From owner-freebsd-questions  Mon Mar  3 23:55:40 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0C73D37B401
	for <freebsd-questions@FreeBSD.ORG>; Mon,  3 Mar 2003 23:55:39 -0800 (PST)
Received: from smtp.infracaninophile.co.uk (happy-idiot-talk.infracaninophile.co.uk [81.2.69.218])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 68FD243F85
	for <freebsd-questions@FreeBSD.ORG>; Mon,  3 Mar 2003 23:55:37 -0800 (PST)
	(envelope-from m.seaman@infracaninophile.co.uk)
Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [127.0.0.1])
	by smtp.infracaninophile.co.uk (8.12.8/8.12.8) with ESMTP id h247tSDA006824;
	Tue, 4 Mar 2003 07:55:28 GMT
	(envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk)
Received: (from matthew@localhost)
	by happy-idiot-talk.infracaninophile.co.uk (8.12.8/8.12.8/Submit) id h247tSZ2006823;
	Tue, 4 Mar 2003 07:55:28 GMT
Date: Tue, 4 Mar 2003 07:55:28 +0000
From: Matthew Seaman <m.seaman@infracaninophile.co.uk>
To: Terry Todd <tlt@badger.tltodd.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Sendmail patch questions...
Message-ID: <20030304075528.GA6551@happy-idiot-talk.infracaninophi>
Mail-Followup-To: Matthew Seaman <matthew@FreeBSD.ORG>,
	Terry Todd <tlt@badger.tltodd.com>, freebsd-questions@FreeBSD.ORG
References: <002701c2e1df$95fc1f00$0301a8c0@mike> <20030303204558.A5870@badger.tltodd.com> <20030303205326.A9819@badger.tltodd.com> <20030303211505.A12165@badger.tltodd.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20030303211505.A12165@badger.tltodd.com>
User-Agent: Mutt/1.5.3i
X-Spam-Status: No, hits=-32.5 required=5.0
	tests=EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES,
	      REPLY_WITH_QUOTES,USER_AGENT_MUTT
	version=2.50
X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp)
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Mon, Mar 03, 2003 at 09:15:05PM -0600, Terry Todd wrote:
 
> Is there a way to test that the vulnerability has been fixed?

As Claus Assmann posted over in freebsd-security, you can test that
your sendmail binary has been patched by:

    % strings /usr/libexec/sendmail/sendmail | grep 'Dropped invalid comments from header address'

If that text is present in the binary, then you have a patched
version.

	Cheers,

	Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message