Password Reminder mails plaintext password
Jason A. Donenfeld
Jason at zx2c4.com
Thu Sep 21 12:37:55 CEST 2017
1. Complain to upstream Mailman people.
2. Use a password manager, such as pass, so that you never use an important
or overlapping password with Mailman.
On Sep 21, 2017 12:35, "Michael Aquilina" <michaelaquilina at gmail.com> wrote:
> I've just asked for a password reminder from
> https://lists.zx2c4.com/mailman/options/password-store and was *very*
> surprised to see that my plain text password had been emailed back to
> me. As a tool that focuses on security I feel like this is something
> that should really be fixed. Are there any reasonable approaches to
> getting this done fairly easily?
> Michael Aquilina
> Password-Store mailing list
> Password-Store at lists.zx2c4.com
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Password-Store