Need to limit repeated subscribes from bot
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
New
|
Medium
|
Unassigned |
Bug Description
It's happened, some kiddie with a bot/script has decided it would be fun to
attack hir favorite target by sending hundreds of subscribe messages to our
mailman server. Each one causes a confirmation email to be sent to the
victim. Needless to say, they are not pleased, and consider our repeated
automatic confirmation emails to be spam.
Mailman should keep track of the number of subscribe requests for an email
address and ignore any past a configurable number within some configurable
period of time. For example, up to 2 within 24 hours is OK but beyond that
is silently ignored.
This could be related to other feature requests to limit the number of
subscribe requests from a single source IP.
Is this already available and I just can't find it?
[http://
We're having the same problem, repeatedly. We haven't found a way to throttle these requests, but we would seriously love one (and so would the internet at large!)