Barry Finkel wrote:
>
>I was able to block access to the
>
> mailman/create
>
>page on my Mailman test virtual machine, but the same code did not
>work on the production Mailman machine. I have asked my Apache expert
>to look at why.
>
>On the test machine I was successful, but a Nessus scan o
I wrote on Sep 4:
>>>Our cyber security group sent me notice of a vulnerability in
>>>a Mailman web page:
>>>
>>> Web Application Potentially Sensitive CGI Parameter Detection
>>>
>>>I think it is the URL:
>>>
>>> mailman/create
and Mark Sapiro replied:
>>If there really is a Mailman se
