, definately Not Good. This should be jumped on immediately (anyone involved in university communications?) and requiring a signed email for that list is a /very/ good idea. I would feel much more comfortable if my 'university communications' were signed. Especially if I ever checked my mail from a kiosk. But as it happens, I only ever check my mail with mutt on a linux computer, even if it's remote using putty :)
pgp00000.pgp
Description: PGP signature
____________________ BYU Unix Users Group http://uug.byu.edu/ ___________________________________________________________________ List Info: http://uug.byu.edu/cgi-bin/mailman/listinfo/uug-list
