Date: Mon, 3 Mar 2003 18:29:01 -0800 (PST) From: Hans Zaunere <zaunere@yahoo.com> To: Chris McCluskey <chris@digitaldeck.com>, security@FreeBSD.ORG Subject: Re: SA-03:04.sendmail Bin Update Message-ID: <20030304022901.70698.qmail@web12806.mail.yahoo.com> In-Reply-To: <ECEPLGOFLCLKKCNAGCBHAEFJDIAA.chris@digitaldeck.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--- Chris McCluskey <chris@digitaldeck.com> wrote: > > Ok... > > Here's what I show: > > namehere# telnet namehere 25 > Trying 192.x.y.z... > Connected to namehere.digitaldeck.com. > Escape character is '^]'. > 220 namehere.digitaldeck.com ESMTP Sendmail 8.12.6/8.12.6; Mon, 3 Mar > 2003 16:22:53 -0800 (PST) > > namehere# strings sendmail-4.7-i386-nocrypto.bin |grep 8.12 > @(#)$Id: safefile.c,v 8.124 2002/05/24 20:50:15 gshapiro Exp $ > 8.12.6 > > I have been tracking RELENG_4_7 and it looks like 4.12.6 to me. So > again, I want to make sure that this version of Sendmail has been > patched. What's the best verification procedure to insure that the > patched version is online? I'm in the exact same situation. I replaced the sendmail binary but it shows the same sig as before. While I have great confidence in the FreeBSD team, is there some way I can validate everything is kosher? Hans To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030304022901.70698.qmail>