mailgun 错误“:”暴露帐户凭据
mailgun Error":"exposed account credentials
我正在尝试验证电子邮件,但是当我按照 mailgun 文档进行操作并获得如下代码时
https://documentation.mailgun.com/en/latest/user_manual.html#email-validation
EMAILPUBLICVALIDATIONKEY = 'my sexy key'
def validateemail(emailaddress):
return requests.get(
"https://api.mailgun.net/v3/address/validate",
auth=("api", EMAILPUBLICVALIDATIONKEY ),
params={'address': emailaddress}
)
我收到回复
["{"Error":"exposed account credentials"}"]0: "{"Error":"exposed account credentials"}"length: 1__proto__: Array(0)
我以前在 MailGun 中实际上没有遇到过这个错误。但我假设 exposed account credentials 意味着你的 API 密钥暴露了,他们停用了它以试图保护你。
有点不相关,但 GitHub 最近发布了一项功能,他们将扫描提交中的 API 密钥和令牌,并通知公司它已暴露。看起来这个 MailGun 发布时并不在该列表中,但也有一个很小的机会,因为它处于测试阶段,该列表尚未更新。 https://help.github.com/articles/about-token-scanning/
这很可能是由于暴露了 Github 上的 Mailgun API 密钥。我在文件中有 API 键并将其注释掉但仍然被标记。如果您在 Mailgun 上提交工单,将按照以下说明发送回复:
Due to the compromise, you will need to take a few steps to secure your Mailgun account:
- Remove the repository from Github or making the repository private. A new commit will not overwrite the previous commit history which contains the password.
- Please log in to the Mailgun Control Panel and reset your Mailgun account password. Click your email address in the top right, "Edit Account Info" -> "Password Change" section.
- Enable 2 Factor Authentication. Click your email address in the top right > Security > Two-Factor Authentication section.
- Reset your Mailgun API key. Under "Account Settings" -> "Security" click the refresh symbol to generate a new API key.
- Reset your SMTP credentials. Go to the "Domains" tab and repeat the following process for each domain listed in this view.
I don't THINK Mailgun was on that list. But they could have been added.
现已正式发布(2019 年 5 月 23 日):“Token scanning”
Token scanning is now generally available in all public repositories.
Additionally, token scanning now supports detection of new token types from Alibaba Cloud, Mailgun, and Twilio.
完整列表在“About token scanning”。
在“Token scanning”查看更多信息。
您需要转到您的 Mailgun 帐户,横幅会显示您的帐户已被暂停,然后您必须联系支持人员才能解锁它
我正在尝试验证电子邮件,但是当我按照 mailgun 文档进行操作并获得如下代码时
https://documentation.mailgun.com/en/latest/user_manual.html#email-validation
EMAILPUBLICVALIDATIONKEY = 'my sexy key'
def validateemail(emailaddress):
return requests.get(
"https://api.mailgun.net/v3/address/validate",
auth=("api", EMAILPUBLICVALIDATIONKEY ),
params={'address': emailaddress}
)
我收到回复
["{"Error":"exposed account credentials"}"]0: "{"Error":"exposed account credentials"}"length: 1__proto__: Array(0)
我以前在 MailGun 中实际上没有遇到过这个错误。但我假设 exposed account credentials 意味着你的 API 密钥暴露了,他们停用了它以试图保护你。
有点不相关,但 GitHub 最近发布了一项功能,他们将扫描提交中的 API 密钥和令牌,并通知公司它已暴露。看起来这个 MailGun 发布时并不在该列表中,但也有一个很小的机会,因为它处于测试阶段,该列表尚未更新。 https://help.github.com/articles/about-token-scanning/
这很可能是由于暴露了 Github 上的 Mailgun API 密钥。我在文件中有 API 键并将其注释掉但仍然被标记。如果您在 Mailgun 上提交工单,将按照以下说明发送回复:
Due to the compromise, you will need to take a few steps to secure your Mailgun account:
- Remove the repository from Github or making the repository private. A new commit will not overwrite the previous commit history which contains the password.
- Please log in to the Mailgun Control Panel and reset your Mailgun account password. Click your email address in the top right, "Edit Account Info" -> "Password Change" section.
- Enable 2 Factor Authentication. Click your email address in the top right > Security > Two-Factor Authentication section.
- Reset your Mailgun API key. Under "Account Settings" -> "Security" click the refresh symbol to generate a new API key.
- Reset your SMTP credentials. Go to the "Domains" tab and repeat the following process for each domain listed in this view.
I don't THINK Mailgun was on that list. But they could have been added.
现已正式发布(2019 年 5 月 23 日):“Token scanning”
Token scanning is now generally available in all public repositories.
Additionally, token scanning now supports detection of new token types from Alibaba Cloud, Mailgun, and Twilio.
完整列表在“About token scanning”。
在“Token scanning”查看更多信息。
您需要转到您的 Mailgun 帐户,横幅会显示您的帐户已被暂停,然后您必须联系支持人员才能解锁它