On Thu, 28 Apr 1994, Andy Finkenstadt wrote:
> > On Thu, 28 Apr 1994, Arnold de Leon wrote:
> > > Anyone who knows the name of the list can send mail to
> > > the members directly. Sendmail version 8 makes it easier
> > > for recipients to discover this name since it is very
> > > good at recording envelope information in the
> > > "Received" headers.
> > >
> > Thank for pointing out this additional "leak" in security for majordomo
> > lists. Are there any other good list management programs which don't have
> > these leaks and are practical to switch to?
> >
> Excuse me.... majordomo is not the culprit here. Sendmail is.
>
> If you want perfect security on the Internet, pull the plug. Or do
> as I do: my site is(was/will be) UUCP connected and unless you can
> somehow gain physical access to teh console, there is no way you will
> obtain the secret list name used for outgoing mail.
>
If by pull the plug you mean stop participating, that's not practical. I
have a dial up account, not a UUCP or slip or PPP or something similar.
What would I have to do and know, and how much more time must I invest in
maintaining hardware and software by having "my own site" or the UUCP you
refer to? Some of us, like me, are not computer wizards and don't know
which pieces of the puzzle belong where to effect our goals. I already
spend a lot of time running a mail list. I wonder how much more time
having my own site entails?
Thanks.
James
References:
|
|
