Leonard Cooper <[EMAIL PROTECTED]> wrote:
> Got it! thanks!
> Kinda obvious....
> what are the implications of not running softlimit?
An attacker could connect to your qmail-smtpd daemon and feed it a 500MB
recipient address (as in RCPT TO: <fooooooooooooooooooooooooooooo...),
eventually sucking up available memory in the system, causing a denial
of service.
You could try using ulimit on your system instead of softlimit, I think.
Or figure out why softlimit doesn't work on your OS. djb might
appreciate a report on that.
Charles
--
-----------------------------------------------------------------------
Charles Cazabon <[EMAIL PROTECTED]>
GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/
-----------------------------------------------------------------------
