IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Administrivia Forum / Mailing List Security Concerns
Post #187,065
by pwhysall
Picture of pwhysall
12/15/04 3:15:22 AM
Reply
New Mailing List Security Concerns
Drew raised the valid point that Mailman sends passwords in clear text, and that he considered this to be a security risk.

To this end, I would like to point out[0] the following best practices when using a fundamentally insecure application like Mailman over a fundamentally insecure protocol like SMTP.
  1. Don't use a password that matters to you - in fact, Mailman will generate a random one for you if you omit it when signing up.

  2. Don't use an email address that matters to you - create a new one. I have Gmail invites [link|mailto:peter.whysall@gmail.com?subject=I'd like a Gmail invite|available] if this is problematic.

  3. Er, that's pretty much it.

Short of doing everything over SSL, there's not much that can be done to address Drew's original point.

[0] I realise I am considerably vulnerable to accusations of providing tutelage for elderly relatives in the field of oral ovan manipulation.

Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Home]
Post #187,066
by drewk
Picture of drewk
12/15/04 3:23:00 AM
Reply
New LIke I said, $knee->jerk()
Worrying about the password in this instance is probably like wondering if I locked the door to my tent.
===

Purveyor of Doc Hope's [link|http://DocHope.com|fresh-baked dog biscuits and pet treats].
[link|http://DocHope.com|http://DocHope.com]
Post #187,068
by CRConrad
12/15/04 6:10:13 AM
Reply
New Tutoring "elderly relatives in *oral* ovan manipulation" ???
*My* Granny always sucked her eggs through her *nose*!


Snort!


   [link|mailto:MyUserId@MyISP.CountryCode|Christian R. Conrad]
(I live in Finland, and my e-mail in-box is at the Saunalahti company.)
Your lies are of Microsoftian Scale and boring to boot. Your 'depression' may be the closest you ever come to recognizing truth: you have no 'inferiority complex', you are inferior - and something inside you recognizes this. - [link|http://z.iwethey.org/forums/render/content/show?contentid=71575|Ashton Brown]
Post #187,070
by pwhysall
Picture of pwhysall
12/15/04 7:10:14 AM
Reply
New Re: Tutoring "elderly relatives in *oral* ovan manipulation" (new thread)
Created as new thread #187069 titled [link|/forums/render/content/show?contentid=187069|Re: Tutoring "elderly relatives in *oral* ovan manipulation"]

Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Home]
     Mailing List Security Concerns - (pwhysall) - (3) - Dec. 15, 2004, 03:15:22 AM EST
         LIke I said, $knee->jerk() - (drewk) - Dec. 15, 2004, 03:23:00 AM EST
         Tutoring "elderly relatives in *oral* ovan manipulation" ??? - (CRConrad) - (1) - Dec. 15, 2004, 06:10:13 AM EST
             Re: Tutoring "elderly relatives in *oral* ovan manipulation" (new thread) - (pwhysall) - Dec. 15, 2004, 07:10:14 AM EST

I don't want to write it, and you don't want to see it.
60 ms