[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)

To: tor-talk <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)
From: Asheesh Laroia <asheesh@xxxxxxxxxxx>
Date: Sat, 10 Nov 2012 21:48:53 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 10 Nov 2012 21:55:48 -0500
In-reply-to: <20121109234105.GM15647@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <A10118A9-754D-415A-B52D-0AF4FE0806B1@xxxxxxxxxx> <20121109234105.GM15647@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Sup/0.11

Excerpts from Roger Dingledine's message of Fri Nov 09 18:41:06 -0500 2012:
> On Fri, Nov 09, 2012 at 06:09:36PM -0500, Matthew Fisch wrote:
> > I used a unique random password for this mailing list, I'm going to
> >guess however a significant portion of the mailing list either uses this
> >password in other locations, a significant subset of them probably can't
> >trust their mailbox to be secure.
> 
> I won't use the phrase "industry standard mailing list software" because
> I hate it when other people use that phrase. But really, this is how
> every free-software mailing list system works these days.
> 
> I'd be surprised if more than a trivial number of users on the Tor
> lists picked a password at all. Typically people just let it choose
> a random password for them, and it's nice to have that reminder sent
> monthly because nobody ever knows their list password (for good reason --
> there's barely a need to have a password for a mailing list subscription
> in the first place).
> 
> Maybe we should find a way to wrestle it into not letting you pick a
> password for yourself?

What I've done for this is to simply remove the password fields from the 
form. Then it autoassigns you a password.

You can see that here: http://lists.acm.jhu.edu/mailman/listinfo/acm

(Viewing the source, I see what I did instead was to put it in an HTML 
comment.)

I brought that trick with me to other domains, e.g. 
http://lists.openhatch.org/mailman/listinfo/devel

Contrast with e.g. 
https://mail.gnome.org/mailman/listinfo/asia-summit-list where the 
password form is visible.

It's fairly simple edit to the default mailman template, as I recall, 
and these changes I made have successfully stuck around across upgrades 
and more.

Users will still need to use the list password to do things like change 
one's email address on the list and a few other obscure things. My hack 
is just a UI fix that papers over the deep insanity of Mailman 
passwords, and I rank it quite high for cost-effectiveness. So please 
consider it! I hope it fits y'all's needs.

-- Asheesh.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)
  - From: Matthew Fisch
- Re: [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)
  - From: Roger Dingledine

Prev by Author: Re: [tor-talk] William was raided for running a Tor exit node. Please help if you can.
Next by Author: [tor-talk] Getting rid of commands in torrc
Previous by thread: Re: [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)
Next by thread: Re: [tor-talk] misconfigured mailing list (mailman software) for torproject discloses passwords in plaintext (stores too?)
Index(es):
- Author
- Thread