At 09:31 PM 3/3/2003 +0100, Marc Haber wrote:
>the latest sendmail bug can be exploited by sending a message to a
>vulnerable system. Using exim as an application level gateway doesn't
>help here, since exim will happily relay the message containing the
>exploit to a vulnerable internal system.
>
>Has anybody out here done an analysis of the sendmail bug? Is it
>possible to configure exim to not relay an exploiting message, but
>instead rejecting it? I would be very interested in solutions for both
>exim 3 and exim 4.
An exim filter should do the trick for you.
I recall that the sendmail bug exploits over-long comment headers? So
8.12.8 (or backported patches to earlier versions) drop mail with comment
headers that are "too long"
Exim might filter out and do the same I guess.
suresh
