|
Sender: |
|
Subject: |
|
From: |
|
Date: |
Fri, 17 Feb 1995 08:09:05 +0100 |
In-Reply-To: |
Message of Fri, 17 Feb 1995 00:27:30 -0500 from LISTSERV list
owners' forum < [log in to unmask]> |
Reply-To: |
|
On Fri, 17 Feb 1995 00:27:30 -0500 Roger Burns <[log in to unmask]>
said:
>The only way for you to have sole control (and the subscribers to have
>no
>control) is to set Validate= All. However, that also means that
>subscribers cannot unsubscribe by themselves without using a password --
>*you* would have do individual deletes.
This only works on 1.8a and older and as a side effect of setting up the
LSV$PW exit to reject all PW ADD commands from users, and on the
assumption that all subscribers are remote (not on the same machine as
LISTSERV). This is not a supported mechanism, "Validate=" is meant to
define the level of security control that is required before a command is
accepted, and not to prevent users from doing things. It's a bit like a
carding policy if you want. If you don't happen to have your ID, you're
out of luck, but if you go home and get it, you get through.
In 1.8b this doesn't work any more because cookies can be used to confirm
requests. However there is an exit for the SET command that you can use
to implement the topics/option policy of your choice.
Eric
|
|
|