Sendmail vulnerability found
John Seth
johnseth at phoenixwing.com
Wed Mar 12 09:02:17 EST 2003
It affects anyone that runs sendmail as their mail server (MTA). The
alert was made about a week or two ago I think, but you can grab the
latest sendmail at their site:
http://www.sendmail.org/
Some linux distro's such as RedHat, send out notices of security issues if
their customers are part of Errata mailing lists and such. RedHat's "Red
Hat Network" which utilizes their "up2date" program, will allow users to
automatically download fixes, patches, and new software due to bugs and
security issues.
- Tony
--
You say you are lying. But if everything you say is a lie, then you are
telling the truth. You cannot tell the truth because everything you say
is a lie. You lie, you tell the truth ... but you cannot, for you lie.
-- Norman the android, "I, Mudd", stardate 4513.3
--
On Tue, 11 Mar 2003, Joe wrote:
> I don't know if this affects Linux systems, but it sounds like it might.
> Sorry I don't have a technical reference for it, but it sounded important
> enough to pass along.
>
> It seems someone has found a generic sendmail vulnerability and I believe
> that system is used on a lot of Linux servers.
>
> http://www.newscientist.com/news/print.jsp?id=ns99993456
>
> Joe
>
More information about the nflug
mailing list