On Tue, Aug 21, 2001 at 01:30:57PM -0700, Jacob Meuser wrote: > >For those running sendmail, update to 8.11.6 ... > >A security hole exists in sendmail(8) that may allow an attacker on the >local host to gain root privileges by specifying out-of-bounds debug >parameters. > > Is there a BUGTRAQ posting or something i can wave at my fellow efn admins? (not that any non-efn-employee has a shell on our mailserver...) -- "If my son wants to be a pimp when he grows up, that's fine with me. I hope he's a good one and enjoys it and doesn't get caught. I'll support him in this. But if he wants to be a network administrator, he's out of the house and not part of my family." Steve Wozniak, http://www.woz.org
