LSTSRV-L Archives

LISTSERV Site Administrators' Forum

LSTSRV-L
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Topic: [<< First] [< Prev] [Next >] [Last >>]

Parts/Attachments: text/plain (22 lines)
Print Reply
Content-Type:
text/plain; charset="us-ascii"
Date:
Tue, 8 Jan 2013 21:35:41 +0000
Reply-To:
LISTSERV give-and-take forum <[log in to unmask]>
Message-ID:
<[log in to unmask]>
Subject:
Securing a server
From:
Matthew Black <[log in to unmask]>
MIME-Version:
1.0
Content-Transfer-Encoding:
quoted-printable
Sender:
LISTSERV give-and-take forum <[log in to unmask]>
Comments:
To: [log in to unmask]
 
What is the best way to secure a LISTSERV server from leaking information? Seems the design was written in an era when most Internet users were trustworthy.

I want to make sure that nothing is published to Catalist. There's a CONFIDENTIAL=YES setting for each list. Is there a global setting that will override any individual list header?

I want to make sure that commands like RELEASE don't work, except for possibly postmasters.

I want to make sure no other command releases information about the server, administrators, or configuration.

Does L-Soft have a best practices document?

Thanks.

matthew black
california state university, long beach

############################

To unsubscribe from the LSTSRV-L list:
write to: mailto:[log in to unmask]
or click the following link:
http://peach.ease.lsoft.com/scripts/wa-PEACH.exe?SUBED1=LSTSRV-L&A=1

ATOM RSS1 RSS2