I've found a security hole in my antivirus-qmail-queue perl script :-(
It was calling qmail-inject when reporting viruses with the SMTP-generated
Return-Path on the command-line :-}
Anyway, all fixed now - a completely unnecessary/weenie hole...
So could all users of Scan4Virus upgrade ASAP to 0.16. Get it from:
http://www.geocities.com/jhaar/scan4virus/
Also there's now a mailing-list to discuss this - subscribe via Email to:
[EMAIL PROTECTED]
BLURB
Scan4Virus is a qmail-based antivirus perl wrapper which works in
conjunction with Unix-based virus scanners such as McAfee's, Trend's and
Sophos. It will scan all Email arriving via SMTP for viruses and will
quarantine those containing viruses. Use on Internet gateways to protect the
Internet from your users ;-)
--
Cheers
Jason Haar
Unix/Network Specialist, Trimble NZ
Phone: +64 3 3391 377 Fax: +64 3 3391 417
