[Bug 770581] [NEW] The list admin or moderator password can be compromised by sending in an Approved: header
Mark Sapiro
mark at msapiro.net
Tue Apr 26 01:23:44 CEST 2011
Public bug reported:
If posting to a list is secured by requiring an Approved: or X-Approved:
header for a post to be accepted without moderation, the list admin or
moderator password can be compromised by sending it in the headers of an
email message.
There should be a 'poster' password for this purpose only so the
consequences of compromise would be less severe.
** Affects: mailman
Importance: Wishlist
Assignee: Mark Sapiro (msapiro)
Status: In Progress
--
You received this bug notification because you are a member of Mailman
Coders, which is subscribed to GNU Mailman.
https://bugs.launchpad.net/bugs/770581
Title:
The list admin or moderator password can be compromised by sending in
an Approved: header
More information about the Mailman-coders
mailing list