On Wed, 17 Jan 2007, Mark Sapiro wrote: > Paul Tomblin wrote: > > > >You mean that if people used the Approve: header that Mailman doesn't > >strip it out before it sends it? That seems like a huge security hole. > > > No I don't mean that. It is removed whether or not the password is > valid. When I said "This is intentional to discourage sending the site > password in the clear in email." I meant in the email TO the list. The > header won't be in the mail FROM the list.
A slight caution there. If the inbound email contains not only the plain text message but also its equivalent in HTML and if the "Approved:" is specified as the first line of the body rather than as a header then the password is in danger of leaking outbound, being stripped only from the plain version but not from the HTML version where it could persist. endif For lists on which body-based "Approved" and HTML-ising senders are likely, it is worth investigating the "collapse_alternatives" and "convert_html_to_plaintext" settings. (I'm willing to be corrected on any of that!) -- : David Lee I.T. Service : : Senior Systems Programmer Computer Centre : : Durham University : : http://www.dur.ac.uk/t.d.lee/ South Road : : Durham DH1 3LE : : Phone: +44 191 334 2752 U.K. : ------------------------------------------------------ Mailman-Users mailing list Mailman-Users@python.org http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: http://mail.python.org/mailman/options/mailman-users/archive%40jab.org Security Policy: http://www.python.org/cgi-bin/faqw-mm.py?req=show&file=faq01.027.htp