Thanks, Terri Oda and Mark Sapiro for the responses.
The pointer to CommandRunner.py allowed me to quash the copied input for now.
(I had to do something, as the issue was getting our server into CBL and so
largely hobbling all our lists.)
But I agree with Terri that the result is not ideal --
Spammer sends message to a Mailman list's 'request' address using his real
target's e-mail address in 'From:'
Mailman responds with:
The results of your email command are provided below. Attached is your
original message ...
... and then faithfully reproduces the spammer's original payload
Steven Bonisteel wrote:
Spammer sends message to a Mailman list's 'request' address using his real
target's e-mail address in 'From:'
Mailman responds with:
The results of your email command are provided below. Attached is your original
message ...
... and then faithfully reproduces the