Does this also work if the sender is the editor? At 05:35 PM 2/8/01 -0500, you wrote: >On Thu, 8 Feb 2001 15:32:41 -0600, "Michael T. Fay" <[log in to unmask]> wrote: > > >I have, for now, changed the list to an edited list with the Sender= List. > >But, I was wondering what other security measures might > >make sense for a list like this. > >Send= Editor,Hold,Confirm >Editor= user@address > >REgardless of who spoofs what address, the request for approval of the message >will be sent to known person(s) who must verify message legitimacy and >manually >approve it back to LISTSERV. Unless the spoofer also has access to the >authorized editor's email account this is extremely secure. If that mail >account is compormised then you have much bigger problems to worry about.