[Mailman-Developers] Mailing lists exploited
Mark Sapiro
mark at msapiro.net
Mon May 15 14:03:52 EDT 2017
On 05/12/2017 05:13 AM, Jonathan Knight wrote:
>
> Maybe listing administrator email addresses needs the be a thing of the
> past.
It's not done in Mailman 3.
For mailman 2.1, the administrator email addresses are a mailto: link
the goes to the LISTNAME-owner address, but the email addresses are
exposed and only mildly obfuscated ('@' -> ' at ').
I would consider adding a configuration option to either obfuscate the
addresses further (e.g. drop the domain entirely) or replace the text
with something like "Listname list run by listname-owner at example.com".
WDOT?
--
Mark Sapiro <mark at msapiro.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan
More information about the Mailman-Developers
mailing list