Fitzpatrick, Ted wrote:
A hacker recently broadcast email to a discussion list by setting the "from:" header to be the name of the list, e.g., listname at emaildomainname.ca.gov<mailto:listname at emaildomainname.ca.gov>

What's the best way to resolve this issue? If I block incoming email from this address, will that interfere with Mailman's normal operations?

The real question is why was this message accepted? What is the list
setting for generic_nonmember_action? What is in

The listname itself should not be a member of the list, thus a post
From: listname would normally be a non-member post unless there was
also a Reply-To: or Sender: header with a list member address or the
envelope sender address was a list member.

Find the message in Mailman's
archives/private/LISTNAME.mbox/LISTNAME.mbox file. This will show you
the original envelope sender in the "From " separator. Assuming the
list is not anonymous, it will also have the original Sender: header
if any and if the list doesn't mung Reply-To: it will have the
original Reply-To: if any.

Hopefully that information will enable you to see why the post was

Mark Sapiro <mark at msapiro.net> The highway is for gamblers,
San Francisco Bay Area, California better use your sense - B. Dylan

Search Discussions

Discussion Posts


Follow ups

Related Discussions

Discussion Navigation
viewthread | post
posts ‹ prev | 2 of 3 | next ›
Discussion Overview
groupmailman-users @
postedApr 12, '10 at 10:47p
activeApr 14, '10 at 4:55p

2 users in discussion

Fitzpatrick, Ted: 2 posts Mark Sapiro: 1 post



site design / logo © 2022 Grokbase