| Present: |
P. Hazel,
D.P. Carter,
R.J. Dowling,
F.A.N. Finch,
C.J. Jardine,
K.M. Jeary, R. J. Smith, P. Stewart, J.M. Wilkins |
| Apologies: | B.K. Omotani, R.A.W. Mee |
Date of next meeting: 26th July 2006 at 11:15 in C304.
There are currently 233 Mailman lists (out of 5240 lists in total, about 2/3rds of which are active). The software is about to be upgraded to version 2.1.8, which contains a number of bug fixes but no new features. Documentation is in progress.
The attacker does not appear to have returned.
53% of the people with insecure settings have fixed their configuration, leaving 3753 people who still have problems. Remaining undergraduate accounts which are not not scheduled to be cancelled this summer will be added to the notification schedule a week or so after they leave for the summer. Home systems which are not managed by any computer officer are likely to prove a substantial problem.
CAMCert receive a steady trickle of complaints about mail systems on the CUDN which accept messages to invalid addresses and then generate a separate bounce message. This generates collateral spam which can be avoided if the message is rejected at SMTP delivery time. FANF sent out a circular to the departments which were generating the most collateral spam. Most of these sites have now fixed their configurations. A handful of awkward cases remain, mostly people running Exchange 5.5 (which cannot easily be fixed) and one department who run Exchange behind an application level gateway firewall. The minimum requirements for MTAs attached to the CUDN will be reviewed.
DPC 2006-06-07