|Re: [Hangout-NYLXS] events
|Quoting Ruben Safir (ruben-at-mrbrklyn.com):
> On 10/20/2015 08:02 PM, Rick Moen wrote:
> > 1 of 2: Thank you for making the roster
> > (http://www.nylxs.com/mailman/roster/hangout) accessible to subscribers.
> WTF... how do I get rid of that
We talked about this on the 'phone: You have the impression that the
roster is open to all Web browsers -- but it _isn't_. Mailman is
configured on this mailing list to require subscribers to provide their
subscription passwords before they're permitted to see the roster.
I'm guessing that the reason you were (I assume) permitted to see the
roster without user authentication is that you'd been visiting the
Mailman Web pages using the listadmin password, which sets a cookie that
(for some significant period of time at a stretch) permits you to see
any page in Mailman's CGI tree without further credentials -- because
you're the listadmin, and ought to be able to.
Mailman supports three default administrative configuration choices for
a mailing list's roster: 'Anyone', 'List Members', or 'List admin only'.
As listadmin, you can change those via the Privacy Options page, item
'Who can view subscription list?'
However, I believe you have misinterpreted what you see as indicating
that there is full public access to the roster -- and, as I mentioned in
the prior message, that is _not_ the case. It is set to 'List Members',
which I vaguely recall is the default -- and which I appreciate.
Listadmins who are new to GNU Mailman often go reflexively into full
control-freak mode where everything is hypercontrolled and subscribers
aren't permitted to view or do much of anything, and it's depressingly
common (in particular) to see Mailman discussion mailing lists
configured so only the listadmin is permitted to know who else is
My point upthread was to thank you for not indulging that particular
(depressingly common) variety of geek psychopathology.
hangout mailing list