Re: small secure POP3 servers?
From: Ashok Aiyar (aiyar@ebv.mimnet.northwestern.edu)Date: 12/30/01
- Next message: Juergen P. Meier: "Re: secure MTA"
- Previous message: svek: "Re: a good start to do hardening"
- In reply to: Jose Nazario: "Re: small secure POP3 servers?"
- Next in thread: Rob MacGregor: "Re: small secure POP3 servers?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Ashok Aiyar <aiyar@ebv.mimnet.northwestern.edu> Date: 30 Dec 2001 14:06:22 GMT
On Sun, 30 Dec 2001 05:07:18 -0500,
Jose Nazario (jose@cwru.edu) wrote:
> http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=qpopper
>From that page -- the last confirmed buffer overflow was in 1999 - and
that is with obsolete versions of qpopper. The last candidate overflow
is also close to 2 years old, and in an obsolete version of qpopper.
>i'm still not entirely confident
> in the product as it currently stands (3.x),
And that's not where the product currently stands -- or has stood
for quite some time. The current release is 4.0.3.
In general it would behoove all of us to make our comments version(s)
specific. A failure to do so spreads FUD.
Later,
Ashok
-- Ashok Aiyar RLU #51601
- Next message: Juergen P. Meier: "Re: secure MTA"
- Previous message: svek: "Re: a good start to do hardening"
- In reply to: Jose Nazario: "Re: small secure POP3 servers?"
- Next in thread: Rob MacGregor: "Re: small secure POP3 servers?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
