From owner-freebsd-security  Mon Nov 18 02:15:13 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id CAA28081
          for security-outgoing; Mon, 18 Nov 1996 02:15:13 -0800 (PST)
Received: from mail.id.net (mail.id.net [199.125.1.6])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id CAA28076
          for <freebsd-security@FreeBSD.org>; Mon, 18 Nov 1996 02:15:04 -0800 (PST)
Received: from server.id.net (server.id.net [199.125.1.10]) by mail.id.net (8.7.5/ID-Net) with ESMTP id FAA11457; Mon, 18 Nov 1996 05:19:53 -0500 (EST)
Received: (from rls@localhost) by server.id.net (8.7.5/8.7.3) id FAA11340; Mon, 18 Nov 1996 05:15:05 -0500 (EST)
From: Robert Shady <rls@mail.id.net>
Message-Id: <199611181015.FAA11340@server.id.net>
Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2).
In-Reply-To: <Pine.BSF.3.95.961117234631.223H-100000@alive.ampr.ab.ca> from Marc Slemko at "Nov 17, 96 11:55:33 pm"
To: marcs@znep.com (Marc Slemko)
Date: Mon, 18 Nov 1996 05:15:04 -0500 (EST)
Cc: roberto@keltia.freenix.fr, freebsd-security@FreeBSD.org
X-Mailer: ELM [version 2.4ME+ PL25 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-security@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk

> Incorrect.  It RUNS without DNS but still TRIES to use it.  If you really
> don't have IP connectivity, then difference doesn't matter because it
> still works when the lookup fails, however it still does try and the
> difference does matter if you have partial IP connectivity.  I have a
> system setup with nocanonify and all the other config file tweaks I know
> of, and it still tries to use DNS as a tcpdump shows quite clearly.  This
> system is running 8.7.5, so things may have been changed in more recent
> versions but I can't say for sure; if this has changed in more recent
> versions, please let me know.
> 
> I _think_ the define that needs to be set to 0 is NAMED_BIND, but don't
> recall for sure.  This has been gone over before on the lists.

Out of curiosity, what interface exactly are you looking at if you aren't
running tcp/ip?

	-- Rob
===
      _/_/_/_/_/  _/_/_/_/               _/_/    _/  _/_/_/_/_/  _/_/_/_/_/
         _/      _/      _/    _/_/_/   _/  _/  _/  _/_/_/_/        _/
   _/_/_/_/_/  _/_/_/_/               _/      _/  _/_/_/_/_/      _/

                             Innovative Data Services 
                          Serving South-Eastern Michigan 
        Internet Service Provider / Hardware Sales / Consulting Services
       Voice: (810)855-0404 / Fax: (810)855-3268 / Web: http://www.id.net