The mailing list for listmasters using Sympa

[Serge Aumont <address@concealed>]

qt4x11 a écrit :
> There are a few more lists that were created without proper 
> authentication in our /home/sympa/expl folder.  We have not had any 
> further reports of spam being sent from these lists.  It appears that 
> these unauthorized lists on our system have spam-sending scripts in 
> their /home/sympa/expl/<listname>/expl/shared folders.
The create_list authorization scenario you are using allows anyone to 
request lists creation but list are created with "status pending" 
parameter.It mean that the list can't be used unless the listmaster 
validate it.

The list was created by authenticated user, this users are the first 
owner in the list config. The scenario dontauthorize list creation but 
list creation request. Here isthe scenario source :
http://www.sympa.org/distribution/sympa-5.3.2/src/etc/scenari/create_list.public_listmaster

first rule allows list creation for listmasters, last rule allows list 
creation to anyone whatever the way he is authenticated but creation 
request are submitted to listmater. In thsicase Sympa send a 
notification to listmaster by email. Dis you create listmaster alias ?
> I have a two part question - what is the proper way to close and 
> delete these unauthorized lists?
Listmaster can list pending lists remove or install them from the 
http://www.xxx.tt/sympa/get_pending_lists page.

> What do I need to change in my configuration to avoid getting them again?
Change the create_list parameter to value listmaster

Don't worry, I don't believe your server was hacked every think you 
describe is normal.

Serge