Full Disclosure mailing list archives

Re: Security flaw in Full Disclosure mailing list

From: Ron <ron () skullsecurity net>
Date: Wed, 2 Apr 2014 11:35:52 -0700

Mailman's always had shitty password security. But it tells you not to
use a good password, and everybody should be using unique passwords
anyway. :)

Ron

On 2014-04-02 14:43, Nick Lindridge wrote:

Hi

Apologies if this has been pointed out before, hard to imagine that it 
hasn't really. When signing up for the list, I was surprised that it 
emailed back my password in plain text.

Can this security flaw be addressed?

Nick


_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/


_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Current thread:

Security flaw in Full Disclosure mailing list Nick Lindridge (Apr 02)
- Re: Security flaw in Full Disclosure mailing list Ron (Apr 02)
- Re: Security flaw in Full Disclosure mailing list Fyodor (Apr 02)
- Re: Security flaw in Full Disclosure mailing list Reindl Harald (Apr 02)
- Re: Security flaw in Full Disclosure mailing list Eric G (Apr 02)
- Re: Security flaw in Full Disclosure mailing list Jimmy Crossley (Apr 02)
  - Re: Security flaw in Full Disclosure mailing list Fyodor (Apr 02)
    - Re: Security flaw in Full Disclosure mailing list Jim Popovitch (Apr 02)
    - Re: Security flaw in Full Disclosure mailing list Ron (Apr 02)
    - Re: Security flaw in Full Disclosure mailing list Jim Popovitch (Apr 02)
    - Re: Security flaw in Full Disclosure mailing list Jeffrey Walton (Apr 02)
    - Re: Security flaw in Full Disclosure mailing list George Chatzisofroniou (Apr 03)

(Thread continues...)