Great Circle Associates Majordomo-Users
(June 2000) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: admin password not working --IT IS NOW!!!
From: "Todd A. Lyons" <todd @ mrball . net>
Date: Sun, 18 Jun 2000 08:50:39 -0700
To: Ken Woodward <kwoodward @ mum . edu>, Majordomo Users <majordomo-users @ greatcircle . com>, Roger Baello <roger @ linxsys . com>
References: <4.1.20000614162500.009bb930@hq.marh.gov.bc.ca> <3.0.6.32.20000618001829.00820680@mum.edu> 
Ken Woodward wrote:

> I don't remember Majordomo docs warning about someone being able to bypass
> the resend by addressing the -list alias and I didn't know enough about
> aliases.

I didn't realize when we were setting this up, but we happened upon a very
good way of preventing this from happening.  It does however, require two
machines.  All port 25 traffic comes into one specific machine.  If
anything matches either majordomo or the list name (and ONLY those two),
then it gets aliased to another machine running sendmail/majordomo.  People
can send all they want to *-list but it will never get to the list machine
because there are no *-list aliases defined on the main machine.  When we
first set it up I thought it was kinda stupid.  I didn't realize how secure
it was until just now.
-- 
Blue skies...		Cannonball  	http://www.mrball.net
*         Anti spam filter:  I am not root@localhost          *
*       In the land of Redmond, where the shadows lie.        *
Follow-Ups:
References:
Indexed By Date Previous: Re: $SEQNUM or smth. like $DATE in subject?
From: "Mumrick" <mumrick1@mail.ru>
Next: Patch to fix "unzubscribe_policy = closed"
From: "Joe R. Jah" <jjah@cloud.ccsf.cc.ca.us>
Indexed By Thread Previous: re: admin password not working --IT IS NOW!!!
From: Ken Woodward <kwoodward@mum.edu>
Next: Re: admin password not working --IT IS NOW!!!
From: Dan Liston <dliston@netscape.com>
Google
 
Search Internet Search www.greatcircle.com