Re: Help with hijacked sendmail
From: David Ford (dford@erisksecurity.com)Date: 09/27/01
- Previous message: Trevor Benson: "FW: iptables anti-nimda anyone?"
- Maybe in reply to: Dan Abend: "Help with hijacked sendmail"
- Next in thread: Mogens Valentin: "Re: Help with hijacked sendmail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <3BB258F6.1070508@erisksecurity.com> Date: Wed, 26 Sep 2001 18:38:46 -0400 From: David Ford <dford@erisksecurity.com> To: focus-linux@securityfocus.com Subject: Re: Help with hijacked sendmail
Mogens Valentin wrote:
>Thiago Conde Figueiro wrote:
>
>>Why not stop using sendmail altogether? Sendmail has a long, sad history
>>of exploits. Ever after I found out about Postfix (a secure replacement
>>for sendmail) my worries with smtp have dropped to almost zero.
>>
>Sure, but all it takes to make sendmail resonably secure is update to
>latest version and do somthing like:
>
Sendmail has had a very good recent reputation and out of the box
sendmail is a trusted MTA. Look carefully at the recent sendmail
advisories.
The moral of the story here isn't whether you're running postfix, exim,
qmail or sendmail. It's whether you're using an updated product.
Bugs are found and fixed. New methods of attack are discovered and more
bugs are found and fixed. Whether it is a denial of service or exploit,
it is still a problem and must be addressed.
The proper answer irrespective of the package in question is to keep
things updated.
David
- Previous message: Trevor Benson: "FW: iptables anti-nimda anyone?"
- Maybe in reply to: Dan Abend: "Help with hijacked sendmail"
- Next in thread: Mogens Valentin: "Re: Help with hijacked sendmail"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
