[PrivacyBadger] New subscriber questions
Dave Warren
dw at thedave.ca
Tue Jan 23 10:42:39 PST 2018
Also remember, the password is not only still stored insecurely, but it
can also be retrieved (unless the list operator has taken special steps
to eliminate this).
On the flip side, as long as you use a unique password (which you don't
even need to record, since you can retrieve/reset it), the only harm is
that someone might adjust your mailing list settings -- And if this
happens, mailman will tell you about it. This isn't ideal, it's not a
big enough real-world problem that anyone has bothered to solve it with
a drop-in replacement.
On Fri, Jan 19, 2018, at 08:26, R. Jason Cronk via PrivacyBadger wrote:> I'm not responding in any official capacity for the list, but just a
> point of historical awareness. Most list-serves are using rather
> antiquated technology set up 20 year ago before security (and privacy)
> were as big a concern. Rather than transfer to new, more secure,
> technology, these lists persist. My recommendation, as it would be
> even if the password was not stored in plain-text, is to use a
> password that you don't use anywhere else.>
> You can change your password by going to "unsubscribe or edit options"
> on this page https://lists.eff.org/mailman/listinfo/privacybadger>
> You'll find an option to change your password on that page.
>
> Jason
> .*.*.*.*.............................................................-
> .........
>> R. Jason Cronk | Juris Doctor
>
> Privacy and Trust Consultant | IAPP Fellow of Information Privacy
>> *Enterprivacy Consulting Group[1]* | CIPT, CIPM, CIPP/US, PbD
> Ambassador
>> ..................................................................-
> ........
>> Check out our concise, intelligible, accessible, plain language GDPR
> privacy notice generator[2].
>>
>>
>> ----- Original Message -----
>> From:
>> "Leslie Turriff" <jlturriff at mail.com>
>>
>> To:
>> <privacybadger at lists.eff.org>
>> Cc:
>>
>> Sent:
>> Thu, 18 Jan 2018 20:01:10 -0600
>> Subject:
>> [PrivacyBadger] New subscriber questions
>>
>>
>> Hi,
>> Thanks for letting me subscribe to this mailing list. I have a
>> question>> about configuring Privacy Badger, but before asking that one, I
>> have this>> one:
>> How do I go about changing my mailing list password? Your
>> subscription>> dialog cleverly posted my password in the clear in its "Welcome"
>> email, so>> now I'm potentially compromised.
>> When I do change my password (however that is accomplished),
>> will the>> listserver again publish its new value in an email?
>>
>> JL Turriff
>> _______________________________________________
>> PrivacyBadger mailing list
>> PrivacyBadger at lists.eff.org
>> https://lists.eff.org/mailman/listinfo/privacybadger
> _________________________________________________
> PrivacyBadger mailing list
> PrivacyBadger at lists.eff.org
> https://lists.eff.org/mailman/listinfo/privacybadger
Links:
1. http://www.enterprivacy.com
2. https://enterprivacy.com/gdpr-privacy-notice-policy-template/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.eff.org/pipermail/privacybadger/attachments/20180123/bed6e603/attachment.html>
More information about the PrivacyBadger
mailing list