>From the majordomo-workers archive I ran across this message (and three
others on this thread). I am looking to add some functionality to the
authentication such that the moderation and administration of a majordomo
list can be accomplished by digitally signing the command message.
The majordomo host would only check the adminitration control messages to
make sure they are coming from registered maintainers of a list thus
eliminating the need to send text passwords in the clear.
I am currently rewriting my mail handling script for the addition to the
Thanks in advance for any feedback that is offered.
> To: firstname.lastname@example.org
> Subject: Re: Fake-ID
> References: <199802251622.RAA03855@leibniz.math.ethz.ch>
> From: Jason L Tibbitts III <email@example.com>
> Date: 25 Feb 1998 13:12:16 -0600
> In-Reply-To: Norbert Bollow's message of Wed, 25 Feb 1998 17:22:29 +0100
> Message-ID: <firstname.lastname@example.org>
> >>>>> "NB" == Norbert Bollow <email@example.com> writes:
> NB> Is there a decent PGP module yet?
> No. If there was one, support for it would already be in. I experimented
> with the one that exists but it's really (really, really) lousy.
> Key management is a big problem; until we have a good shared library
> instead of calls to an executable, we have no means to be secure.
> These days I'm thinking that PGP has changed direction and is no longer
> going where we need to go. Eryq is considering support for S/MIME in
> MINE-tools but there are plenty of issues there too. And unfortunately,
> rolling our own isn't an option.
> NB> I'm interested in integrating PGP support into Majordomo for a
> NB> different reason, namely to allow PGP-encrypted mailing lists...
> I assume you either have small lists or an enormous amount of CPU. Then
> again, when you actually _need_ to do this, buying the hardware isn't a big
> - J<
From: Jason L Tibbitts III <firstname.lastname@example.org>