Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

FreeBSD-SA-01:57 sendmail security advisory

0 views
Skip to first unread message

Dinko Korunic

unread,
Aug 27, 2001, 7:18:41 PM8/27/01
to

Topic: sendmail contains local root vulnerability

Category: core
Module: sendmail
Announced: 2001-08-27
Credits: Cade Cairnss <cai...@securityfocus.com>
Affects: FreeBSD 4-STABLE after August 27, 2000 and prior to
the correction date, FreeBSD 4.1.1-RELEASE,
4.2-RELEASE, 4.3-RELEASE

Vise o tome na adresi:

ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/\
FreeBSD-SA-01%3a57.sendmail.asc

PS, tko li je ono tvrdio da je Sendmail bolji i sigurniji i da nema rupa,
a da je i bolji od qmaila? M.Z., pojedi se :-) *joke*

--
Dinko Korunic - kreator
"Different all twisty a of in maze are you, passages little."
B9 2A EA 3E 7B F3 97 A1 17 EF 32 8C 07 07 45 07 3F 88 E5 79

Miroslav Zubcic

unread,
Sep 7, 2001, 4:38:51 AM9/7/01
to
kre...@fly.srk.fer.hr (Dinko Korunic) writes:

> Topic: sendmail contains local root vulnerability

[...]

> Vise o tome na adresi:
>
> ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/\
> FreeBSD-SA-01%3a57.sendmail.asc

ls -l /usr/sbin/sendmail
-r-xr-sr-x 1 root smmsp 732k Jul 28 13:48 /usr/sbin/sendmail

Version 8.12.0.Beta16
Compiled with: DNSMAP HESIOD LDAPMAP LOG MAP_REGEX MATCHGECOS MILTER
MIME7TO8 MIME8TO7 NAMED_BIND NETINET NETINET6 NETUNIX NEWDB NIS
NISPLUS PIPELINING SASL SCANF SMTPDEBUG STARTTLS TCPWRAPPERS
USERDB XDEBUG

No svejedno ću sada pomilovati gcc-om Beta19 ...

Osim toga to vrijedi za stare debug flagove u trace.c. Nije nekakva
velika frka.

> PS, tko li je ono tvrdio da je Sendmail bolji i sigurniji i da nema rupa,
> a da je i bolji od qmaila? M.Z., pojedi se :-) *joke*

Njam njam ... :-)

--
As in certain cults it is possible to kill a process if you know its true name.
-- Ken Thompson and Dennis M. Ritchie

0 new messages