Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail


Hello!

On Fri, 24 Mar 2006, Ruslan Ermilov wrote:
This doesn't change sendmail's identification string - it's still "8.13.1"
on RELENG_4_11, which makes detection of unpatched systems more difficult
to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in
---^^^^^^^^^^^

I meant just this - to sysadmin, not to attackers.

version.c?

It depends on what you think about whether it's good or not
that it's undetectable. I prefer it to be not-detectable.

So do I - that's why I removed version info from my settings for confSMTP_LOGIN_MSG long time ago ;)


Sincerely, Dmitry
--
Atlantis ISP, System Administrator
e-mail: dmitry@xxxxxxxxxxxxxx
nic-hdl: LYNX-RIPE
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"

Relevant Pages

  • Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail
    ... which makes detection of unpatched systems more difficult ... to sysadmin. ... Wouldn't be wise to add, say, "-p1" to this string in ...
    (FreeBSD-Security)
  • Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail
    ... which makes detection of unpatched systems more difficult ... to sysadmin. ... Wouldn't be wise to add, say, "-p1" to this string in version.c? ...
    (FreeBSD-Security)
  • Re: [sol9] quota question
    ... Words to the wise, njh@physiol.ox.ac.uk (Neil Hoggarth) wrote: ... The sysadmin would appear to have set for you a ... cannot access the other home dirs, and I better am not able to, they ...
    (comp.sys.sun.admin)