| 1 |
Robin H. Johnson wrote: |
| 2 |
> Lately we've been seeing a LOT of spam being sent to the mailing list |
| 3 |
> subscribe mechanism, with the side effect that the subscribe mechanism |
| 4 |
> responds to the From header address with a confirmation request. That |
| 5 |
> address (along with the envelope sender) are unfortunately forged. |
| 6 |
> |
| 7 |
> The volume of the confirmation requests is getting worse than direct |
| 8 |
> spams, because the spam filtering considers the confirmation requests to |
| 9 |
> be valid email (they would be, except for the fact they are |
| 10 |
> unsolicited). |
| 11 |
> |
| 12 |
> To combat this problem, I'd like us to consider switching the subscribe |
| 13 |
> mechanism for the mailing lists to be a web form (protected with |
| 14 |
> recaptcha). Unsubscribe will continue to be offered as an email action |
| 15 |
> for the moment, because it ignores the mail if the address was not |
| 16 |
> subscribed. |
| 17 |
> |
| 18 |
|
| 19 |
I have no objection to this one as I have been receiving quite a few of |
| 20 |
these... |
| 21 |
|
| 22 |
Regards, |
| 23 |
Petteri |
Archives