This Attack Surface [1] is what I'm talking about. What layers of security are those?
[1] <http://www.cs.cmu.edu/~pratyus/as.html> -- Ed <http://blog.eonsec.com/> On Feb 9, 2008 11:00 PM, thad <[EMAIL PROTECTED]> wrote: > And you think its its exposed to the surfaced? The are layers of > security before you could touch the sendmail skin in a legacy or even > in new UNIX build system. And just like what I said earlier on other > thread the mail gateway will definitely not sendmail. > > > On Feb 9, 2008 1:08 AM, Eduardo Tongson <[EMAIL PROTECTED]> wrote: > > I am talking about reducing the attack surface not some compliance fix > > like encryption. Those fixes will not help you with the usual Sendmail > > errata. > > > > Ed <http://blog.eonsec.com/> > > > > On Feb 9, 2008 9:55 AM, thad <[EMAIL PROTECTED]> wrote: > > > PCI compliance recommends a lot of fixes for sendmail but it never > > > recommend to replace it. The whole world finance industry is running > > > on sendmail one way or another. > > > > > > > > _________________________________________________ > > Philippine Linux Users' Group (PLUG) Mailing List > > [email protected] (#PLUG @ irc.free.net.ph) > > Read the Guidelines: http://linux.org.ph/lists > > Searchable Archives: http://archives.free.net.ph > > > > > > -- > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > sometimes truth is stranger than fiction > -bad religion- > http://www.bloglines.com/blog/mailist > ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ > I don't think the computers will take over the world. I have a bucket of > water. > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph > _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
