On Tue, 15 Aug 2000 00:26:41 -0700, Or Botton wrote:
> >Sniped alot of repetitive CC<
Oops! Sorry! I just realized how big it was after it
got sent x( I'll be careful next time.
> Isnt the CC being handled by the server itself? If there
> is one thing that the mailer can do to prevent this, is
> to cut repeating CC from the TBS file before sending. Not
> so sure if that would be a good thing, though..
No, the 'To:', CC and BCC are all handled by the mailer.
All of them translated to 'RCPT TO' when sending.
See RFC 821:
http://info.internet.isi.edu/in-notes/rfc/files/rfc0821.txt
> The best thing your friend should do is report this exploit
That was from a report, which posted to our national sys admin
mailing list. The victim didn't bother to wait for remedy,
what he did was just delete his account and create a new one.
> to his ISP, so they will add a code patch that will check
> and prevent this in the future.
Qmail is open source, so that could be done. But AFAIK this
is rather uncommon. Most MTA assuming that the client is
responsible for the pruning. The *mailer* should always
check for duplicates, not the other way around.
--Eko
http://survpc.virtualave.net/
