Re: Sendmail
From: Hajimu UMEMOTO (ume@mahoroba.org)
Date: 08/30/01
- Next message: Kris Kennaway: "Re: FreeBSD Security Advisory FreeBSD-SA-01:58.lpd"
- Previous message: Christopher Schulte: "Re: Sendmail"
- In reply to: Mike Tancsa: "Re: Sendmail"
- Next in thread: Ronan Lucio: "Re: Sendmail"
- Reply: Ronan Lucio: "Re: Sendmail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 31 Aug 2001 05:04:49 +0900 (JST) To: mike@sentex.net From: Hajimu UMEMOTO <ume@mahoroba.org>
>>>>> On Thu, 30 Aug 2001 15:43:17 -0400
>>>>> Mike Tancsa <mike@sentex.net> said:
mike> Probably not.. But, you never know. Someone could devise some clever way
mike> for some other process to exploit the bug.
sendmail 8.11.15 had local-exploit. If you use old version of
sendmail, you must upgrade to 8.11.16. Don't forget to drop setuid
bit of old sendmail binary or remove it.
mike> At 04:42 PM 8/30/01 -0300, Ronan Lucio wrote:
>Hi all,
>
>If I have a machine that any user has shell access. Itīs just a mail server.
>Is such machine vulnerable for sendmail?
-- Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan ume@mahoroba.org ume@bisd.hitachi.co.jp ume@{,jp.}FreeBSD.org http://www.imasy.org/~ume/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
- Next message: Kris Kennaway: "Re: FreeBSD Security Advisory FreeBSD-SA-01:58.lpd"
- Previous message: Christopher Schulte: "Re: Sendmail"
- In reply to: Mike Tancsa: "Re: Sendmail"
- Next in thread: Ronan Lucio: "Re: Sendmail"
- Reply: Ronan Lucio: "Re: Sendmail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
