Yeah I understand that a type of one-click opt out is available already.  I want to keep the closed-loop opt out in place, to keep my list secure.  On our website, over the years, we have had to fend off several types of resource starvation attacks, that literally knocked us offline.  Apparently, someone has us in their crosshairs, and I'm guessing it is a competitor.  As a result, we closely guard many aspects of our information infrastructure, and our mailing list is a very valuable asset.On Apr 4 ...Continue Reading

Got it now.  I don't use closed loop opt-out in the interest of simplicity for the unsubscriber.  They click once and they are removed. I do get a notice, though, as I like to know which topics generate unsubs. Alan Hysinger wrote: Hi John, I am preparing a post to explain this more in depth, which I will post later today.  I understand your concern, and in a few words I want to say you need not worry about the scenario you explained. To clarify the discussion somewhat, there is the hack ...Continue Reading

Hi John,I am preparing a post to explain this more in depth, which I will post later today.  I understand your concern, and in a few words I want to say you need not worry about the scenario you explained.To clarify the discussion somewhat, there is the hack I currently use in my one modified copy of Dada, and then there is a proposed new feature that does the same thing, in a cleaner and more secure sort of way.  The proposed new feature will be developed in a different branch of the code, and won't affect t ...Continue Reading

John,Actually, what is going on here is that Dada Mail automatically generates a PIN in the unsubscribe process.  The link that the user clicks to unsubscribe contains the PIN to prevent someone from systematically creating unsubscribe links using a dictionary. The user usually has no interaction at all with the PIN.------------------------------Moshe KatzKatzNet Computers-- moshe@PROTECTED -- +1(301)867-3732 On Sun, Apr 4, 2010 at 10:31 AM, John Collins <john@PROTECTED> wrote: I'm not even sure that I'm f ...Continue Reading

I'm not even sure that I'm following this correctly.  It seems that it is a hack/future feature in which a subscriber has to enter their PIN in order to unsubscribe.  If this is true, I truly hope that it will be an option, not a standard feature.  Here's why:  With my large list I get a few unsubs after every blast.   Of these unsubs, some of them don't use the very obvious link in the blast, but instead reply and ask me to unsub them. It gets annoying after a while.  If a ...Continue Reading

Alan, I think a great idea would be for you investigate the feature yourself on a forked copy of Dada Mail by using github. It's quite easy to fork off Dada Mail, make your changes and then ask for a pull. I'm currently working on other parts of Dada Mail, so I can't really focus to much of myself on this part, but I'd be interested in what you find. For such a feature in such a sensitive part of Dada Mail - a part that would really need to work without bugs, it would be nice if you could include tests with your ne ...Continue Reading

On Apr 2, 2010, at 3:11 PM, Justin J wrote: > > On Apr 2, 2010, at 3:45 PM, Alan Hysinger wrote: >> If a pin is compromised, it's only the one pin. I have observed it is different for each mailing, even for the same email address, so it seems the algorithm generating the pins has some defense against being cracked. > > As the implementor of it, I'd say it's laughably insecure. I'm pretty worried about it, myself. I would like to completely replace it with just a random number, that's saved somewh ...Continue Reading

On Apr 2, 2010, at 3:45 PM, Alan Hysinger wrote: > If a pin is compromised, it's only the one pin. I have observed it is different for each mailing, even for the same email address, so it seems the algorithm generating the pins has some defense against being cracked. As the implementor of it, I'd say it's laughably insecure. I'm pretty worried about it, myself. I would like to completely replace it with just a random number, that's saved somewhere and generated when a sub/unsub request is made, instead of a 2-way ...Continue Reading

Well I really hope you don't take that out, it's a very useful feature to me and my non-trivial number of subscribers. That said, in response to your arguments I would say: If a pin is compromised, it's only the one pin. I have observed it is different for each mailing, even for the same email address, so it seems the algorithm generating the pins has some defense against being cracked. If you are concerned about users understanding my proposed option, then it seems it makes more sense to keep it in Config.pm, well ...Continue Reading

On Apr 2, 2010, at 4:19 AM, Alan Hysinger wrote: > > I'm sorry I wasn't clear. I want to maintain the closed-loop opt-out when someone visits the UI on the site, to protect my mailing list from tampering, but if they have their PIN in a link, then I want to trust it and do it in one click. Unchecking that option allows literally anybody to remove email addresses. Hmm, not sure if I have anything to offer to get that working. The, "needs to actually make a confirmation request" is a pretty important ...Continue Reading