slang-users mailing list

[2003 Date Index] [2003 Thread Index] [Other years]
[Thread Prev] [Thread Next] [Date Prev] [Date Next]

Re: [slang-users] use https for signup?

Subject: Re: [slang-users] use https for signup?
From: "John E. Davis" <davis@xxxxxxxxxxxxx>
Date: Mon, 1 Sep 2003 00:39:14 -0400

Peter \"Firefly\" Lund <firefly@xxxxxxx> wrote:
>Is it possible to arrange things so the mailing list password is sent over
>https instead of http?

I tried to do it but failed.  The problem appears to be within
Mailman, the mailing list program, itself.  The only work-around that
I can see is to download all the web pages that you encounter by
registering and then replace http:// by https:// to force secure
connections.

The Mailman docs admit that its password mechanism provides only a
very low-level of security (I personally think that it is a nuisance).
In fact, look at the python mailing lists on
http://mail.python.org/mailman/listinfo.  You will find that none of
them use https URLs when registering users.  In fact, look at the
http://mail.python.org/mailman/admin link off that page, which is
intended for administrators.  It too does not use https.  The reason I
used the python lists as an example is that Mailman is written in
python.

--John

_______________________________________________
To unsubscribe, visit http://jedsoft.org/slang/mailinglists.html

Follow-Ups:
- Re: [slang-users] use https for signup?
  - From: Peter "Firefly" Lund

References:
- [slang-users] use https for signup?
  - From: Peter "Firefly" Lund

[2003 date index] [2003 thread index]
[Thread Prev] [Thread Next] [Date Prev] [Date Next]