1 Jun
2017
1 Jun
'17
2:04 p.m.
Mailman doesn't have CAPTCHA. It does use a challenge; when you request
to subscribe, it mails you a key that you have to mail back, but I know
that bot subscribers have already automated that. It helps keep some
undeliverable addresses from subscribing, but it's not designed as a
real security measure.
I've considered using a different mailing list manager, but I haven't
found one that was superior enough to make it worth the hassle to transfer
the large list of existing subscribers. And I guarantee that if people
had to resubscribe, a lot of them wouldn't.
No, I just assume that anything posted to the list becomes public knowledge.
The only solution is not to post secrets.
- Brian
On Thu, Jun 01, 2017 at 10:55:04AM -0700, David Ranch wrote:
- high impact: delete all users from the email list
and make everyone
re-subscribe. I don't know how effect this will be unless the Postman
system can enable something like a captcha challenge system to keep out
bots. People who don't keep up with their email would loose some of the
postings