Lyris User's Guide
[previous] [next] [contents]
Secure HTTP web interface
Table of Contents
Lyris Email Commands
Web Interface for Users
Server Administrator
Site Administrator
List Administrator
Other Topics
Security Considerations
Security Issues Relating to Members
Access to the list archives
Access to the list of members
Access to Subscribe to the Mailing List
Steps to restrict false impersonations
Security Features for Posting Messages
List admin posting
Admin Moderation
Number moderating
Allow Non-Member Posting
Action Phrase Restrictions
Password based posting
Banning members
Disallow Email Posting
Secure HTTP web interface
Lyris extensions
Confirmed subscriptions
Duplicate messages
Maximum posts per member
Maximum quoting allowed
Maximum Messages Per Day
Limit the Message Size
Reject Email Attachments
Moderator auto-approval
Command detection
Anonymous Postings
Access to unsubscribe and change settings
Visibility of the existence of the mailing list
Web Interface Access
Overview of Lyris Posting Security
Security Considerations of the From: field
Security Recommendations for Announcement lists
How Lyris Determines the Identity of the Person Posting
Lyris Mail Merge
The Lyris command line
Modifying lyris.plc
Add-On Packages
Installing and Upgrading
Frequently Asked Questions

Secure HTTP web interface

Because the Lyris web interface runs as a web server CGI script, it is possible to run it inside a Secure HTTP server. This technique can be used if you are concerned about a technique called "packet sniffing" whereby someone in your network can use an Ethernet watching program to read your password as you type on the network.

This is a more sophisticated type of attack, and its actual abuse is rare, but is a known security risk.

If you use a Secure HTTP server, the URL to your Lyris web interface will begin with https: and the entire web interface session will be encrypted, so that it is very difficult to practically impossible to crack the password (depending on the encryption used by the browser).

Other pages which link to this page:
  • Security Features for Posting Messages
  • Page 379 of 556