Wed, 17 Jan 2001 23:23:45 -0500
|
On Wed, 17 Jan 2001 18:53:01 PST, Danny Lee <[log in to unmask]> said:
> The list is confidential; it is also has a fairly dynamic membership; users
Danger, Will Robinson, Danger!!
Any security person will tell you that "confidential" and "dynamic" intermixed
are a problem waiting to happen. If *this* week's list of recipients of
sensitive info isn't the same as *last* weeks, something will leak. Guaranteed.
> can request to subscribe, but subscriptions require list owner approval. The
Reasonable enough.
> owner wants to be sure everyone who receives a message knows who else has
> received it, and they can't tell if they just receive standard LISTSERV
> headers...
Please point out to the owner that:
"the list of people that Listserv originally sent it to",
"the list of recipients that *received* the note without it bouncing",
"the list of recipients that *read* the note once it was delivered",
"the list of people who actually *SAW* the note *AFTER* forwarding, resending, and all
the rest of that stuff"
are all very different.
Make *very* sure the list owner understands *which* of these values the
owner is *really* concerned about, and what Listserv can and can't do
about it.,
Valdis Kletnieks
Operating Systems Analyst
Virginia Tech
|
|
|