Summary: INN 1.5.1 and PGP

From: Rasana Atreya (atreya@library.ucsf.edu)
Date: Mon May 19 1997 - 17:06:41 CDT


My original post:

> As suggested, I upgraded to INN-1.5.1 with security patch-05 and PGP. I have a
> few questions though.
>
> How does one decide about who can be trusted with control messages? When I look
> at the control.ctl file, I see for example:
>
> # *PGP* See comment at top of file.
> newgroup:control@usenet.fr.net:fr.*:verify-fr.announce.newgroups
> rmgroup:control@usenet.fr.net:fr.*:verify-fr.announce.newgroups
>
> Are people trusting the names listed in this file? If I decide to not trust
> them,
> 1. What happens if genuine control messages get ignored?
> 2. Can I trust only some people and not the rest? Does that mean that I comment
> out the lines directly below "# *PGP* See comment at top of file." for the
> people I do not trust?
>

Thanks to:
Peter Marelas <maral@phase-one.com.au>
Joe St Sauver <joe@decoy.uoregon.edu>

Rasana

---------------------------------------------------------------------------
From: Peter Marelas <maral@phase-one.com.au>

The distribution comes with a README.pgp. It explains all you need to know
and includes PGP keys for trusted sites.

Regards
Peter Marelas
---------------------------------------------------------------------------
From: Joe St Sauver <joe@decoy.uoregon.edu>

In article <199704171757.KAA28717@library.ucsf.edu> you write:
>How does one decide about who can be trusted with control messages? When I look
>at the control.ctl file, I see for example:
>
># *PGP* See comment at top of file.
>newgroup:control@usenet.fr.net:fr.*:verify-fr.announce.newgroups
>rmgroup:control@usenet.fr.net:fr.*:verify-fr.announce.newgroups
>
>Are people trusting the names listed in this file? If I decide to not trust
>them,
>1. What happens if genuine control messages get ignored?

You don't create real groups, and you reject messages for that group;
conversely, you may not remove bogus groups, and then you perpetuate
bogus groups and confuse people unless you clean them up manually.

control.ctl determines what happens to control messages that arrive at your
news server -- do they get automatically processed? do they get discarded
based on who sent them? do they get logged? do they... etc.
>2. Can I trust only some people and not the rest?

Sure. What we do is manually screen ALL control messages, after first filtering
out bozonic control message issuers.

Regards,

Joe

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~ Rasana Atreya Voice: (415) 476-3623 ~
~ System Administrator Fax: (415) 476-4653 ~
~ Library & Ctr for Knowledge Mgmt, Univ. of California at San Francisco ~
~ 530 Parnassus Ave, Box 0840, San Francisco, CA 94143-0840 ~
~ atreya@library.ucsf.edu ~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:11:55 CDT