From owner-freebsd-security@FreeBSD.ORG  Sat Mar 25 08:02:11 2006
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
X-Original-To: freebsd-security@freebsd.org
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1B15C16A400
	for <freebsd-security@freebsd.org>;
	Sat, 25 Mar 2006 08:02:11 +0000 (UTC)
	(envelope-from freebsd@syskit.com)
Received: from gw.syskit.com (gw.shvets.name [80.78.47.254])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 653C843D49
	for <freebsd-security@freebsd.org>;
	Sat, 25 Mar 2006 08:02:10 +0000 (GMT)
	(envelope-from freebsd@syskit.com)
Received: from 127.0.0.1 (tornado [192.168.0.1])
	by gw.syskit.com (8.13.6/8.13.6) with ESMTP id k2P8289q000795
	for <freebsd-security@freebsd.org>;
	Sat, 25 Mar 2006 10:02:08 +0200 (EET)
	(envelope-from freebsd@syskit.com)
X-AntiVirus: Checked by Dr.Web [version: 4.33, engine: 4.33.2.02271,
	virus records: 107130, updated: 20.02.2006]
Date: Sat, 25 Mar 2006 10:02:04 +0200
From: Yaroslav Shvets <freebsd@syskit.com>
X-Mailer: The Bat! (v1.63 Beta/7) Business
Organization: SysKit
X-Priority: 3 (Normal)
Message-ID: <17539855459.20060325100204@syskit.com>
To: freebsd-security@freebsd.org
In-Reply-To: <20060324125628.GA63626@ip.net.ua>
References: <200603221611.k2MGBV21010114@freefall.freebsd.org>
	<20060323103739.X90993@atlantis.atlantis.dp.ua>
	<20060324125628.GA63626@ip.net.ua>
MIME-Version: 1.0
Content-type: text/plain; charset=us-ascii
Content-transfer-encoding: 7bit
Subject: Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Yaroslav Shvets <yar@syskit.com>
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Mar 2006 08:02:11 -0000

Hello Ruslan,

Friday, March 24, 2006, 2:56:28 PM, you wrote:

>>  This doesn't change sendmail's identification string - it's still "8.13.1"
>> on RELENG_4_11, which makes detection of unpatched systems more difficult
>> to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in 
>> version.c?
RE> It depends on what you think about whether it's good or not
RE> that it's undetectable.  I prefer it to be not-detectable.

After update I have seen version numbers (8.13.1 for RELENG_4_11 and
8.13.4 for RELENG_6_0). Got check for the safe version on sendmail.org
- 8.13.6 and ... rebuilt new sendmail again manually.

Some people have decided, that there was a mistake.
IMHO, it was necessary to fix version numbers.
Everyone know, how it to hide.

--
Best regards,
Yaroslav Shvets
mailto: freebsd@syskit.com
   icq: 105666