Re: [Mailman-Users] AOL to Implement E-mail Certification Program

Brad Knowles wrote: > Just saw this article at > : > > AOL to Implement E-mail Certification Program > Basically, unless you want to pay GoodMail to certify everything > sent by your list, you just won't get through to AO

Re: [Mailman-Users] AOL to Implement E-mail Certification Program

Larry Stone wrote: > Nothing I do provides me any direct benefit so I'm sure as heck not paying > for assured delivery. Stated like that (and I don't disagree in the slightest), AOL's new program could be construed as extortion: "Pay us money, or your mail won't be delivered." david --

[Mailman-Users] Wiki (was: Versions? Roadmap?)

Mark Sapiro wrote: > We would be glad to have your input and involvement. Please visit our > new wiki at http://wiki.list.org/ which we hope will answer some of > your questions. Is there a place in the wiki where feature requests should be logged (other than on the SF page)? For instance: On the

Re: [Mailman-Users] Best practices

Lawrence Bowie wrote: > I have been rejecting messages from non-members but I am > not sure that is the best practice. Is it better to "discard" > rather than "reject" non-members messages? It depends on the message ... if the message is topical, then I reject the message indicating that to post a

Re: [Mailman-Users] RSS

Jason [WeatherServer] wrote: > Is there a way to convert the mailman archives to RSS I'm generating RSS with MHonArc. http://david.fallingrock.net/2005/07/22/rss-from-mhonarc/ david -- Mailman-Users mailing list Mailman-Users@python.org http://

Re: [Mailman-Users] Changing the 'reply-to'

JT Thompson wrote: > I had changed major domo so that anytime you sent to the list, when > the email came in, if you hit 'reply' it would send back to the list, > and show 'on behalf of username' so you'd know who sent it. Surely > this must be possible in mailman but I couldn't find any real in

[Mailman-Users] ics / iCalendar attachments?

Has anyone configured Mailman to allow ICS / iCalendar attachments? I've added text/calendar to the pass_mime_types setting in content filtering, but the ICS attachment was removed. The full content of pass_mime_types is: multipart/mixed multipart/alternative multipart/related text/plain text/ht

Re: [Mailman-Users] ics / iCalendar attachments?

[EMAIL PROTECTED]> X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: test Thread-Index: AccRx2gZFDduLb4eQTWBBmJeW2QHRgTY From: "David Gibbs" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> X-Virus-Scanned: ClamAV 0.88.6/2242/Sat Nov 25 12:29:12 2006 on rivendell.nospam.com

Re: [Mailman-Users] ics / iCalendar attachments?

Mark Sapiro wrote: > Since your content filtering options include "collapse_alternatives = > yes", Mailman selects only the first alternative of those that remain > after initial filtering for delivery to the list. Thus the > text/calendar alternative is dropped in favor of the text/plain > alterna

Re: [Mailman-Users] ics / iCalendar attachments?

Mark Sapiro wrote: > If all the MUA's send the text/calendar part with a text/plain > alternative, then what you need to do is 2). Yep, figured that. > The potentially unwanted effects I had in mind are that your current > settings accept both text/plain and text/html, but if a text/html > part

Re: [Mailman-Users] RSS

Jason [WeatherServer] wrote: > Anyone have the RSS patch working with the latest version of Mailman > or does Mailman have RSS built in and I just can't find it. I've got an RSS feed working with MhonArc, which I'm using as an external archiver. http://david.fallingrock.net/2005/07/22/rss-from-m

Re: [Mailman-Users] AOL's "Client TOS Notification"

Ralf Hildebrandt wrote: > Never overestimate the cluefulness of AOL.com users. It doesn't help that AOL put the "Report SPAM" button right next to the "Delete" button. I've had a number of people report mail from my lists as spam when they thought they were simply deleting a message they had fini

[Mailman-Users] Remove original message from -request mail response?

Does anyone know if there is a way to NOT include the original email when commands sent to the -request address responds? I've noticed a number of spammers are sending mail to my lists -request addresses ("The results of your email commands"), and the original spam is attached to the response.

[Mailman-Users] Bug when selecting "Preserve message for site administrator"

I was rejecting a message in the admin queue and selected "Preserve message for site administrator". When I submitted, I got the following error. Any thoughts? Bug in Mailman version 2.1.5 We're sorry, we hit a bug! If you would like to help us identify the problem, please email a copy of thi

[Mailman-Users] Re: Apache2+Mailman - GID Issues

Hunter Hillegas wrote: My configure line: ../configure --with-mail-gid=postfix --with-python=/usr/bin/python2.2 --with-cgi-gid=nobody Try using '--with-cgi-gid=apache'. Apache2 on Redhat usually runs as the 'apache' user, not 'nobody'. david --

[Mailman-Users] Re: RSS feeds from mailing lists

Diana Kirk wrote: I was wondering today about configuring an RSS feed from the mailing list archives. Is that something anyone is doing? Is that doable at all? Am I on the entirely wrong track to provide RSS feeds of the various lists' mail? I've got MHonArc generating RSS feeds for my mailing l

[Mailman-Users] Non-members allowed to post!

PROTECTED], size=2570, message-id=<[EMAIL PROTECTED]>, success But '[EMAIL PROTECTED]' is not subscribed to any of my lists. If I send a message from one of my own email addresses that isn't subscribed, it's held as it should be. Any thoughts on how this can happen?

[Mailman-Users] Re: Deleting a list - how is this possible?

Graham Leggett wrote: I now want to delete the list so that I can try and create it again - but this functionality seems to be missing from mailman, I cannot find a delete list option anywhere, or I'm looking in the wrong place. Try using the rmlist command. --

Re: [Mailman-Users] Non-members allowed to post!

ROTECTED] > X-MailScanner-To: [EMAIL PROTECTED] The only place that [EMAIL PROTECTED] shows up is in the 'X-MailScanner-From:' header. It appears that Mailman is picking up the 'From:' information from the wrong header. Is this a problem with Gmane or Mailman? david Mark

Re: [Mailman-Users] Non-members allowed to post!

Mark Sapiro wrote: The only place that [EMAIL PROTECTED] shows up is in the 'X-MailScanner-From:' header. It appears that Mailman is picking up the 'From:' information from the wrong header. How about the envelope sender? You can't tell from those headers what that was, but I'm guessing that it too

[Mailman-Users] Re: Non-members allowed to post!

k, so then there is no way for Mailman to know the envelope sender, right? Mailman can only look at the mail that is piped into it from the MTA (sendmail in my case), so if the information isn't available on the headers, Mailman can't be aware of it. Are we really talking about the 

Re: [Mailman-Users] Re: Non-members allowed to post!

Brad Knowles wrote: >> Are we really talking about the 'sender' mail header? > Some MTAs may encode that information in the "Sender:" header, yes. At this point I'm 99% sure that Mailman is misinterpreting the 'X-MailScanner-From' header, because that's the only place that the '[EMAIL PROTECT

[Mailman-Users] Re: Non-members allowed to post!

Brad Knowles wrote: > Does any Mailman administrator have any agreement with Gmane, or is > it just the users. I'm pretty sure it's the users. david -- David Gibbs [EMAIL PROTECTED] Receipt of this message does not grant you permission to send me Unsolicited

[Mailman-Users] Re: List From Name

James Becker wrote: > I have setup mailing lists for my company to use for regular digests this is > all working fine however my bosses hate the long from name that the emails > come from, I'm talking about the "on behalf of..." part of the from name. > > I understand that xxx-bounces[at]xxx.com

Re: [Mailman-Users] Remove original message from -request mail response?

Jim Tittsler wrote: >> Does anyone know if there is a way to NOT include the original email >> when commands sent to the -request address responds? > In Mailman/Queue/CommandRunner.py, try commenting out the section at the > end of Results.send_response: Ach, reply to this ... thanks very much for

[Mailman-Users] User flagged as no-mail with "?" for reason

Folks: Anyone know what could cause a user to be flagged as no-mail with a reason code of "?"? I can't find any indication that mail was bouncing, and I certainly didn't set them no-mail myself. This subscriber had been receiving mail fine up to a few days ago and then it stopped ... they called

Re: [Mailman-Users] User flagged as no-mail with "?" for reason

at when I first upgraded to 2.1.5, but I've been on 2.1.5 for many moons. david -- David Gibbs [EMAIL PROTECTED] Receipt of this message does not grant you permission to send me Unsolicited Commercial Email -- Mailman-Users mailing list Mail

[Mailman-Users] Customizing Rejection notice with 2.1.6?

I just upgraded to 2.1.6 and tried to customize the non-member rejection notice by editing the 'nonmember_rejection_notice' value. However, when a non-member posts and I reject it, the old "Non-members are not allowed to post messages to this list." message is being sent. Is there something I mis

Re: [Mailman-Users] Customizing Rejection notice with 2.1.6?

Mark Sapiro wrote: > The message only applies to posts automatically rejected for > reject_these_nonmembers match and generic_nonmember_action reject. Darn it ... I misunderstood that. Back to 2.1.5 I guess. david -- Mailman-Users mailing list

Re: [Mailman-Users] How to stop spam emails

Mark Sapiro wrote: > if they want to integrate SpamAssassin with Mailman at some point, > refer them to > . I can endorse this patch ... I've used it for years and it works great. david -- System i ... fo

[Mailman-Users] "raising a string exception is deprecated"?

I just upgraded to Fedora 8, which includes Python 2.5.1, and started noticing this error cropping up: /usr/local/mailman/Mailman/Utils.py:512: DeprecationWarning: raising a string exception is deprecated raise quickexit Is this something I should be concerned with? Particularly the "raise qui

[Mailman-Users] Automatically creating short URL's?

Folks: Has anyone considered the idea of using one of the URL shortening services (tinyurl.com, etc) to automatically process URI's in messages processed by mailman? When people on my lists post URL's, they are quite often long and unwieldy ... it would be nice if I could automatically translate

[Mailman-Users] Mailman group on LinkedIn

Folks: On a lark, I created a Mailman group on LinkedIn. If you would like to join the group, visit http://www.linkedin.com/e/gis/134598/181E8C14C43E. david -- IBM i on Power Systems - For when you can't afford to be out of business -- Mai

Re: [Mailman-Users] Mailman group on LinkedIn

Brad Knowles wrote: That's fine for an unofficial group, but did you contact the maintainers of the Mailman project to get approval to use the graphic? Well, I didn't specifically ask permission ... but I kind of assumed that, since Mailman is GPL, the logo fell under the same license. The

Re: [Mailman-Users] line returns missing

Michael: I'm jumping into this thread midstream, but this comment caught my eye... Some supposedly full-featured MUAs, Outlook & Exchange, have been victims. Some of those (so called) full-features MUA's specifically merge lines together when they shouldn't be ... and it's not even related to

Re: [Mailman-Users] changes at aol

Brad Knowles wrote: So, either way, we're screwed. AOL is determined to delete any and all data that would actually be useful to us in our jobs, and they are determined to file all these reports automatically. And I'm *SURE* they will _never_ consider moving the "Report to TOS" button away fr

Re: [Mailman-Users] changes at aol

Brad Knowles wrote: If you set yourself up to receive them, it's a lot harder for AOL to automatically mark you as a spammer. Actually, in my experience, AOL doesn't give a rats a-- that you are setup for the feedback loop (at least the old program) ... if they thought you might be a spamme

Re: [Mailman-Users] changes at aol

Brad Knowles wrote: Yeah, but rate-limiting is nothing like having all your e-mail silently dropped on the floor. At least you're getting something through, and you usually know something about that fact. Obviously ... I just mentioned it to show AOL's general perspective towards people who

Re: [Mailman-Users] Dealing with ISPs that blacklist by message volune?

Beau James wrote: > The trigger seems to be that some of our subscriber's ISP domans don't > like "too many" incoming messages per hour from one originating domain. > Worse, some of these ISPs apparently report the domain and the IP address > of the originating MTA to some of the blacklist siets.

Re: [Mailman-Users] Blocking or holding subscribe requests when email address contains "+"

On 9/15/2015 11:31 AM, Richard Damon wrote: The only thing I can think of is to require approval of all subscriptions (and maybe confirmation) and then build a regexp to auto approve all addresses without a + in them. I don't know how this will interact with the ban list (if you need that). Unf

Re: [Mailman-Users] Blocking or holding subscribe requests when email address contains "+"

On 9/15/2015 1:13 PM, Mark Sapiro wrote: Unfortunately, Mailman sends out the confirmation email before requiring approval. I want to stop (or hold) the subscription request before the confirmation message goes out. You want a regexp in the ban_list for each list. For the python.org lists we

Re: [Mailman-Users] How to check if E-mail from Mailman was opened by the subscriber ?

On 7/27/2017 10:09 AM, Christian F Buser via Mailman-Users wrote: Compare it with normal (paper, snail mail) you send out to your clients. There, you have no guarantee if the recipient opened it / looked at it - unless you send it by "registered mail". FWIW: Even sending registered snail mail i

[Mailman-Users] Distributed mass subscribe attack?

Folks: Anyone else noticing a distributed mass subscribe attack going on their lists? I've noticed a massive number of attempts a small subset of email addresses, with modifiers (address+modif...@example.com), going on. It appears the address is valid ... so it appears to be some kind of hit j

Re: [Mailman-Users] Distributed mass subscribe attack?

On 8/8/2017 12:22 PM, David Gibbs wrote: Anyone else noticing a distributed mass subscribe attack going on their lists? I've noticed a massive number of attempts a small subset of email addresses, with modifiers (address+modif...@example.com), going on. It appears the address is valid .

Re: [Mailman-Users] Distributed mass subscribe attack?

On 8/17/17 3:47 PM, Andy Cravens wrote: I forgot to mention I’m also working on a modsecurity rule to look at all POSTs and reject if they contain an email address with a + sign. I'm interested in both your recaptcha mod & mod_security rule ... please post (or contact me privately) when you mak

Re: [Mailman-Users] How to blocking malicious subscription requests?

On 9/5/2017 9:55 AM, Ian Kelling wrote: There is at least one very major mail provider where joe+any_string@domain goes to the inbox of joe by default, allowing bad people to get my mailman instance to send many subscription mails to joe+random_string@domain, messing up joe's inbox, because mailm

Re: [Mailman-Users] Brute force attacks on mailman web ui

On 4/15/2018 5:53 PM, Steven Jones wrote: We are currently under brute force attack on our mailman server's web ui. Is there anything / feature that Mailman has that can be used to watch/monitor it? Can you elaborate on how they are attacking? If it's a detectable pattern, I suggest you inves

Re: [Mailman-Users] Possibly OT: GDPR and list servers

On 5/9/2018 9:05 AM, Alain D D Williams wrote: * all those on the list subscribed themselves - they thus, at that time, gave their consent to mailman/list-owner to have their email address for the purpose of sending email; also on the sign up page I mention list archiving, etc. FWIW: I've added

[Mailman-Users] reply_goes_to_list problem in 2.1.29

Folks: I just upgraded from a REALLY old version of Mailman to 2.1.29 and have noticed a serious problem with reply_goes_to_list. I have reply_goes_to_list set to 1, so a reply-to header is added to send replies back to the list. This worked fine in the previous version that I was using (2.

Re: [Mailman-Users] reply_goes_to_list problem in 2.1.29

On 10/20/18 11:17 AM, David Gibbs wrote: I'm not seeing any errors in the logs. Well, I did just see an error ... not specifically related to the reply-to issue ... but probably related to another issue I'm seeing related to DMARC munging. I have dmarc_moderation_action set to &

Re: [Mailman-Users] reply_goes_to_list problem in 2.1.29

On 10/20/18 12:52 PM, Mark Sapiro wrote: The error I'm seeing is: Unable to retrieve data from https://publicsuffix.org/list/public_suffix_list.dat: You need to upgrade SSL on your server. Yeah, I know ... it's on the list. As far as the actual error is concerned, this shouldn't affect re

Re: [Mailman-Users] reply_goes_to_list problem in 2.1.29

On 10/20/18 2:07 PM, Mark Sapiro wrote: As far as updating your local file is concerned, Mailman 2.1 only reads the file once (Mailman 3 is different and re-reads it periodically) on the first post following (re)start, so if the file actually changes, you need to restart Mailman to pick up the ch

[Mailman-Users] Error in pipermail

I just upgraded from a pretty old version of MM to 2.1.29 and everything appears to be working OK. I noticed the following in my error log though. I only have a few lists that archive using the built in functionality. Oct 24 07:57:40 2018 (18940) Uncaught runner exception: 'ascii' codec can't

[Mailman-Users] Reply-to header not set in mime encoded digest's

Folks: On my lists, I have reply_goes_to_list set so users reply's default to the list address. When MM 2.1.29 sends out a mime encoded digest, the individual messages in the digest don't have the reply-to header set so replies go back to the list (as with non-digest messages). Is there an

Re: [Mailman-Users] Reply-to header not set in mime encoded digest's

On 10/29/18 4:51 PM, Mark Sapiro wrote: A simple, but possibly unsatisfactory solution is to put the following two lines in mm_cfg.py GLOBAL_PIPELINE.remove('ToDigest') GLOBAL_PIPELINE.insert(GLOBAL_PIPELINE.index('ToOutgoing'), 'ToDigest') This will cause the message to not be added to the dig

[Mailman-Users] Mailman & DMARC question

Folks: I need a confirmation of a theory regarding Mailman (well, mailing lists in general) and DMARC. After updating to a version of MM that supports handling domains with DMARC policies, everything seems to be working OK. My quandary is: Is there any risk in implementing my own more restric

[Mailman-Users] Help needed using postfix as an outbound gateway for Mailman

Folks: I need some help diagnosing a problem using postfix as my outbound mail server with Mailman. Up front I want to say, I have this working FINE with my current mailman list server. I'm in the process of moving my list server to an AWS lightsail instance. And, yes, I know that I could u

Re: [Mailman-Users] Help needed using postfix as an outbound gateway for Mailman

On 11/15/2018 10:17 AM, David Gibbs wrote: And, yes, I know that I could use postfix as both the inbound & outbound mail server ... which I probably should do, but I'm far more familiar with using sendmail and have it setup & working fine on my current list server. I decided to bi

[Mailman-Users] Mailman & DMARC policy = none?

Folks: I'm curious as to how people are setting 'dmarc_none_moderation_action'... which controls how Mailman handles domains with a dmarc policy action of none (like gmail.com). Is there a compelling reason to set it to Yes so that messages from such domains are munged or wrapped? Thanks!

[Mailman-Users] 'Warm up' an IP when moving a mailing list server to a new host?

Folks: This isn't specific to Mailman ... but is related to mailing list servers in general. I've had my mailing lists on an in-house server for a long time (more than 15 years). I'm currently able to deliver mail to Yahoo without any problems. I've been trying to move the mailing list serve

[Mailman-Users] Prevent MM from adding a CC for DMARC munged posts?

Folks: Does anyone know if there is a way to prevent MM from adding the original posters email address as a CC when the DMARC munging is done? Thanks! david -- IBM i on Power Systems: For when you can't afford to be out of business! I'm riding 615 miles (Yes, you read that right) in the Ameri

[Mailman-Users] Allow posting from addresses with modifiers?

Folks: Anyone know if it's possible to configure MM 2.1 to allow posting with an email address that has a modifier? For example ... if someone is subscribed as "john+li...@example.com", but their email comes from "j...@example.com", allow that address to post? I've had some people ask me abou

Re: [Mailman-Users] Allow posting from addresses with modifiers?

On 1/14/2019 12:13 PM, Mark Sapiro wrote: On 1/14/19 8:40 AM, David Gibbs via Mailman-Users wrote: Anyone know if it's possible to configure MM 2.1 to allow posting with an email address that has a modifier? You can't configure Mailman to just do it without making code changes,

[Mailman-Users] Manually treat certain domains as if they have restrictive DMARC policy

Folks: I've got a number of subscribers who's email admins have set a policy such that, if a message is sent to them with their email address as the 'from' address, the message is rejected. This is causing those peoples posts to bounce ... and, ultimately, they get unsubscribed. Although t

Re: [Mailman-Users] Manually treat certain domains as if they have restrictive DMARC policy

On 1/28/19 2:25 PM, Mark Sapiro wrote: List of addresses (or regexps) whose posts should always apply dmarc_moderation_action regardless of any domain specific DMARC Policy. That's close to what I want ... the only issue is that I'm looking for the behavior to be site wide not on a per-list ba

Re: [Mailman-Users] Manually treat certain domains as if they have restrictive DMARC policy

On 1/29/2019 12:13 AM, Mark Sapiro wrote: Also, Adding a global setting for dmarc_moderation_addresses on top of the per-list setting is not difficult either. See for how this was done for a global ban_list. I'm by no mean

Re: [Mailman-Users] Trying to secure the list server web page

On 2/27/2019 10:01 AM, Jeffrey Westgate wrote: when a list owner tends to the moderator requests, and hits the Submit All Data button... depending on the browser, it says it is going to send the information over an insecure connection and nothing happens results-wise - the request is not han

Re: [Mailman-Users] Trying to secure the list server web page

On 2/27/2019 10:48 AM, Jeffrey Westgate wrote: The setting I needed was actually in the Defaults.py, and not in the mm_cfg.py. And it was http. I did the change, pushed it out, and we're back in fine form again. Don't change Defaults.py! Only change mm_cfg.py. mm_cfg.py imports Defaults.py,

Re: [Mailman-Users] Trying to secure the list server web page

On 2/27/2019 11:13 AM, Jeffrey Westgate wrote: OK. thanks for that. So I can copy/paste the same line in the mm_cfg.py, at the bottom, under the site-specific config block? Yes. david -- IBM i on Power Systems: For when you can't afford to be out of business! I'm riding 615 miles (Yes, yo

[Mailman-Users] FYI: Mailbait operating under a new domain

Folks: Just a FYI ... the a--hole who runs mailbait.info appears to be operating under a new domain name ... smoremail.com. If you've implemented any web rules to prevent attacks from mailbait, you'll need to update those rules. This 'service' is supposed to allow you to fill your mailbox … w

Re: [Mailman-Users] Delivery errors and spam grading

On 3/18/2019 4:51 AM, Davide Marchi wrote: 1) How is it possible from Mailman monitor the delivery errors? Only sysadmin mail server from the logs? This is what VERP deliveries are for. The FROM address is tagged so that bounces can be clearly identified. https://wiki.list.org/DOC/So%20what%2

[Mailman-Users] Include part of message when rejecting due to excessive size?

My memory is failing me... I thought that, when rejecting a message from the admin queue, part of the original message was included in the reject message. Is this true? When I reject messages, just the reject message is sent. If so, is there a setting that I need to adjust? If not, is there any

Re: [Mailman-Users] Finding list user in redacted FBL reports

On Mon, Aug 5, 2019 at 11:40 PM Scott Neader wrote: > Do any of you have any ideas for me to identify this serial > 'mark-as-spammer'? Could I hack something together temporarily that would > put maybe the first few characters of their email in the footer? (so that > Comcast won't sense it as an

Re: [Mailman-Users] Finding list user in redacted FBL reports

On Wed, Aug 7, 2019 at 8:18 PM David Josephson wrote: > Wouldn't it be simple enough just to use rot13, or the senders name > without the domain? > > The first thing they redact is the users name. David > > -- IBM i on Power Systems: For when you can't afford to be out of business! I'm riding

[Mailman-Users] Check message size before moderation status?

Folks: I want to adjust my MM install so that it will check the message size before a subscribers moderation status. Would this be the appropriate change to mm_cfg.py? GLOBAL_PIPELINE.remove('Moderate') GLOBAL_PIPELINE.insert(GLOBAL_PIPELINE.index('Emergency'), 'Moderate') Thanks! david -- IB

Re: [Mailman-Users] Best way to slow down all the spam to my lists?

On Fri, Dec 13, 2019 at 11:16 AM Chromatest J. Pantsmaker < chromat...@chromatest.net> wrote: > I'm the system admin (though I'm not great at it). I have a problem with > spam. Hundreds of spam messages are posted to my lists each week. They're > non-subscribers so they don't go to the lists, b

[Mailman-Users] Re: DNSException: No Nameservers available for ...

Try setting up a caching name server on the local machine. On Wed, May 27, 2020 at 12:02 PM Lars Bjørndal wrote: > > Hello > > One member of a mailman mailing list on my system receives an error > message when posting to the list: > > You are not allowed to post to this mailing list From: a dom

[Mailman-Users] Re: Question on /var/lib/mailman/spam

On 3/10/21 11:42 AM, Mark Sapiro wrote: This is problematic. The idea is that the site admin can use these messages to train some bayesian spam filter, but it is up to the site to implement such a process. If you want to just ignore them, you could set up a periodic cron to Here's the script I

[Mailman-Users] Re: reCAPTCHA problem with some lists

On 12/3/20 9:02 AM, Brian Carpenter wrote: Look for the following line on those lists without the reCAPTCHA element: Add the following two lines right below the above line: That should reveal reCAPTCHA via the listinfo page for would-be subscribers to check when subscribing. Folks: Sor

[Mailman-Users] Re: reCAPTCHA problem with some lists

On 6/1/21 10:40 AM, Stephen J. Turnbull wrote: > -- > > > You're missing here. I'm pretty sure that is what accepts the input. See comment in rendered output below. Unless I'm missing something, there is no code in Mailman that replaces 'mm-captcha-u

[Mailman-Users] Re: reCAPTCHA problem with some lists

On 6/1/21 12:23 PM, David Gibbs wrote: On 6/1/21 10:40 AM, Stephen J. Turnbull wrote:   > --   >      >      >    You're missing here.  I'm pretty sure that is what accepts the input.  See comment in rendered output below. Unless I'm mis

[Mailman-Users] Re: subscription flood, redux

On 7/28/21 4:24 PM, Karl Berry wrote: 1) The above mailman-users thread refers to using fail2ban. This sounds sensible. Does anyone have a a working fail2ban filter they can share for this? I have it setup, but it's not very sophisticated ... failregex = .*\/\s+-\s+-\s+\[.*\]\s+"POST\s+\/mail

[Mailman-Users] Web requests with garbage at the end of the list name

Folks: Is anyone else seeing requests to their mailman install that look something like this: Aug 18 15:10:16 2021 (31166) Hostile listname: listname=midrange-l__;!!NVq9dfhzMyHqTw!wLl-dt8zxsuQuoyojs-UYmT_d65WZroClHaYGfHduJ561eT0B7baTQV1ogZzQKRRsw$: remote=52.34.76.65 Basically, the list na

[Mailman-Users] Re: Web requests with garbage at the end of the list name

On 8/18/21 11:34 PM, Stephen J. Turnbull wrote: Is anyone else seeing requests to their mailman install that look something like this: Aug 18 15:10:16 2021 (31166) Hostile listname: listname=midrange-l__;!!NVq9dfhzMyHqTw!wLl-dt8zxsuQuoyojs-UYmT_d65WZroClHaYGfHduJ561eT0B7baTQV1ogZzQKRRsw$: remot

[Mailman-Users] Re: Web requests with garbage at the end of the list name

On 8/18/21 3:36 PM, Jon Baron wrote: I'm pretty sure that this comes from Proofpoint's "URL Defense" system. Ah. OK. But I don't understand what you mean by "hostile listname" being "correct". The listname before the garbage is correct. I suggest running all messages through .procmailrc

[Mailman-Users] Re: is log4j2 leveraged in Mailman version 2.1.14-1?

On Fri, Dec 10, 2021 at 2:40 PM John Lake wrote: > Does Mailman version 2.1.14-1 utilize Java logging library log4j2 and if so, > what version does it use? Mailman is written in python ... it doesn't use java libraries at all. david -- IBM i on Power Systems: For when you can't afford to be o

<    1   2