Discussion:
[Twisted-Python] Twisted + OpenSSL 1.0.2f issues resolved
Glyph Lefkowitz
2016-02-20 09:33:07 UTC
Permalink
Will one of the ML admins please ban the address sending these emails? It is a little annoying. Not sure if anyone else is getting them.
Sorry; I assumed this person had accidentally left their autoresponder on and would notice. Upon actually reading the message I assume that they subscribed by accident (spammers seem to periodically attempt to mass-subscribe people using our listserv, I have no idea why, and some of them click the "yes subscribe me" link for some reason).

They've been removed from the lists now.

-glyph
Amber "Hawkie" Brown
2016-02-19 15:42:44 UTC
Permalink
Hi everyone,

Since Tristan Seligmann has fixed https://twistedmatrix.com/trac/ticket/8189 , and the CFFI crash-on-shutdown bugs have been resolved upstream, Twisted is now fully compatible with OpenSSL 1.0.2f as included in Cryptography 1.2.2, and as included in distributions that have been updated.

This fix is in Twisted trunk, but did not make it into Twisted 16.0. Twisted 16.1 will include the fix.

Thanks to Tristan and Glyph (the reviewer) for getting this issue fixed.

- Amber
Phil Mayers
2016-02-22 15:26:48 UTC
Permalink
Post by Glyph Lefkowitz
I assume that they subscribed by accident (spammers seem to
periodically attempt to mass-subscribe people using our listserv, I
have no idea why, and some of them click the "yes subscribe me" link
for some reason).
FWIW, our local mailman install is patched to require a captcha (and to
disable email-based subscribe) to solve this exact problem.
Glyph Lefkowitz
2016-02-22 21:18:40 UTC
Permalink
Post by Glyph Lefkowitz
I assume that they subscribed by accident (spammers seem to
periodically attempt to mass-subscribe people using our listserv, I
have no idea why, and some of them click the "yes subscribe me" link
for some reason).
FWIW, our local mailman install is patched to require a captcha (and to disable email-based subscribe) to solve this exact problem.
Is this simple to do?

-g
Phil Mayers
2016-02-23 13:14:42 UTC
Permalink
Post by Glyph Lefkowitz
Post by Phil Mayers
Post by Glyph Lefkowitz
I assume that they subscribed by accident (spammers seem to
periodically attempt to mass-subscribe people using our listserv,
I have no idea why, and some of them click the "yes subscribe me"
link for some reason).
FWIW, our local mailman install is patched to require a captcha
(and to disable email-based subscribe) to solve this exact
problem.
Is this simple to do?
It was pretty easy. I originally followed this recipe:

https://www.dragonsreach.it/2014/05/03/adding-recaptcha-support-to-mailman/

However, I had to tweak it slightly - some of the mailman "HTML" (I use
that term loosely) had weird tag nesting that broke the captcha form
submission on newer browsers (some monstrosity like
<table><tr><td><form>...</table></form>)

I'll sling you the diff against 2.1.12 that we use off-list, feel free
to use or modify as appropriate.

Loading...