18 Aug
2015
18 Aug
'15
9:41 a.m.
On Thu, Aug 13, 2015 at 08:36:24AM +0800, Phill Twiss wrote:
You should really have captcha's configured for your mailman lists
No. In fact: hell no. Captchas have zero security value and serve only to annoy and waste the time of legitimate users. Far less intrusive and more effective measures suffice nicely, e.g., deploying the DROP list in the firewall defending the Mailman instance. ---rsk