[Mailman-Users] Disabling mailman/create Web Page

Barry Finkel Fri, 04 Sep 2009 07:05:35 -0700

Our cyber security group sent me notice of a vulnerability in
a Mailman web page:


     Web Application Potentially Sensitive CGI Parameter Detection

I think it is the URL:

     mailman/create

As I do not use that web page to create a new Mailman list, I want to
disable that page.  Is there an easy way to do it in Mailman, or do I
----------------------------------------------------------------------
Barry S. Finkel
Computing and Information Systems Division
Argonne National Laboratory          Phone:    +1 (630) 252-7277
9700 South Cass Avenue               Facsimile:+1 (630) 252-4601
Building 222, Room D209              Internet: [email protected]
Argonne, IL   60439-4828             IBMMAIL:  I1004994

------------------------------------------------------
Mailman-Users mailing list
[email protected]
http://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
http://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Security Policy: http://wiki.list.org/x/QIA9

[Mailman-Users] Disabling mailman/create Web Page

Reply via email to