[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: sendmail header buffer overflow vulnerability, and what ZMailercan do..

To: zmailer@nic.funet.fi
Subject: Re: sendmail header buffer overflow vulnerability, and what ZMailercan do..
From: "Daryle A. Tilroe" <daryle@micralyne.com>
Date: Wed, 05 Mar 2003 08:42:14 -0700
Organization: Micralyne
Original-Recipient: rfc822;zmailer-log@nic.funet.fi
References: <20030305145726.P13675@nic.funet.fi> <20030305152843.Q13675@nic.funet.fi>
Reply-To: daryle@micralyne.com
Sender: zmailer-owner@nic.funet.fi
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01

Clarification here please:

Adding the -W flag simply prevents zmailer from forwarding
harmful headers (it rewrites them) to vulnerable sendmail
MTAs.  Correct?

More importantly; no such bug exists in zmailer.  Correct?

In other words is adding -W to prevent attacks on sendmail
MTAs from coming from or through a zmailer MTA?

-- 
Daryle A. Tilroe

-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi

Follow-Ups:
- Re: sendmail header buffer overflow vulnerability, and what ZMailer can do..
  - From: Matti Aarnio <mea@nic.funet.fi> (Wed, 5 Mar 2003 17:56:58 +0200)

References:
- sendmail header buffer overflow vulnerability, and what ZMailer can do..
  - From: Matti Aarnio <mea@nic.funet.fi>
- Re: sendmail header buffer overflow vulnerability, and what ZMailer can do..
  - From: Matti Aarnio <mea@nic.funet.fi>

Prev by Date: Re: Zmailer CVS: LockDir=/var/lock/cvs in the config?
Next by Date: Re: sendmail header buffer overflow vulnerability, and what ZMailer can do..
Prev by thread: Re: sendmail header buffer overflow vulnerability, and what ZMailer can do..
Next by thread: Re: sendmail header buffer overflow vulnerability, and what ZMailer can do..
Index(es):
- Date
- Thread