Not that the system shouldn't be improved but it sure seems like the risk is greatly minimized by not using your most critical password for a weakly secure mailing list. In the last few days Gmail, to their credit, has been showing me a message (that I've not hidden yet) to not re-use my Gmail password other places (which I don't do). That said, I can't keep a unique password for every website I interact with. But it sure seems reasonable that some websites we deal with are low-risk and weakly secured whereas others are high-risk and therefore need significant security measures and correspondingly strong passwords (and if these aren't in place then we should be really alarmed).
I'm all for questioning the status quo but I agree with Melissa that respect == fun/solutions/friends. Can't say I'm involved with too many mailing lists but this one is in fact one where I think respect is really needed because the majority of us aren't sitting on the other side of the planet, never to meet one another, but instead regularly interact with each other, in person. At the same time a little bit of sarcasm spices it up! Welcome to the internet Gary :-) Peace, Matt On Thu, Dec 1, 2011 at 11:11 AM, Alec Koumjian <[email protected]> wrote: > I hadn't even noticed this until now. While I agree that honey is better > than vinegar, this is a _really_ bad problem and I understand Gary's rage. > > Until someone can tinker with the mailman settings, you can disable these > reminder emails for your own account: > > 1. Go to http://lists.seapig.org/mailman/options/seattle-python and login > 2. Find "Get password reminder email for this list?" and obviously check > "No" > 3. Save settings > > Might I take this chance to recommend that we switch to something a lot > more sane, like Google Groups? The fact that mailman can even retrieve > passwords in plaintext shows its age and inadequacy. >
