On Thu, Aug 01, 2019 at 10:02:21PM +0200, Sebastian Benoit wrote: > [email protected]([email protected]) on 2019.08.01 14:41:16 -0400: > > >Synopsis: OpenSMTPD 6.5.0 smtpd crashes during Nessus vulnerability scan > > >Category: system > > >Environment: > > System : OpenBSD 6.5 > > Details : OpenBSD 6.5 (GENERIC.MP) #2: Tue Jul 23 23:38:56 CEST 2019 > > > > [email protected]:/usr/src/sys/arch/amd64/compile/GENERIC.MP > > > > Architecture: OpenBSD.amd64 > > Machine : amd64 > > >Description: > > Running a Nessus host scan against smtpd causes smtpd to terminate. > > The last messages in maillog are: > > "pony express: smtp_reply: line too long" and "smtpd: process pony > > socket closed". At this point all > > of the smtpd daemons, parent and children, are stopped. > > > > Configuration and logs below. > > >How-To-Repeat: > > Start smtpd. Run Nessus scan against the host. > > >Fix: > > Restarting the daemon is the only work around I know of. > > Can you include the log output from Nessus, the last one from that scan? >
actually I spotted the issue right away from his log, preparing the fix and testing it before I prepare the errata -- Gilles Chehade @poolpOrg https://www.poolp.org patreon: https://www.patreon.com/gilles
