On Fri, 27 Jun 2003, Admin wrote: > At 02:28 PM 6/27/2003 +0100, you wrote: > > >Recently I have started to get this log report > > > >sendmail: Truncated MIME Content-Disposition header due to field size > >(possible > >attack) > > > >Is this something that I can prevent and stop? I'm running fully patched raq3 > >and raq4r and message appears in both logfiles. > > It is the SoBig.E virus being sent to user's mailboxes.
actually, this sort of log entry would occur every time someone sends you something that has MIME headers longer than specified in MaxMimeHeaderLength, whether it's an actual attack, virus or entirely accidental. rgds, netcat _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
