Date: Fri, 24 Mar 2006 14:56:28 +0200 From: Ruslan Ermilov <ru@freebsd.org> To: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail Message-ID: <20060324125628.GA63626@ip.net.ua> In-Reply-To: <20060323103739.X90993@atlantis.atlantis.dp.ua> References: <200603221611.k2MGBV21010114@freefall.freebsd.org> <20060323103739.X90993@atlantis.atlantis.dp.ua>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Thu, Mar 23, 2006 at 10:44:05AM +0200, Dmitry Pryanishnikov wrote: > > Hello! > > On Wed, 22 Mar 2006, FreeBSD Security Advisories wrote: > > Path > >- ------------------------------------------------------------------------- > >RELENG_4 > > src/contrib/sendmail/libsm/fflush.c 1.1.1.1.2.1 > > src/contrib/sendmail/libsm/local.h 1.1.1.1.2.6 > > src/contrib/sendmail/libsm/refill.c 1.1.1.1.2.4 > > This doesn't change sendmail's identification string - it's still "8.13.1" > on RELENG_4_11, which makes detection of unpatched systems more difficult > to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in > version.c? > It depends on what you think about whether it's good or not that it's undetectable. I prefer it to be not-detectable. Cheers, -- Ruslan Ermilov ru@FreeBSD.org FreeBSD committer [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFEI+x8qRfpzJluFF4RAmeTAJ4kDYvXvT3x7SFUtrLuqQy2k1rptgCeIPsf 0hFYRIGSfp/JsFh7OQmjy5w= =K9m+ -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060324125628.GA63626>