Got Goat?
Augie does a nice job of explaining our “addiction” to the Goat.See you there!
If your ecommerce application is taking credit card numbers and you’re hosting with a reputable host, most likely you’re familiar with becoming PCI Compliant. Without going into much debate over the policies behind the requierments and motives, one of the things that you must do is disable SSL version 2, which has multiple documented vulnerabilities. You can do so, assuming you’re using Apache with the following:
SSLProtocol ALL -SSLv2
SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL
Don @ November 9, 2008
I have a status list. All the systems I manage, I’ve configured root’s mail to be directed to this list. The list is completely unmoderated because of the sheer number of systems send mail to it. The *problem* was that as list owner, I was receiving moderation requests for system messages. The key here is exactly what the moderation message tells you: “the message has an implicit destination”. If Mailman doesn’t detect the list address in the To or Cc, by default, it gets flagged for moderation. System aliases don’t by nature work. Privacy Options –> Recipient filters –> “require_explicit_destination” to “No”.
Don @ July 21, 2008