On Fri, Aug 17, 2001 at 02:40:17PM -0400, [EMAIL PROTECTED] wrote:
[snip]
> The first is Q-Mail Length Crash, ID: 3109 - Description: This signature
> triggers when an attempt is made to pass an overly long command string to a
> mail server.
> The second is Qmail Command Length Crash, ID: 1421 - Description: If a
> remote attacker passes an overly long command string or list of recipients,
> the qmail server will crash due to utilization of all memory resources.
Indeed, neither of these are a problem when ulimit or softlimit is
correcly applied.
Greetz, Peter
--
Against Free Sex! http://www.dataloss.nl/Megahard_en.html
