Leave choice on obfuscation method to sysadmin
Bug #266145 reported by
Alster
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
New
|
Medium
|
Unassigned |
Bug Description
As far as I know, currently the way pipermail
obfuscates email addresses is hardcoded to "user at
domain.com". This is really easy to harvest.
It may be a better idea to leave the method of
obfuscation to the mailman (sys)admin (not list admin).
This will result in increased diversity of obfuscation
methods on the several pipermail setups and thus to
decreased harvesting.
[http://
To post a comment you must log in.
I would second this request. The current obfuscation scheme
is next to useless. I understand that it would make little
sense hardcoding a more complex obfuscation scheme, as it
could easily be reverse-engineered. However, if the
obfuscation method was left to the administrator, there
would be virtually as many different obfuscation schemes as
sites, so reverse-engineering would be much more difficult,
if impossible.
As a side note, I wonder why there is no option in mailman
to plain discard the e-mail addresses from the Archive. This
should be even more simple to implement, and sufficient at
least for my own needs.