Dawn D. Pfaltzgraff plains.net
At 07:33 PM 3/3/2003 -0800, you wrote:
Send cobalt-security mailing list submissions to [EMAIL PROTECTED]
To subscribe or unsubscribe via the World Wide Web, visit http://list.cobalt.com/mailman/listinfo/cobalt-security or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED]
You can reach the person managing the list at [EMAIL PROTECTED]
When replying, please edit your Subject line so it is more specific than "Re: Contents of cobalt-security digest..."
Today's Topics:
1. Re: Remote Sendmail Header Processing Vulnerability (Rashid Abdullah)
2. Remote Sendmail Header Processing Vulnerability (Mail List)
3. RE: Remote Sendmail Header Processing Vulnerability (Goade, Matthew)
4. Remote Sendmail Header Processing Vulnerability (Mail List)
5. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
6. Remote Sendmail Header Processing Vulnerability (Mail List)
7. RE : [cobalt-security] Remote Sendmail Header Processing Vulnerab
ility (Philippe QUINSAC)
8. RE : [cobalt-security] Remote Sendmail Header Processing Vulnerability (Maximux Filter)
9. Re: RE : [cobalt-security] Remote Sendmail Header Processing Vulnerability (Bruce Timberlake)
10. Sendmail patch on PkgMaster.com (PkgMaster.com)
11. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
12. Re: Remote Sendmail Header Processing
Vulnerability (Brian Rahill)
13. RE: Sendmail patch on PkgMaster.com (Darryl Koster)
14. Re: Remote Sendmail Header Processing Vulnerability (Alex Busquets)
15. Re: Sendmail patch on PkgMaster.com (Gerald Waugh)
16. Re: Remote Sendmail Header Processing Vulnerability (Jeremy Towne)
17. Re: Remote Sendmail Header Processing Vulnerability (Rashid Abdullah)
18. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
--__--__--
Message: 1 From: "Rashid Abdullah" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Mon, 3 Mar 2003 10:12:17 -1000 Reply-To: [EMAIL PROTECTED]
Your're the Man Michael! Thanks for your continued service to the Cobalt community.
-Rashid
----- Original Message ----- From: "Michael Stauber" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, March 03, 2003 9:39 AM Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> > Remote Sendmail Header Processing Vulnerability > > http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 > > I just released a PKG file for the RaQ4 which contains a fixed Sendmail-8.10.2 > with the patch in place to fix the above mentioned vulnerability. That PKG is > available here: > > http://www.solarspeed.net/downloads/index.php > > I'm now working on a PKG for the RaQ550. I'm not yet sure if I want to do a > PKG for the RaQ3 and Qube3, though. > > -- > > With best regards, > > Michael Stauber > > _______________________________________________ > cobalt-security mailing list > [EMAIL PROTECTED] > http://list.cobalt.com/mailman/listinfo/cobalt-security >
--__--__--
Message: 2 Date: Mon, 03 Mar 2003 15:18:32 -0500 To: [EMAIL PROTECTED] From: Mail List <[EMAIL PROTECTED]> Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability Reply-To: [EMAIL PROTECTED]
I wonder why there's no info on Security Focus about this yet.. Even sendmail seems lax in their disclosure.. On their site they just says:
>Sendmail 8.12.8 is available; it contains a fix for a critical security >problem in header parsing discovered by Mark Dowd of ISS X-Force; we thank >ISS X-Force for bringing this problem to our attention. Sendmail urges all >users to either upgrade to sendmail 8.12.8 or apply a patch for 8.12.
No other docs on the issue...
On the other hand CERT sure is sending the message loud and clear.. <g>
Thanks Michael for the patch, I'm going to go grap that right now and toss it on the box..
--__--__--
Message: 3 Subject: RE: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Mon, 3 Mar 2003 14:27:49 -0600 From: "Goade, Matthew" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED]
Worked great on RaQ4r, thanks!
-----Original Message----- From: Michael Stauber [mailto:[EMAIL PROTECTED] Sent: Monday, March 03, 2003 1:39 PM To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> Remote Sendmail Header Processing Vulnerability > http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
I just released a PKG file for the RaQ4 which contains a fixed Sendmail-8.10.2
with the patch in place to fix the above mentioned vulnerability. That PKG is
available here:
http://www.solarspeed.net/downloads/index.php
I'm now working on a PKG for the RaQ550. I'm not yet sure if I want to do a PKG for the RaQ3 and Qube3, though.
--
With best regards,
Michael Stauber
_______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
--__--__--
Message: 4 Date: Mon, 03 Mar 2003 15:33:04 -0500 To: [EMAIL PROTECTED] From: Mail List <[EMAIL PROTECTED]> Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability Reply-To: [EMAIL PROTECTED]
Michael,
Just a quick question - Is it better to first disable the "Email Server" via the GUI prior to apply this patch..? Just wondering if it made a difference.. THANKS!
--__--__--
Message: 5 From: Michael Stauber <[EMAIL PROTECTED]> Organization: SOLARSPEED.NET To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Mon, 3 Mar 2003 21:40:06 +0100 Reply-To: [EMAIL PROTECTED]
> Just a quick question - Is it better to first disable the "Email Server" > via the GUI prior to apply this patch..? Just wondering if it made a > difference.. THANKS!
Doesn't make a difference. During the PKG installation sendmail will automatically be shutdown by the PKG installer. Afterwards it'll be restarted.
--
With best regards,
Michael Stauber
--__--__--
Message: 6 Date: Mon, 03 Mar 2003 15:57:32 -0500 To: [EMAIL PROTECTED] From: Mail List <[EMAIL PROTECTED]> Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability Reply-To: [EMAIL PROTECTED]
>> Just a quick question - Is it better to first disable the "Email Server" >> via the GUI prior to apply this patch..? Just wondering if it made a >> difference.. THANKS!
>Doesn't make a difference. During the PKG installation sendmail will >automatically be shutdown by the PKG installer. Afterwards it'll be >restarted.
Went in and worked like a champ on my RaQ3 (uhhh), I mean RaQ4..
Thanks again Michael!
--__--__--
Message: 7 From: Philippe QUINSAC <[EMAIL PROTECTED]> To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> Subject: RE : [cobalt-security] Remote Sendmail Header Processing Vulnerab ility Date: Mon, 3 Mar 2003 22:38:16 +0100 Reply-To: [EMAIL PROTECTED]
Done on my raq's. Works fine. "Comme d'habitude"
Thanks for all Michael.
> -----Message d'origine----- > De : Michael Stauber [mailto:[EMAIL PROTECTED] > Envoy� : lundi 3 mars 2003 21:40 > � : [EMAIL PROTECTED] > Objet : Re: [cobalt-security] Remote Sendmail Header > Processing Vulnerability > > > > Just a quick question - Is it better to first disable the "Email > > Server" via the GUI prior to apply this patch..? Just > wondering if it > > made a difference.. THANKS! > > Doesn't make a difference. During the PKG installation sendmail will > automatically be shutdown by the PKG installer. Afterwards it'll be > restarted. > > -- > > With best regards, > > Michael Stauber > > _______________________________________________ > cobalt-security mailing list > [EMAIL PROTECTED] > http://list.cobalt.com/mailman/listinfo/cobalt> -security >
--__--__--
Message: 8
Date: Mon, 3 Mar 2003 13:54:20 -0800 (PST)
From: Maximux Filter <[EMAIL PROTECTED]>
Subject: RE : [cobalt-security] Remote Sendmail Header Processing Vulnerability
To: [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
Great job and as always thanks for your excellent work, Michael -
Quick Question: Does this package need the use of gcc?
Thanks, Max
__________________________________________________ Do you Yahoo!? Yahoo! Tax Center - forms, calculators, tips, more http://taxes.yahoo.com/
--__--__--
Message: 9
From: Bruce Timberlake <[EMAIL PROTECTED]>
Organization: BRTNet.org
To: [EMAIL PROTECTED]
Subject: Re: RE : [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 14:03:43 -0800
Reply-To: [EMAIL PROTECTED]
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> Great job and as always thanks for your excellent > work, Michael
I second that!
> Quick Question: Does this package need the use of > gcc?
No, it's just installing a new RPM.
- -- Bruce Timberlake http://www.brtnet.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+Y9E/vLA2hUZ9kgwRAqLKAJwPzcoBCWGCRseCz2EWpktQGlHLBACdH1Um teyzaN4EM1aoIPcr+C4stOU= =oMBy -----END PGP SIGNATURE-----
--__--__--
Message: 10 From: "PkgMaster.com" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Date: Mon, 3 Mar 2003 23:46:54 +0100 Subject: [cobalt-security] Sendmail patch on PkgMaster.com Reply-To: [EMAIL PROTECTED]
Sorry, only for RaQ4 at the moment
--__--__--
Message: 11 From: Michael Stauber <[EMAIL PROTECTED]> Organization: SOLARSPEED.NET To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Tue, 4 Mar 2003 03:34:50 +0100 Reply-To: [EMAIL PROTECTED]
Hi all,
I just rolled up a RaQ3 and RaQ550 package as well:
http://www.solarspeed.net/downloads/index.php
Note: The RaQ3 package cannot be uninstalled.
Qube3 is next. Expect it in a couple of hours.
--
With best regards,
Michael Stauber
--__--__--
Message: 12 Date: Mon, 03 Mar 2003 21:43:22 -0500 To: [EMAIL PROTECTED] From: Brian Rahill <[EMAIL PROTECTED]> Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Reply-To: [EMAIL PROTECTED]
At 03:34 AM 3/4/2003 +0100, you wrote:
>I just rolled up a RaQ3 and RaQ550 package as well: > > http://www.solarspeed.net/downloads/index.phpj
Thanks Michael! Installed without a glitch on a 550.
Brian
--__--__--
Message: 13 From: "Darryl Koster" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: RE: [cobalt-security] Sendmail patch on PkgMaster.com Date: Mon, 3 Mar 2003 22:01:15 -0500 Reply-To: [EMAIL PROTECTED]
Damn,
I deleted that link for the download for the RaQ4, can you resend it.
Thanks
Darryl Koster ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Status Technologies Inc. President/Owner "Let Us Help You Get The Status You Deserve!" http://www.statustechnologies.com P: (905) 435-0145 TF (NA) 888-909-9004 F: (905) 435-0873
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of PkgMaster.com Sent: Monday, March 03, 2003 5:47 PM To: [EMAIL PROTECTED] Subject: [cobalt-security] Sendmail patch on PkgMaster.com
Sorry, only for RaQ4 at the moment
_______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
--__--__--
Message: 14 From: "Alex Busquets" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Tue, 4 Mar 2003 04:10:08 +0100 Reply-To: [EMAIL PROTECTED]
Thanks, I also have good install.
Atentament: Alexandre Busquets Triola [EMAIL PROTECTED] www.3v2.net 3v2.net - TRIPLEVEDOBLE - Serveis d'internet
----- Original Message ----- From: "Michael Stauber" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, March 04, 2003 3:34 AM Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> Hi all, > > I just rolled up a RaQ3 and RaQ550 package as well: > > http://www.solarspeed.net/downloads/index.php > > Note: The RaQ3 package cannot be uninstalled. > > Qube3 is next. Expect it in a couple of hours. > > -- > > With best regards, > > Michael Stauber > > _______________________________________________ > cobalt-security mailing list > [EMAIL PROTECTED] > http://list.cobalt.com/mailman/listinfo/cobalt-security >
--__--__--
Message: 15 From: Gerald Waugh <[EMAIL PROTECTED]> Organization: Front Street Networks LLC To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Sendmail patch on PkgMaster.com Date: Mon, 3 Mar 2003 22:14:15 -0500 Reply-To: [EMAIL PROTECTED]
On Monday 03 March 2003 22:01, Darryl Koster wrote: > Damn, > > I deleted that link for the download for the RaQ4, can you resend it. > > Thanks >
http://pkgmaster.com/i386/RaQ4-Sendmail-8.10.2-PM1.pkg
Gerald -- http://frontstreetnetworks.com | http://store.raqware.com Front Street Networks LLC | Phone: 203-785-0699 229 Front Street, Ste #C, New Haven, CT 06513-3203
--__--__--
Message: 16 From: "Jeremy Towne" <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Mon, 3 Mar 2003 23:21:18 -0400 Reply-To: [EMAIL PROTECTED]
If you get this than the Raq3 install was a good one for me too.
Jeremy Towne
Contact Turtlehut.com for all of your webhosting needs.
---------- Original Message ----------- From: "Alex Busquets" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tue, 4 Mar 2003 04:10:08 +0100 Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> Thanks, I also have good install. > > Atentament: > Alexandre Busquets Triola > [EMAIL PROTECTED] > www.3v2.net > 3v2.net - TRIPLEVEDOBLE - Serveis d'internet > > ----- Original Message ----- > From: "Michael Stauber" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, March 04, 2003 3:34 AM > Subject: Re: [cobalt-security] Remote Sendmail Header Processing > Vulnerability > > > Hi all, > > > > I just rolled up a RaQ3 and RaQ550 package as well: > > > > http://www.solarspeed.net/downloads/index.php > > > > Note: The RaQ3 package cannot be uninstalled. > > > > Qube3 is next. Expect it in a couple of hours. > > > > -- > > > > With best regards, > > > > Michael Stauber > > > > _______________________________________________ > > cobalt-security mailing list > > [EMAIL PROTECTED] > > http://list.cobalt.com/mailman/listinfo/cobalt-security > > > > _______________________________________________ > cobalt-security mailing list > [EMAIL PROTECTED] > http://list.cobalt.com/mailman/listinfo/cobalt-security ------- End of Original Message -------
--__--__--
Message: 17 From: "Rashid Abdullah" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Mon, 3 Mar 2003 17:22:55 -1000 Reply-To: [EMAIL PROTECTED]
Michael,
I got an error installing.
-Rashid
----- Original Message ----- From: "Michael Stauber" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Monday, March 03, 2003 4:34 PM Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> Hi all, > > I just rolled up a RaQ3 and RaQ550 package as well: > > http://www.solarspeed.net/downloads/index.php > > Note: The RaQ3 package cannot be uninstalled. > > Qube3 is next. Expect it in a couple of hours. > > -- > > With best regards, > > Michael Stauber > > _______________________________________________ > cobalt-security mailing list > [EMAIL PROTECTED] > http://list.cobalt.com/mailman/listinfo/cobalt-security >
--__--__--
Message: 18 From: Michael Stauber <[EMAIL PROTECTED]> Organization: SOLARSPEED.NET To: [EMAIL PROTECTED] Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability Date: Tue, 4 Mar 2003 04:32:11 +0100 Reply-To: [EMAIL PROTECTED]
Hi Rashid,
> I got an error installing.
The RaQ3 package? If it is a RaQ3, then do you have the "OS update 5.0" installed, too? If not, then that's most likely the problem.
--
With best regards,
Michael Stauber
--__--__--
_______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
End of cobalt-security Digest
_______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
