On Sun, 30 Mar 2003, Ian C. Sison wrote: > I guess this puts all the MTA 'flame wars' to rest. At the very least > this issue causes a DoS. It won't be too long when an actual worm will > exploit this to the hilt. All those who still have sendmail running > should do themselves a favor, get rid of sendmail now and move to postfix > or qmail.
I won't answer this one. This has been discussed twice already. While we are at it, let's ditch apache too and run zeus instead. Take a look at securityfocus.com why. > Those running firewalls and think they are protected by them should think > again. Most firewalls allow port 25 (used by sendmail/SMTP) to pass > through unrestricted. Wrong. I'll give you in to a little secret. Some companies have already the modules/updates to their firewalls/ids for sendmail vulnerability CA-2003-07 *weeks* before you even saw the info from CERT. regards, --- Andre M. Varon, SCSA http://andre.lasaltech.com _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
