Re: [Exim] Minor security problem in both Exim 3 and 4

Páxina inicial
Esta mensaxe é parte do seguinte fío:
MÁrbore completa do fío ordenada por data
MJohn Horne o <-
M 
Borrar esta mensaxe
Responder a esta mensaxe
Autor: Philip Hazel
Data:  
Para: John Horne
CC: exim-users
Asunto: Re: [Exim] Minor security problem in both Exim 3 and 4
On Wed, 4 Dec 2002, John Horne wrote:

> Could this problem also exist if pid_file_path is set (with %s) in the
> Makefile used to build exim (although the option itself may not be specified
> in the configure file)? If so, then perhaps the exploit could exist without
> the need to change the configure file or restart exim?

Yes, but then the builder of Exim would have been the person trying to
break it, because you have to specify a "nasty" string in order to make
the exploit work. 

--
Philip Hazel            University of Cambridge Computing Service,
ph10@???      Cambridge, England. Phone: +44 1223 334714.




Esta mensaxe foi enviada ás seguintes listas:
Exim-users
Información da lista | Mensaxes recentes		<-Re: [Exim] FW: relaying : missing something.Re: [Exim] lowercased email-addresses generated by filters->
Tahini and Hummus and Cumin Development Archives administrado por cumin AdminsLurker (versión 2.3)