On 05/21/2018 12:27 AM, Rubén Fernández Asensio wrote:
>
> Yeah, I'm aware that only the concerned subscriber will receive the
> password reminder and the unsubscribe confirmation, so there's no
> security hole, but anyway it puzzles me that subscribers can "spam" each
> other this way.
>
> But i
OK, that was what I meant. Not the actual options page but the options
login page, with the buttons to unsubscribe and send the password.
Yeah, I'm aware that only the concerned subscriber will receive the
password reminder and the unsubscribe confirmation, so there's no
security hole, but any
At Sun, 20 May 2018 08:26:38 -0700 Mark Sapiro wrote:
>
> On 05/20/2018 07:32 AM, Rubén Fernández Asensio wrote:
> > Is this by design, or is this a bug in my Mailman installation? Is there
> > any way of making the roster visible to subscribers without giving
> > access to personal option pag
On 05/20/2018 07:32 AM, Rubén Fernández Asensio wrote:
> Is this by design, or is this a bug in my Mailman installation? Is there
> any way of making the roster visible to subscribers without giving
> access to personal option pages through it?
One user does not have access to another user's opti
Hi all!
My question may be dumb, but I need some confirmation.
I set up a list so that the roster is visible to subscribers.
I just noticed that, when any subscriber logs into the roster, s/he can
access any other user's option page and try to unsubscribe that user or
send a password reminder.
I
