Mon, 13 Nov 2006 01:14:45 -0500
|
On Sun, 12 Nov 2006, Ben Parker wrote:
>>
>> <author><![CDATA[ <[log in to unmask]>]]></author>
>>
>> instead of:
>>
>> <author>Kenny, Melissa S </author>
>
> Hmmm. Even on public LISTSERV lists the email address of the sender of a
> message is not displayed in the archives by default (to prevent address
> harvesting), unless you also are a subscriber and you are 'logged-in' (or have
> a login 'cookie' saved in your browser). Since the RSS feed is derived from
> the same source this could be the problem. Exposing the email address to
> (non-authenticated) RSS but not WWW would be a security hole. :-/
Exactly what I thought might be driving this. Absent authentication, I
would come to some standard bogus address like:
[log in to unmask]
It would pass the standards without giving out too much. An authenticated
feed could have the correct information passed along instead.
-- DCP
|
|
|