From owner-freebsd-security  Fri Jan 29 14:29:50 1999
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA22237
          for freebsd-security-outgoing; Fri, 29 Jan 1999 14:29:50 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from alecto.physics.uiuc.edu (alecto.physics.uiuc.edu [130.126.8.20])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA22227
          for <security@freebsd.org>; Fri, 29 Jan 1999 14:29:47 -0800 (PST)
          (envelope-from igor@alecto.physics.uiuc.edu)
Received: (from igor@localhost)
	by alecto.physics.uiuc.edu (8.9.0/8.9.0) id QAA22729
	for security@freebsd.org; Fri, 29 Jan 1999 16:29:40 -0600 (CST)
From: Igor Roshchin <igor@physics.uiuc.edu>
Message-Id: <199901292229.QAA22729@alecto.physics.uiuc.edu>
Subject: Sendmail- headers
To: security@FreeBSD.ORG
Date: Fri, 29 Jan 1999 16:29:40 -0600 (CST)
X-Mailer: ELM [version 2.4ME+ PL43 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


Hello!

Sorry, if I am asking about some which has been stated clearly.
I just looked in the archives and haven't found the clear answer.

This week I've received two messages which indicate an attempt
of the header overflow (I think) in the sendmail.
Remembering some discussion recently on one of the lists, 
I am not sure if this overflow can result in any break in
or just might cause identity forgering (so, to prevent identification
of the sender and/or his host) ?

I am running  Sendmail 8.8.5/8.7.3 on a 2.1.7.1 -> 2.1-STABLE
Yes, I know it's outdated and the upgrade is pending,
but I am concerned if there was a break in this way, and whether I should
worry about detection of any traces of it.

The headers are:


Return-Path: aho@aho.ne
Received: from xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Date: Fri, 29 Jan 1999 08:50:44 -0500 (EST)
From: aho@aho.ne
Message-Id: <199901291350.IAA10527@MYHOST.CHANGED.BY.ME.FOR.SECURITY.REASONS>
To: kei37@geocities.co.jp
Subject: test
X-Mailer: Microsoft Outlook Express 4.72.2106



Thanks,

Igor

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message