LISTSERV - LSTOWN-L Archives - COMMUNITY.EMAILOGY.COM

LSTOWN-L Archives

LISTSERV List Owners' Forum

LSTOWN-L

	LISTSERV Archives
	LSTOWN-L Home

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Topic:	[<< First] [< Prev] [Next >] [Last >>]

Re: Help with puzzlement, please

Sun, 21 Oct 2001 12:46:42 -0400

text/plain (65 lines)

It does apear that someone is tampering.  Is it possible that someone is
intercepting your email?  The PW change can be initiated from email or
the web interface.  If the web, they probably already have your current
password and failed in changing it.  I would suggest you change it ASAP,
to a strong password.

The confirm should have come to you 48 hrs before the one that got
cancelled.  Your not having received that is suspicious in itself.

I would suggest that:
1) Change the password.
2) Get the list header and make sure that there are no new owners there.
3) Contact the site admins for the site that your list is hosted on.

On: Sun, Oct 21, 2001 at 11:04:19AM -0400,Phineas Fiske Wrote:

} Received a message that suggests somebody is fooling around with a
} list I own, although perhaps not. Maybe a more knowledgeable hand
} will recognize what's going on here. Here's the message:
}
} >Your command:
} >PW REP "PASSWORD"
} >has remained unconfirmed  for more than 48h and is  being cancelled. If you
} >did want it executed but were unable to send the confirmation in time, just
} >re-issue the command to get a new  confirmation code. The one you were sent
} >before can no longer be used.
}
} (I've inserted the word "PASSWORD" in place of the letters actually
} included, as I do sometimes use them for a password and would as soon
} keep them private.)
}
} As I read this, the listserv computer think I tried to replace the
} present password with a new one. I never sent any such command,
} however. My concern is that this means somebody has attempted to
} change the password without my knowledge. That would mean they had to
} fake my e-mail address, or the listserv wouldn't have accepted the
} initial request, right? And it would mean that they have been poking
} around in my passwords, as the one in the message from the listserv
} does indeed use characters that I use commonly for a password when
} security isn't of much concern (because it's easy to remember) --
} although not for the listserv I own.
}
} Then again, perhaps I'm paranoid, because what would be the purpose
} of changing the password to one that I normally use?
}
} I am getting a bit forgetful, but I'm pretty sure I didn't initiate
} anything like this.
}
} Is there some listserv malfunction that this might result from? That
} doesn't make sense either, because the requested new password is
} different from the one the listserv is now programmed to use, and it
} wouldn't have any way of knowing what my alternate, low-security
} password is.
}
} Any thoughts greatly appreciated.
}
} Phineas Fiske, list owner for the National Conference of Editorial Writers

--
Rich Greenberg   Work:  Rich.Greenberg atsign worldspan.com   +1 770-563-6656
N6LRT   Marietta, GA, USA   Play: richgr atsign panix.com     +1 770-321-6507
Eastern time zone.   I speak for myself & my dogs only.     VM'er since CP-67
Canines:Val(Chinook,CGC,TT), Red & Shasta(Husky,(RIP))        Owner:Chinook-L
Atlanta Siberian Husky Rescue. www.panix.com/~richgr/   Asst Owner:Sibernet-L

ATOM RSS1 RSS2

COMMUNITY.EMAILOGY.COM