[pass] Mailman page is unencrypted HTTP

Brad Knowles brad at shub-internet.org
Fri Feb 5 18:32:21 CET 2016


On Feb 5, 2016, at 10:04 AM, Niklas Hambüchen <mail at nh2.me> wrote:

> Could the mailman config be put under https?

That is best practice for Mailman, yes.

Note that there have been a number of security enhancements that have recently been made to Mailman, so it would be a good idea to update, if you haven’t done that already.  See the recent announcement from Mark Sapiro regarding Mailman 2.1.21 at <https://mail.python.org/pipermail/mailman-announce/2016-February/000217.html>.


However, independent of that, if you’re accessing the wifi at Starbucks, I sure hope you’re using a VPN for all your traffic.

--
Brad Knowles <brad at shub-internet.org>
LinkedIn Profile: <http://tinyurl.com/y8kpxu>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20160205/701e0e1e/attachment.asc>


More information about the Password-Store mailing list