From owner-freebsd-security  Sun Nov 17 20:20:41 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id UAA08025
          for security-outgoing; Sun, 17 Nov 1996 20:20:41 -0800 (PST)
Received: from scanner.worldgate.com (scanner.worldgate.com [198.161.84.3])
          by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id UAA08015
          for <freebsd-security@FreeBSD.org>; Sun, 17 Nov 1996 20:20:32 -0800 (PST)
Received: from znep.com (uucp@localhost) by scanner.worldgate.com (8.7.5/8.7.3) with UUCP id VAA21852; Sun, 17 Nov 1996 21:20:19 -0700 (MST)
Received: from localhost (marcs@localhost) by alive.ampr.ab.ca (8.7.5/8.7.3) with SMTP id VAA00293; Sun, 17 Nov 1996 21:18:30 -0700 (MST)
Date: Sun, 17 Nov 1996 21:18:29 -0700 (MST)
From: Marc Slemko <marcs@znep.com>
X-Sender: marcs@alive.ampr.ab.ca
To: =?KOI8-R?Q?=E1=CE=C4=D2=C5=CA_=FE=C5=D2=CE=CF=D7?= <ache@nagual.ru>
cc: freebsd-security@FreeBSD.org
Subject: Re: BoS: Exploit for sendmail smtpd bug (ver. 8.7-8.8.2).
In-Reply-To: <199611180225.FAA01413@nagual.ru>
Message-ID: <Pine.BSF.3.95.961117211243.223A-100000@alive.ampr.ab.ca>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Content-Transfer-Encoding: QUOTED-PRINTABLE
Sender: owner-security@FreeBSD.org
X-Loop: FreeBSD.org
Precedence: bulk

Incorrect.  Sendmail still attempts a lookup for something, I think it is
the local hostname, for each piece of mail it processes.  Last I checked,
this could NOT be disabled without recompiling sendmail.  Modifying your
config file or adding a service.switch file does not stop it.

Normally this isn't a problem without DNS since the query will fail right
away and sendmail will go on its happy way, but it is a big problem when
you have a machine with some type of dial on demand networking setup that
gets mail via uucp.

Followups should go somewhere more appropriate, perhaps hackers if it is
remotely technical or chat if not. =20

On Mon, 18 Nov 1996, [KOI8-R] =E1=CE=C4=D2=C5=CA =FE=C5=D2=CE=CF=D7 wrote:

> > Sendmail's support of UUCP isn't wonderful (mostly a problem of
> > getting DNS totally disabled).  How well does qmail support UUCP?
>=20
> It is possible to totally disable DNS via
>=20
> /etc/service.switch:
> # To disable DNS search for sendmail
> hosts files
>=20
>=20
> --=20
> Andrey A. Chernov
> <ache@nagual.ru>
> http://www.nagual.ru/~ache/
>=20