From owner-freebsd-security  Sun Nov 17 22:56:26 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id WAA16576
          for security-outgoing; Sun, 17 Nov 1996 22:56:26 -0800 (PST)
Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id WAA16566
          for <freebsd-security@FreeBSD.org>; Sun, 17 Nov 1996 22:56:11 -0800 (PST)
Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.7.5/8.7.3) with UUCP id XAA29013; Sun, 17 Nov 1996 23:55:56 -0700 (MST)
Received: from localhost (marcs@localhost) by alive.ampr.ab.ca (8.7.5/8.7.3) with SMTP id XAA01449; Sun, 17 Nov 1996 23:55:34 -0700 (MST)
Date: Sun, 17 Nov 1996 23:55:33 -0700 (MST)
From: Marc Slemko <marcs@znep.com>
X-Sender: marcs@alive.ampr.ab.ca
To: Ollivier Robert <roberto@keltia.freenix.fr>
cc: freebsd-security@FreeBSD.org
Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2).
In-Reply-To: <Mutt.19961118070417.roberto@keltia.freenix.fr>
Message-ID: <Pine.BSF.3.95.961117234631.223H-100000@alive.ampr.ab.ca>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-security@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk

Incorrect.  It RUNS without DNS but still TRIES to use it.  If you really
don't have IP connectivity, then difference doesn't matter because it
still works when the lookup fails, however it still does try and the
difference does matter if you have partial IP connectivity.  I have a
system setup with nocanonify and all the other config file tweaks I know
of, and it still tries to use DNS as a tcpdump shows quite clearly.  This
system is running 8.7.5, so things may have been changed in more recent
versions but I can't say for sure; if this has changed in more recent
versions, please let me know.

I _think_ the define that needs to be set to 0 is NAMED_BIND, but don't
recall for sure.  This has been gone over before on the lists.

Any more followups I make to this will go to -hackers.

On Mon, 18 Nov 1996, Ollivier Robert wrote:

> According to Marc Slemko:
> > Incorrect.  Sendmail still attempts a lookup for something, I think it is
> > the local hostname, for each piece of mail it processes..  Last I checked,
> > this could NOT be disabled without recompiling sendmail.  Modifying your
> > config file or adding a service.switch file does not stop it.
> 
> No, use FEATURE(nocanonify). Been running with this without DNS for ages.
>  
> -- 
> Ollivier ROBERT    -=- The daemon is FREE! -=-    roberto@keltia.freenix.fr
>   FreeBSD keltia.freenix.fr 3.0-CURRENT #28: Sun Nov 10 13:37:41 MET 1996
>