[NTG-context] Re: Mail server login broken

On 30 Sep 2024, at 09:15, Hans Åberg wrote:

An anti-spam measure is requiring email confirmation, typically an email sent to the address to be registered with an HTML link that must be opened and confirmed by clicking on a button.

What happens is that a malicious script is submitting a "password reset" form with a valid but unknown to mailman email address. Mailman3 should not respond to those, but it does. The receivers of such password reset reminders get righteously annoyed. Best wishes, Taco — Taco Hoekwater E: taco@bittext.nl genderfluid (all pronouns)