Full Disclosure mailing list archives

Re: Administrivia: List Compromised due to Mailman Vulnerability

From: Frank Knobbe <frank () knobbe us>
Date: Wed, 09 Feb 2005 13:37:57 -0600

On Wed, 2005-02-09 at 18:15 +0000, John Cartwright wrote:

Subscriber addresses and passwords have been compromised. All list 
members are advised to change their password immediately. There do
not appear to be further signs of intrusion although investigations
continue.


To prevent getting lulled into a phishing scam, could you please confirm
the fingerprints of the self-signed SSL certificate that mailman is
running on?  :)

Thanks,
Frank

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Administrivia: List Compromised due to Mailman Vulnerability John Cartwright (Feb 09)
- Re: Administrivia: List Compromised due to Mailman Vulnerability Frank Knobbe (Feb 09)
  - Re: Administrivia: List Compromised due to Mailman Vulnerability Valdis . Kletnieks (Feb 09)
    - Re: Administrivia: List Compromised due to Mailman Vulnerability Frank Knobbe (Feb 09)
    - Re: Administrivia: List Compromised due to Mailman Vulnerability Valdis . Kletnieks (Feb 09)
    - Re: Administrivia: List Compromised due to Mailman Vulnerability Anders Langworthy (Feb 09)
    - Re: Administrivia: List Compromised due to Mailman Vulnerability bkfsec (Feb 10)
    - RE: [lists] Re: Administrivia: List Compromised due to MailmanVulnerability Curt Purdy (Feb 13)
- Re: Administrivia: List Compromised due to Mailman Vulnerability Florian Weimer (Feb 09)
  - Re: Administrivia: List Compromised due to Mailman Vulnerability John Cartwright (Feb 10)
- Re: Administrivia: List Compromised due to Mailman Vulnerability Steve Blass (Feb 09)