Date: Fri, 24 Mar 2006 15:53:11 +0200 (EET) From: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua> To: Ruslan Ermilov <ru@freebsd.org> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail Message-ID: <20060324154927.G71617@atlantis.atlantis.dp.ua> In-Reply-To: <20060324125628.GA63626@ip.net.ua> References: <200603221611.k2MGBV21010114@freefall.freebsd.org> <20060323103739.X90993@atlantis.atlantis.dp.ua> <20060324125628.GA63626@ip.net.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello! On Fri, 24 Mar 2006, Ruslan Ermilov wrote: >> This doesn't change sendmail's identification string - it's still "8.13.1" >> on RELENG_4_11, which makes detection of unpatched systems more difficult >> to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in ---^^^^^^^^^^^ I meant just this - to sysadmin, not to attackers. >> version.c? >> > It depends on what you think about whether it's good or not > that it's undetectable. I prefer it to be not-detectable. So do I - that's why I removed version info from my settings for confSMTP_LOGIN_MSG long time ago ;) Sincerely, Dmitry -- Atlantis ISP, System Administrator e-mail: dmitry@atlantis.dp.ua nic-hdl: LYNX-RIPE
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060324154927.G71617>