Date: Fri, 24 Mar 2006 14:56:28 +0200 From: Ruslan Ermilov <ru@freebsd.org> To: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail Message-ID: <20060324125628.GA63626@ip.net.ua> In-Reply-To: <20060323103739.X90993@atlantis.atlantis.dp.ua> References: <200603221611.k2MGBV21010114@freefall.freebsd.org> <20060323103739.X90993@atlantis.atlantis.dp.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
--UlVJffcvxoiEqYs2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Mar 23, 2006 at 10:44:05AM +0200, Dmitry Pryanishnikov wrote: >=20 > Hello! >=20 > On Wed, 22 Mar 2006, FreeBSD Security Advisories wrote: > > Path > >- ----------------------------------------------------------------------= --- > >RELENG_4 > > src/contrib/sendmail/libsm/fflush.c 1.1.1.1.2.1 > > src/contrib/sendmail/libsm/local.h 1.1.1.1.2.6 > > src/contrib/sendmail/libsm/refill.c 1.1.1.1.2.4 >=20 > This doesn't change sendmail's identification string - it's still "8.13.= 1" > on RELENG_4_11, which makes detection of unpatched systems more difficult > to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in=20 > version.c? >=20 It depends on what you think about whether it's good or not that it's undetectable. I prefer it to be not-detectable. Cheers, --=20 Ruslan Ermilov ru@FreeBSD.org FreeBSD committer --UlVJffcvxoiEqYs2 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFEI+x8qRfpzJluFF4RAmeTAJ4kDYvXvT3x7SFUtrLuqQy2k1rptgCeIPsf 0hFYRIGSfp/JsFh7OQmjy5w= =K9m+ -----END PGP SIGNATURE----- --UlVJffcvxoiEqYs2--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060324125628.GA63626>