Installed this plugin the other day and all’s going well, except it allows you to subscribe over and over again using the same e-mail, and sends out the welcome e-mail each time.
This seems…bad. Like, really exploitable. We’re using the plugin to send out monthly newsletters for an upcoming indie game that’s getting a pretty fair amount of attention, so the idea that someone could use an exploit like that to screw with our site isn’t too far-fetched.
Actually it’s not an exploit, but I understand the problem. That behavior should be disabled even if it’s useful for people who uses the welcome email to deliver premium content. Sometime users delete that email and need to re-subscribe to get it.