"Sean C Truman" <[EMAIL PROTECTED]> writes:
> - "Jeremy Suo-Anttila" <[EMAIL PROTECTED]>
> > the only exploits i could find about qmail is the one that djb wrote
> > himself. Can you tell me what string you used for the search or post the
> url
> >
> > thanks
> >
> > Jps
>
> Below are the only two DOS related to qmail that I could find on
> Securityfocus.com.
>
> Sean
>
> http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%
> 3D1%26mid%3D6969
> http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%
> 3D1%26mid%3D6968
Note that Dan doesn't consider those to be qmail bugs. He considers
the proper fix to be using softlimit, which is easy to do when running
qmail under tcpserver. If you install according to Life with qmail,
you will not be vulnerable to these attacks.
Ian
