This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/db-wg@ripe.net/
abusive changes of person handles (protect your maintainer!)
- Previous message (by thread): abusive changes of person handles (protect your maintainer!)
- Next message (by thread): abusive changes of person handles (protect your maintainer!)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Wilfried Woeber, UniVie/ACOnet
woeber at cc.univie.ac.at
Fri Nov 19 13:31:23 CET 1999
Hi Joao! >There are two issues here: >- The use of very weak protection methods (NONE and MAIL-FROM) (see *). wrt the "see *": I think they do have a point in principle. In reality (for many individuals, I suppose :-) it's still more staright-forward to fake a mail-from header than reverse-engineer a crypted password string in itself. However, given the fact that many operatinal environments these days require mail to be shipped multi-hop, the risk of disclosing the (clear text) password is greater than we might want to believe... >Would the community see this change in behaviour as a good thing? Definitely! Wilfried.
- Previous message (by thread): abusive changes of person handles (protect your maintainer!)
- Next message (by thread): abusive changes of person handles (protect your maintainer!)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[ db-wg Archives ]