Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)

To: debian-devel@lists.debian.org
Subject: Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
From: Louis-David Mitterrand <vindex@apartia.org>
Date: Wed, 22 Aug 2001 23:30:55 +0200
Message-id: <[🔎] 20010822233055.B5203@apartia.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 871ym4q8t3.church.of.emacs@space-ghost.verbum.private>
References: <[🔎] 20010818140629.P640@212.23.136.22> <[🔎] slime-7ff041e0f09ca89b8932ba59efdb9d43@granny.localdomain> <[🔎] 20010819133710.00ee4e85.bug1@optushome.com.au> <[🔎] 998163953.6578.17.camel@granny> <[🔎] 20010818162959.B21442@deadbeast.net> <[🔎] 20010822174642.A4094@apartia.org> <[🔎] 20010822175728.D3737@wiggy.net> <[🔎] 20010822182004.A4328@apartia.org> <[🔎] 871ym4q8t3.church.of.emacs@space-ghost.verbum.private>

* On Wed, Aug 22, 2001 at 01:54:48PM -0400, Colin Walters wrote:
> Louis-David Mitterrand <vindex@apartia.org> writes:
> 
> > 3) you have the option of having a separate dupe cache for each mailing
> > list:
> >
> > 	:0 Whc: msgid.lock
> > 	| formail -D 8192 msgid.$LIST
> 
> You do realize this creates a fairly easy way for people to abuse your
> filter?  If an attacker can predict the Message-ID of an email someone
> is going to send to you, then they can easily send you a message with
> that Message-ID, and your filter will happily delete their mail when
> it arrives, and you will be none the wiser.  Many people's Message-IDs
> are fairly easy to predict.

Bid deal. I only dupe-filter on list mail, not personal mail.

I'm not sure that correspondence is really worth a hacker's time and
effort.

Furthermore you don't have to throw away dupes, you can store them for
later perusal, just to make sure no strange pattern emerges.

-- 
 HIPPOLYTE: Nous prendrons à témoin le Dieu qu'on y révère ;
            Nous le prîrons tous deux de nous servir de père.
                                          (Phèdre, J-B Racine, acte 5, scène 1)

Reply to:

References:
- Re: Debian lists and Cc'ing people in replies in addition to the list
  - From: Marcus Brinkmann <Marcus.Brinkmann@ruhr-uni-bochum.de>
- Re: Debian lists and Cc'ing people in replies in addition to the list
  - From: Lars Wirzenius <liw@iki.fi>
- Re: Debian lists and Cc'ing people in replies in addition to the list
  - From: Glenn McGrath <bug1@optushome.com.au>
- Re: Debian lists and Cc'ing people in replies in addition to the list
  - From: Lars Wirzenius <liw@iki.fi>
- Re: Debian lists and Cc'ing people in replies in addition to the list
  - From: Branden Robinson <branden@debian.org>
- learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
  - From: Louis-David Mitterrand <vindex@apartia.org>
- Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
  - From: Louis-David Mitterrand <vindex@apartia.org>
- Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
  - From: Colin Walters <walters@verbum.org>

Prev by Date: Font editor
Next by Date: Re: Name for new port WAS: new port
Previous by thread: Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
Next by thread: Re: learn procmail and quit whining already (was Re: Debian lists and Cc'ing people in replies in addition to the list)
Index(es):
- Date
- Thread