Dear list admins.
I noticed today some Too Many Requests errors when accessing the
admin interface of some lists.
Has a new rate limit been introduced recently?
Hi All,
Many of you would have noticed that now we have started getting additional
subscriptions from email addresses with yahoo.com domain, while aol.com
continues.
I would like to know and propose whether it is possible to suspend
subscription to all wikimedia mailing lists, or at least those affected by
this swathe. I would prefer subscriptions suspended to my mailing list
instead of getting these 100s of dodgy subscription as there is a high
possibility of us missing genuine subscription request among these several
hundred spam ones.
Regards,
Dhaval Vyas
Hi there.
On the lists "wikimedia-sk" and "wikimedia-sk-oznamy", where I am admin, we
have received suspicious mass subscriptions (several tens in several
hours). They came from nowhere, all with @aol.com address (very unusual for
our target group) and all declared only first name. Most certainly some bot.
Provisionally I have set them all for moderation. Eventually I could block
subscriptions from @aol.com addresses (no too big deal, because hardly
someone real in our audience is using them) but I prefer systemic solutions
and not to cure symptoms. And possibly someone else here is running into
the same problem.
Any suggestions?
Regards!
KuboF Hromoslav
Hi all,
It seems that the mailing list Moderators-nl, meant for administrators on the Dutch Wikipedia, is broken. I created a Phabricator ticket: https://phabricator.wikimedia.org/T181906 If that wasn't the right thing to do, please say so. Thanks.
Trijnstel
We just had a phishing mail come through to wikimediauk-l a few days
ago. The email wasn't sent by the poster - but by someone else using
his email address. His university gave some advice, but I'm not sure
what they mean nor how to effectively implement this using any
settings we have in Mailman ... so in the general case, is there
anything we can do about this type of phishing mail?
- d.
---------- Forwarded message ----------
From: MCANDREW Ewan <Ewan.McAndrew(a)ed.ac.uk>
Date: 24 August 2017 at 11:10
Subject: FW: I170821-0616 about "Phidhing scam problem Fwd:
[Wikimediauk-l] #4947276 Invoice secondary Notice" has been resolved
To: Lucy Crompton-Reid <lucy.crompton-reid(a)wikimedia.org.uk>,
"john.lubbock(a)wikimedia.org.uk" <john.lubbock(a)wikimedia.org.uk>,
Richard Nevell <richard.nevell(a)wikimedia.org.uk>
Hi all,
Please see below message regarding the phishing message on the Wiki
mailing lists.
Are we able to provide the ‘pure mail headers’?
Best,
Ewan
Ewan McAndrew
Wikimedian in Residence
Tel: 07719 330076
Email: ewan.mcandrew(a)ed.ac.uk
Subscribe to the mailing list: wikimedia(a)mlist.is.ed.ac.uk
My working hours are 10.30am to 6.30pm Monday to Friday.
Wikipedia Project Page for the residency:
https://en.wikipedia.org/wiki/Wikipedia:University_of_Edinburgh
The University of Edinburgh, Floor H (West), Argyle House, 3 Lady
Lawson Street, Edinburgh, EH3 9DR.
www.ed.ac.uk
From: UoE UniDesk Number I170821-0616
Sent: 24 August 2017 10:04
To: MCANDREW Ewan
Subject: I170821-0616 about "Phidhing scam problem Fwd:
[Wikimediauk-l] #4947276 Invoice secondary Notice" has been resolved
Hello Ewan
The mail admins have taken a further look at this and have added the
following information:
'The quoted message is a digest containing the scam message and not
the original scam message. It contains no information to show where
the original came from as it only shows an excerpt of its headers.
However, it does *apparently* contain a from address like
Ewan.McAndrew(a)ed.ac.uk< liane.eichenberger(a)buendes-bueroservice.de>
and that *suggests* that the original *may* have come from
liane.eichenberger(a)buendes-bueroservice.de - but it is impossible to
be sure of anything without seeing the original. That would presumably
require the cooperation of the list manager or any list member who
receives individual messages rather than digests.'
In summary then ideally the UoE postmaster would need to see 'pure'
mail headers from an individual message, as opposed to those from a
digest.
Best wishes
Jono
....................
Hi,
full message header below ? please can you help.
NB: Wondering if this is actually a University of Edinburgh email
account problem or if it is a gmail or Wikimedia mailing list being
compromised problem however as I have received another phishing spam
message from a different email address from this Wikimedia mailing
list now (purporting to be from Jason Evans at the National Library of
Wales).
--
The University of Edinburgh is a charitable body, registered in
Scotland, with registration number SC005336.
--
Richard Nevell
Project Coordinator
Wikimedia UK - sign up to our newsletter
+44 (0) 20 3372 0765
Wikimedia UK is a Company Limited by Guarantee registered in England
and Wales, Registered No. 6741827. Registered Charity No.1144513.
Registered Office 5-11 Lavington Street, London SE1 0NZ. United
Kingdom. Wikimedia UK is the UK chapter of a global Wikimedia
movement. The Wikimedia projects are run by the Wikimedia Foundation
(who operate Wikipedia, amongst other projects).
Wikimedia UK is an independent non-profit charity with no legal
control over Wikipedia nor responsibility for its contents.
Hello listadmins and sysadmins,
I've continued to receive bounce emails for wikimania-l through
wikimania-l-owner(a)lists.wikimedia.org , even though I have not known the
password of the list since the late 2015 Wikimedia-wide password reset and
https://lists.wikimedia.org/mailman/listinfo/wikimania-l isn't showing me
as an admin.
The fact that I'm getting bounce emails without being able to respond to
them is driving me nuts... Can a sysadmin figure out what happened, please?
Deryck
Hello,
Since a couple of hours I am receiving continuous subscription requests
from addresses such as sqoon+random_characters@domain and
sqoonart+random_characters@domain
I have added to the ban list the following regex to stop them from even
subscribing: ^sqoon.*
But I continue to receive them.
Any idea on how to amend the regex or outright block them from even send
subscription requests?
The list is metawiki-admins, a closed list.
Regards, M.
--
M. A.
Hi List Admins,
On Aug 1st mailman will be configured to improve message delivery from users whose email provider has a strict DMARC policy (yahoo, aol, etc.). Here’s a quick breakdown of what will change:
Messages whose original From: domain publishes a DMARC policy of p=reject or p=quarantine will...
Have the From: header rewritten (Munged) to the posters name 'via the list' <list_address> and
Merge the poster's address into the Reply-To: header
To reiterate, only if the senders email domain has a strict DMARC policy will the from address be rewritten. While rewriting the from header may not be ideal this is a necessary setting to ensure reliability of the mailing list system. Without rewriting these messages may be lost silently, or with cryptic error DSN messages returned to the poster. List admins may optionally choose a different moderation action on a per-list basis.
Additional detail about mailman configuration and DMARC moderation settings be found at https://wikitech.wikimedia.org/wiki/Mailman#DMARC_Compatibility <https://wikitech.wikimedia.org/wiki/Mailman#DMARC_Compatibility>
Best,
—Keith
Keith Herron | Ops Engineer
Hello,
On Wed, 26 Jul 2017, Danny B. wrote:
> Reply-to: sender(a)example.com, list(a)lists.wikimedia.org
>
> Pressing reply should then open a message with both addresses in the To:
> field.
> "
> It should be noted, that this actually technically means, that the sender
> will receive such reply twice - once as the direct recipient sender@example.
> com, once as the subscriber of the list...
There is a mailman option for this problem, too.
You can find a value for new_member_options to avoid duplicates if possible.
The Readme says:
new_member_options
Each member has a set of subscription options which they can use to control
how they receive messages and otherwise interact with the list. While the
members can change these settings by logging into their personal options page,
you might want to set the default for a number of the member options. You can
do that with this variable, but see also the other categories for other member
defaults you can set.
This variable presents a set of checkboxes which control the defaults for
some of the member options. Conceal the member's address specifies whether or
not the address is displayed in the list roster. Acknowledge the member's
posting controls whether or not Mailman sends an acknowledgement to a member
when they post a message to the list. Do not send a copy of a member's own post
specifies whether a member posting to the list will get a copy of their own
posting. Filter out duplicate messages to list members (if possible) specifies
whether members who are explicitly listed as a recipient of a message (e.g. via
the Cc: header) will also get a copy from Mailman.
Of course, members can always override these defaults by making changes on
their membership options page.
I tried it on my site and it works fine.
In addition you have the possibility to set "duplicates off/on" for each member
in the admin and the user web interface for mailman.
Cheers
nosy
Dear all,
can someone please block mails coming from qq.com ?
I am getting drowned in mails from random mail addresses
(numbers)(a)qq.com, sent to wikials-l-owner(a)lists.wikimedia.org.
Thanks,
Manuel
--
Wikimedia CH - Verein zur Förderung Freien Wissens
www.wikimedia.ch