[Mailman-Developers] Password security vulnerability
Dirk De Coninck
Dirk.DeConinck@inno.com
Wed Oct 23 09:50:46 2002
Dear developers,
It seems there is a bug in the listadmin password checking. I have
version 2.0.11 running at my site and to my experience mailman only
looks to the first 8 characters of a password. This was a real problem
for me as all the listadmin passwords began with the name of the list...
As a result one could login be typing the name of the list (for those
lists with a name longer then 8 characters). I have searched the
archives if this is a known problem or if there is a fix available but
without success. I would appreciate any feedback regarding this issue.
Kind regards,
Dirk.
P.S. Thank you all for your contributions and the development of
mailman. Keep up the good work !!!
________________________________________________________
Dirk De Coninck Inno.com
Heiststeenweg 131
2580 Beerzel - Belgium
Mobile +32 486 50 12 85 Tel +32 15 25 82 00
Fax +32 15 25 82 01
mailto:Dirk.DeConinck@inno.com http://www.inno.com
________________________________________________________