Author: Nico Erfurth Date: To: Marc Haber CC: exim-users Subject: Re: [Exim] exim as relay for latest sendmail bug?
Marc Haber wrote: > Hi,
>
> the latest sendmail bug can be exploited by sending a message to a
> vulnerable system. Using exim as an application level gateway doesn't
> help here, since exim will happily relay the message containing the
> exploit to a vulnerable internal system.
>
> Has anybody out here done an analysis of the sendmail bug? Is it
> possible to configure exim to not relay an exploiting message, but
> instead rejecting it? I would be very interested in solutions for both
> exim 3 and exim 4.
I don't think you can do it with exim directly, unless it is a special
header, so you can check $h_XXX for a special length.
BUT, it should be easy to do with a local_scan function.
I don't know how the new sendmail-bug works, I just read about overlong
headers etc....