A new list poster password has been implemented. This password may only

be used in Approved: or X-Approved: headers for pre-approving posts. Using this password for that purpose precludes compromise of a more valuable password sent in plain text email. Bug #770581.
author: Mark Sapiro <msapiro@value.net> 2011-04-25 16:52:35 -0700
committer: Mark Sapiro <msapiro@value.net> 2011-04-25 16:52:35 -0700
commit: aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40 (patch)
tree: e94b411dc9cfcefc5346df1fdff8264f195c43f7 /NEWS
parent: 7ef6c582816cb349f240054064d495753a916408 (diff)
download: mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.tar.gz
mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.tar.xz
mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/NEWS b/NEWS
index 8ee35b09..38549b4a 100644
--- a/NEWS
+++ b/NEWS
@@ -12,6 +12,11 @@ Here is a history of user visible changes to Mailman.
 
   New Features
 
+    - A new list poster password has been implemented.  This password may only
+      be used in Approved: or X-Approved: headers for pre-approving posts.
+      Using this password for that purpose precludes compromise of a more
+      valuable password sent in plain text email.  Bug #770581.
+
     - A new mm_cfg.py setting AUTHENTICATION_COOKIE_LIFETIME has been added.
       If this is set to a non-zero value, web authentication cookies will
       expire that many seconds following their last use.  Its default value is
author	Mark Sapiro <msapiro@value.net>	2011-04-25 16:52:35 -0700
committer	Mark Sapiro <msapiro@value.net>	2011-04-25 16:52:35 -0700
commit	aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40 (patch)
tree	e94b411dc9cfcefc5346df1fdff8264f195c43f7 /NEWS
parent	7ef6c582816cb349f240054064d495753a916408 (diff)
download	mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.tar.gz mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.tar.xz mailman2-aa8dd12bd7f3c442cdcc702b6bb1d8cabbca7d40.zip