My company's IT security folks are concerned that ListServ 16.5 may send password changes "in the clear" through unencrypted email, or that users could send passwords change requests, via email, to the server (not encrypted).

We're using the ListServ on Windows. Does this ever happen, and if so is it possible for any password changes / requests to be initiated through the web interface only, and that it won't accept users trying to change PW via a mail command, and/or won't send passwords unencrypted via email?

Krista Landon

To unsubscribe from the LSTSRV-L list, click the following link:
http://peach.ease.lsoft.com/scripts/wa-PEACH.exe?SUBED1=LSTSRV-L&A=1