Bugtraq mailing list archives

Re: Sendmail 8.6.9

From: perry () imsi com (Perry E. Metzger)
Date: Tue, 14 Feb 1995 16:03:43 -0500


Nathan Lawson says:

I have heard some random comments about there being a hole in 8.6.9.  What
work is being done to find this and patch it?  The only recommendation I have
received is that people use IDA Sendmail.  Anyone have any more information?


There are massive holes in IDA that are fixed by 8.6.9; anyone telling
you the reverse is tugging very hard on your lower appendages. Of
course, new security bugs in sendmail are inevitable, but I expect
Eric A. will fix them rapidly as they appear now that he's back in the
maintainance business.

.pm

Current thread:

Re: Vulnerability in NCSA HTTPD 1.3, (continued)
- Re: Vulnerability in NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 13)
  - Re: Vulnerability in NCSA HTTPD 1.3 Christopher Davis (Feb 14)
    - Re: Vulnerability in NCSA HTTPD 1.3 Robert M. Haas (Feb 14)
    - Re: Vulnerability in NCSA HTTPD 1.3 Christopher Davis (Feb 16)
  - Fixing the NCSA HTTPD 1.3 Thomas Lopatic (Feb 14)
    - Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
    - Re: Fixing the NCSA HTTPD 1.3 Rens Troost (Feb 15)
    - Re: Fixing the NCSA HTTPD 1.3 Paul 'Shag' Walmsley (Feb 15)
    - For NCSA Http_1.05a Everett F Batey WA6CRE (Feb 15)
  - Sendmail 8.6.9 Nathan Lawson (Feb 14)
    - Re: Sendmail 8.6.9 Perry E. Metzger (Feb 14)
    - Re: Sendmail 8.6.9 Tom Fitzgerald (Feb 14)
    - Re: Sendmail 8.6.9 Perry E. Metzger (Feb 15)
  - Re: Vulnerability in NCSA HTTPD 1.3 Thomas Roessler (Feb 14)
  - Re: Vulnerability in NCSA HTTPD 1.3 Hannu Martikka (Feb 14)
- Re: Vulnerability in NCSA HTTPD 1.3 Edy (Feb 14)