Re: [exim] CVE-2019-10149: already vulnerable ?

Páxina inicial
Borrar esta mensaxe
Responder a esta mensaxe
Autor: Jeremy Harris
Data:  
Para: exim-users
Temas novos: [exim] Extra copies of list mail (was Re: CVE-2019-10149: already vulnerable ?)
Asunto: Re: [exim] CVE-2019-10149: already vulnerable ?
On 25/06/2019 13:48, Niels Dettenbach via Exim-users wrote:
> Am Dienstag, 25. Juni 2019, 13:53:26 CEST schrieb Jeremy Harris via Exim-
> users:
>> No recompile needed. smtp_banner.
> This only set's the banner, but not the SMTP-Headers " by " which are
> "public" too and used as a idicator for "security researchers" (by my
> experience) - i.e. germany BSI.


Indeed; but only the banner was being asked about.
You're interested in received_header_text, I suspect.

PS:  I do not need an additional copy of list emails.  I get
     very tired of getting them.  If your MUA does not have
     a "reply to list" button, please get a better one.
     I swear, I'm going to start deliberately ignoring anyone
     who sends me a useless copy, real soon now.


--
Cheers,
Jeremy