To LUGNET HomepageTo LUGNET News HomepageTo LUGNET Guide Homepage
 Help on Searching
 
Post new message to lugnet.admin.nntpOpen lugnet.admin.nntp in your NNTP NewsreaderTo LUGNET News Traffic PageSign In (Members)
 Administrative / NNTP / 832
  Email Authentication - Why not make it optional?
 
This email authentication is driving me nuts! A lot of people were already timid about posting and now its going to be worse. Since this has happened, I've seen one reply of the nature "Great - I'm so happy you did this!" post and a huge number of (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Well allow me to say that I am glad that Todd implemented this measure. Mostly because since it has been implemented, we have gotten rid of the annoying clone. And it will continue to help LUGNET remain a very nice friendly place that I (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Likewise. I'm happy to see the authentication system implemented. It's been one of my longest-standing concerns about LUGNET's security, and frankly, I'm surprised we've gone as long as we have without it. (...) Yeah, that. I'm not sure what (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Amen to you Brad. I've just gotten onto LUGNET, and it's an absolute hassle to post because of the e-mail authentication. As to how anybody could like this is absolutely bizarre to me, it is time consuming and for the most part unecessary to 99% of (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Until said clone (or someone else) finds another way around it. (...) I enjoyed my time on Lugnet even when the clone was having fun - I just ignored the posts (mostly). (...) I also use the web to post 99% of the time, but I'm still not (...) (23 years ago, 19-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) But a seawall's not gonna help you against an earthquake... (...) ...if you use the web to post. Most of the people complaining use email or a newsreader to post, for which there's no way to "log on". ROSCO (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Brad, Please note that most people here don't like to post "me too" posts. Usually the people who agree to what a post says will remain silent, while the objecting parties will be a lot more vocal. I think that a great number of people are (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Well, It sounds like the problem was a lot more widespread than I thought. Perhaps these "bad" people weren't posting in groups I frequented. Anyhow, it sounds like the security stuff is here to stay and will probably get more intrusive rather than (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Shiri, This *doesn't* solve the problem for people who don't have access to a browser to authenticate their posts. It also doesn't solve the problem of people who compose a bunch of posts off-line, then dial-up to send them. These people now (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) I hate to say it, but... me too. I was very happy to see Todd put the new security features in place. Obviously no change will please everyone, but I think some action had to be taken. Thanks, Todd! -Marc Nelson Jr. (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) It was hurricane season so a seawall was what was needed. If and when there is an earthquake likely that would be the time to do things to earthquake proof. (...) They should consider switching to the web mechanism or putting up with the (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) 8?) But life will be miserable if the earthquake hits with little or no warning. (...) So in other words, one annoying person has effectively forced many others to put up with an unnecessary (until now) inconvenience. I also use the web, and (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Maybe we should take this offline to dig in further on cracking but I see this as really hard to crack. If you have some ideas on how to crack it, I suggest you send them directly to Todd so he can see if there's some angle he overlooked. I (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Brad you rasie some good points, my take is that if you are being Spoofed you might not know it untill it's too late and someone has either ruined your reputaion or you seem to be held in low regard when you post and you don't know why because some (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
while i understand the need for this system i think it would be easyer on alot of people if it (maybe as an option") simply did a reply send to verify the message instead of clikcing on a link, waiting for your browser to open, reading the message, (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
I just thought I would throw in my 2 cents in support of the changes even though most of my thoughts have been covered. I will try and keep this to what hasn't been said (or at least I havn't seen posted yet). (...) First let me begin by saying I am (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
I agree that it is time consumeing, as someone else wrote - I too write them offline and then dail in and send them. It is cheaper and gives one time to think about the answer. I also saves money. Now, there is a simple way around this - in Outlook (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
I just thought of something. Todd, do you have any stats on NNTP usage? Can you tell how many members vs non-members use NNTP? If the number of non-members using NNTP is low, maybe just make NNTP a "privilege" of membership. I'm against the (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) this has been brought up before... however, NNTP authentication only makes sure you are allowed to log in to the server, it doesn't enforce you not posting as anyone else.... (23 years ago, 20-Jun-01, to lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Now I like this idea. There should be some real benefits to membership and this could be one if it can be worked out. I realize Todd might not like this because it could be considered exclusionary but I also think $10 is a pretty low price to (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
"Eric Kingsley" <kingsley@nelug.org> wrote in message news:GF8KyH.H8w@lugnet.com... (...) not (...) area) (...) sign (...) are (...) area so (...) I would love this. I am a paid up Lugnet member (no pack yet, guess there's a backlog), and I love (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) But still - for me it seems simply to verify the password, username, and the name email to what lugnet have in databases. Sonnich (23 years ago, 20-Jun-01, to lugnet.general, lugnet.admin.nntp)
 
  Re: Email Authentication - Why not make it optional?
 
"Larry Pieniazek" <lpieniazek@mercator.com> skrev i meddelandet news:GF7qJ4.6BM@lugnet.com... (...) a (...) Perhaps the (logged in) ones using the web interface should keep quite a while, to give the mail and NNTP (and slow modems in general) users (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Hello Ross, hello everybody, (...) Yes, even if you may not like this concept. It has always been that way. Look at how many regulations you have to follow in your life outside the 'net. Most of those are only necessary, because there are also some (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp)
 
  Re: Email Authentication - Why not make it optional?
 
Hello Larry, hello everybody, (...) Let me first thank you for being one of those guys who try to keep a fair eye on all sides - Tood's, who continues to volunteer and make LUGNET an ever better place to be. - The Web Interface users, who, indeed, (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Well, it took only 12 minutes to send a post, wait for email, click, and wait to see if the post made it... AndersI (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) I'm comfortable with *suggesting* that you switch. I don't see "should consider" as a sweeping statment that is dictating anything to you or not. You know what? I participate in a LOT of communities that *only* offer a web interface. People (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Normally I use the web interface (for over a year now), but I have the NNTP still set up in Navigator, so I gave it a test shot. 1) Open 'lugnet.com' in NS/Messenger window 2) Try to add 'lugnet.off-topic.test', then realize that I already had (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
"Ray Sanders" <rsanders@svic.net> skrev i meddelandet news:GF8x71.8n7@lugnet.com... (...) slow (...) As you can see in my post above, MMV (12 minutes). Although I think 4.5 minutes is also quite a large amount of time to spend on one (or two) (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Daniel Crichton wrote in message ... (...) Me too! I can't afford to use the Web interface with my messed up hands, NNTP is 10 times less painful for me, and if I could authorise via NNTP that would be excellent. Kevin ---...--- Craftsman Lego Kits (...) (23 years ago, 20-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
"Larry Pieniazek" <lpieniazek@mercator.com> skrev i meddelandet news:GF8s97.GDF@lugnet.com... (...) Might be a language issue, then. The first Swedish translation that came to mind was not *suggesting*, but quite a bit more imperatoresque (word?). (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Yeh, that's a problem with Germanic languages other than English--zullen/sollen/etc are modals that correspond to "should" yet "should" also has the meaning of kunnen/koennen/etc. But to make matters even cloudier, you *can* use "should" in (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
"Dan Boger" <dan@peeron.com> wrote in message news:20010620120544....ron.com... (...) there is (...) password. (...) but we (...) it (...) browsers? (...) So why not have the NNTP server check the id and password against the name and email address (...) (23 years ago, 21-Jun-01, to lugnet.general, lugnet.admin.nntp)
 
  Re: Email Authentication - Why not make it optional?
 
(...) I think the issue with a reply is that, unless something specific was required to entered into the mail, it is too easy to put replies on automatic pilot by automating the reply with a rule in your mail program. As soon as you do that, you (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Thanks for clarifying that. You're right. English has three common levels, here... "could" - meaning it's possible, no expression of preference, "should" - making a suggestion or expressing a preference "must" - the imperative in which you are (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) that would be a good option, if it was possible. From my (limited) understanding of NNTP servers, once they authorize you to post, they do not do any more checks. Being open-source, of course, means we could potentially modify the server to do (...) (23 years ago, 21-Jun-01, to lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
"Dan Boger" <dan@peeron.com> wrote in message news:20010621072509....ron.com... (...) makes (...) not (...) name (...) the (...) Todd must have already modified the server to handle checking the sender name and email address against those registered (...) (23 years ago, 21-Jun-01, to lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Another idea? It is much faster just to reply to the sent message. Many mailinglists use this system. Opening a page takes quite some time, while sending the mail can be done in just a few seconds. Sonnich Brad Hamilton <bhamilto1@home.com> wrote in (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Larry Pieniazek wrote in message . (...) browser (...) Excuse me for just suggesting this option in another mail. I don't agree. A very simple way is to make the header look like this: Message_id 54dfDF7_&2532))sdrt4325ds which still is readable (...) (23 years ago, 21-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
Daniel Crichton <danielc@helio.co.uk> wrote in message news:GF8M7o.L2y@lugnet.com... (...) more (...) there's (...) Lugnet (...) I would also really like this solution, even though I am NOT a paid up lugnet member. If everyone still had access via (...) (23 years ago, 22-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
(...) Which is still the really scary and unfortunate fact. KDJ ___...___ LUGNETer #203, Windsor, Ontario, Canada (23 years ago, 22-Jun-01, to lugnet.admin.nntp, lugnet.general)
 
  Re: Email Authentication - Why not make it optional?
 
I see this now works. Let me thank you Todd & Co. Work much easier. Sonnich Sonnich Jensen <sonnich@hot.ee> wrote in message news:GFAL9v.6qo@lugnet.com... (...) on (...) program. (...) generated (...) 2 (...) time (...) use. (...) (23 years ago, 23-Jun-01, to lugnet.admin.nntp, lugnet.general)

©2005 LUGNET. All rights reserved. - hosted by steinbruch.info GbR