[TriLUG] MASSIVE SECURITY BREACH
John Broome
john at jbroome.dyndns.org
Mon Mar 1 16:23:00 EST 2004
Stanley A. Schultz wrote:
> WHAT ARE YOU PEOPLE THINKING? WHERE DO YOU KEEP YOUR BRAINS ANYWAY?
> I have grave doubts about the sanity of any list owners/administrators who
> periodically, predictably broadcast, or allow to be broadcast, their
> members' passwords for any reason!
Hi, welcome to the internet. We hope your stay here is enjoyable and
prosperous.
On the triLUG mailman signup page, and pretty much every mailing list
page i've signed up on has the following disclaimer on it under the
password field:
"You may enter a privacy password below. This provides only mild
security, but should prevent others from messing with your subscription.
Do not use a valuable password as it will *occasionally be emailed back
to you in cleartext*."
> Who in Hell needs Microsoft's security holes when we have lists that do
> this?
You wouldn't be one of those people who use a valuable password for a
mail list would you?
Like the MS problems, it seems that your mailman paranoia can be solved
by educating the users or simply, RTFM.
> Peace, health, wisdom and wealth.
> Live long and prosper.
Nice .sig, last time I read something that long Tolstoy wrote it.
More information about the TriLUG
mailing list