[wp-hackers] Mailing list passwords in plain text

Sam Auciello info at samauciello.com
Mon Jul 1 20:42:53 UTC 2013

So I was just sent the following unencrypted message.  I've replaced my
password with asterisks but it is otherwise as is.  I shouldn't need to
tell anyone here why its horrible to store passwords in plain text but
sending them in unencrypted emails!  Seriously?  This is incredibly
irresponsible.  Can something be done about this?

---------- Forwarded message ----------
From: <mailman-owner at lists.automattic.com>
Date: Mon, Jul 1, 2013 at 1:00 AM
Subject: lists.automattic.com mailing list memberships reminder
To: info at samauciello.com

This is a reminder, sent out once a month, about your
lists.automattic.com mailing list memberships.  It includes your
subscription info and how to use it to change it or unsubscribe from a

You can visit the URLs to change your membership status or
configuration, including unsubscribing, setting digest-style delivery
or disabling delivery altogether (e.g., for a vacation), and so on.

In addition to the URL interfaces, you can also use email to make such
changes.  For more info, send a message to the '-request' address of
the list (for example, mailman-request at lists.automattic.com)
containing just the word 'help' in the message body, and an email
message will be sent to you with instructions.

If you have questions, problems, comments, etc, send them to
mailman-owner at lists.automattic.com.  Thanks!

Passwords for info at samauciello.com:

List                                     Password // URL
----                                     --------
wp-hackers at lists.automattic.com          ******************

More information about the wp-hackers mailing list