From owner-freebsd-security Sun Nov 17 08:28:01 1996 Return-Path: owner-security Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id IAA10057 for security-outgoing; Sun, 17 Nov 1996 08:28:01 -0800 (PST) Received: from ingenieria ([168.176.15.11]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id IAA10036; Sun, 17 Nov 1996 08:27:39 -0800 (PST) Received: from unalmodem.usc.unal.edu.co by ingenieria (SMI-8.6/SMI-SVR4) id LAA21042; Sun, 17 Nov 1996 11:27:34 +0600 Message-ID: <328F623D.10A4@ingenieria.ingsala.unal.edu.co> Date: Sun, 17 Nov 1996 11:06:37 -0800 From: "Pedro Giffuni S." Reply-To: pgiffuni@fps.biblos.unal.edu.co Organization: Universidad Nacional de Colombia X-Mailer: Mozilla 3.0 (Win16; I) MIME-Version: 1.0 To: "S(pork)" CC: freebsd-security@freebsd.org, release@freebsd.org Subject: Re: New sendmail bug... References: Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit Sender: owner-security@freebsd.org X-Loop: FreeBSD.org Precedence: bulk S(pork) wrote: > > It's nasty and easy... If you're on Bugtraq, you saw it. If anyone with > more knowledge on this issue can check it out, please post to the list so > everyone can free themselves of this vulnerability. Root in under 15 > seconds with an account on the machine. If you need the 'sploit, please > mail me here and I'll send it to you. I verified it on FBSD, NetBSD, > Linux so far... > > TIA > > Charles After reading the latest CERT (which is rather old!), I installed smrsh on all my boxes and changed the uid to an anonymous mail user with no shell, as suggested. Does this cover it? Do the new releases install smrsh by default? My mail under 8.8.0 is being read and manipulated by someone outside, but this probably doesn´t have a solution does it? Pedro.