[Mailman-Users] hot to setup a commits list?

This is precisely what we do for several "commits" type lists
that I run for the NTP Public Services Project. Works fine for us.

Ok, but it is not secure.
But, as I can see, it is the only solution.



Thanks and regards

No, not perfectly secure. Someone could spoof the sending
address and get their post through to the whole list.
Unless you can get the commit notification process to add an
"Approved: password" line to the headers of your message, or the
first line of the message body, I don't see any way that the security
could be further improved, at least as far as Mailman is concerned.

Thanks, I'm new to Mailman and I was not aware of this header.
But the password is the list administrator's one?




Regards Manlio Perillo

The administrator or moderator password can be used.

- --
Todd OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
(When asked whether he liked children) "Ah yes...boiled or fried."
-- W.C. Fields

I haven't setup any hook-scripts in Subversion, but couldn't you
modify the hook-script to add an Approved: header (or body line)?

The commit-email.pl script in my (dated) copy of subversion-1.2.3
looks like it'd be simple to do either.

- --
Todd OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
Things in our country run in spite of government, not by aid of it.
-- Will Rogers

I just did this as a test and adding a header is quite simple. It
should be more secure than leaving the $from address unmoderated.

- --
Todd OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
Between two evils, I always pick the one I never tried before.
-- Mae West