Re: [Exim] exim as relay for latest sendmail bug?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Suresh Ramasubramanian
Datum:  
To: Marc Haber, exim-users
Betreff: Re: [Exim] exim as relay for latest sendmail bug?
At 09:31 PM 3/3/2003 +0100, Marc Haber wrote:
>the latest sendmail bug can be exploited by sending a message to a
>vulnerable system. Using exim as an application level gateway doesn't
>help here, since exim will happily relay the message containing the
>exploit to a vulnerable internal system.
>
>Has anybody out here done an analysis of the sendmail bug? Is it
>possible to configure exim to not relay an exploiting message, but
>instead rejecting it? I would be very interested in solutions for both
>exim 3 and exim 4.


An exim filter should do the trick for you.

I recall that the sendmail bug exploits over-long comment headers? So
8.12.8 (or backported patches to earlier versions) drop mail with comment
headers that are "too long"

Exim might filter out and do the same I guess.

         suresh