If someone could help me with this it would be greatly appreciated. I know how to accomplish what was done but don't know how to prevent it from happening. Someone has taken it upon themselves to make a personal attack on one of my subscribers. This morning he/she evidently changed the setting for my subscriber to NOMAIL. My subscriber was notified of the changes as the perpetrator was not knowledgeable enough to use the QUIET variable. What is the best method to keep this from happening again? Can the list be restricted to changes by the owners only and by using the validate option resolve this problem? Now on to the second situation. The list is private and you must be a subscriber to post. Someone has gotten around this using the same method above. He is using the same subscriber's address to bypass the restriction. I can't say it was the same person but I'm fairly sure it was. Now I know there are several web bulletin boards that would allow this to be accomplished. Is there any methods I can use to prevent unauthorized posting to the list? This is of course discounting, for the moment, of setting the list to REVIEW. I'm still shying away from that option. Here is the header from the unauthorized post. While originating from Germany it appears to come from my subscriber. ---Begin Forward--- Return-Path: <[log in to unmask]> Received: from SJUVM (NJE origin SMTP@SJUVM) by SJUVM.STJOHNS.EDU (LMail V1.2a/1.8a) with BSMTP id 1856; Tue, 13 Aug 1996 21:32:56 -0400 Received: from mail.cs.tu-berlin.de by SJUVM.stjohns.edu (IBM VM SMTP V2R3) with TCP; Tue, 13 Aug 96 21:32:52 EDT Received: from quepasa.cs.tu-berlin.de ([log in to unmask] [130.149.17.7]) by mail.cs.tu-berlin.de (8.6.12/8.6.12) with ESMTP id DAA21079 for <[log in to unmask]>; Wed, 14 Aug 1996 03:22:43 +0200 Received: (wwwwbs@localhost) by quepasa.cs.tu-berlin.de (8.6.12/8.6.12) id DAA25703; Wed, 14 Aug 1996 03:22:42 +0200 Received: from andele.cs.tu-berlin.de (root@[130.149.17.15]) by www.cs.tu-berlin.de (NCSA/1.5 CGI/1.1) with HTTP/1.0; Wed, 14 Aug 1996 03:22:41 +0200 Message-Id: <[log in to unmask]> Mime-Version: 1.0 Date: Wed, 14 Aug 1996 03:22:41 +0200 Referer: http:[log in to unmask] User-Agent: Mozilla/1.22ATT (Windows; U; 16bit) From: <subscriber> To: [log in to unmask] () Subject: Here is a harassing email I just sent! HAHAHAHAHa ---End Forward--- I have spoken with the subscriber and he has no knowledge of the post. In fact, the perpetrator tried to send it numerous times and the subscriber was aware only due to bounced mail. Again, can someone help me here. As I'm set to digest a personal reply would be appreciated. Thanks, Randy Vess