Re: Sendmail 8.8.x/8.9.x bugware

From: Brock Rozen (brozenat_private)
Date: Mon Jan 18 1999 - 13:10:23 PST

Next message: aleph1at_private: "ISSalert: ISS Security Advisory: Vulnerability in the BackWeb"

Previous message: Kurt Seifried: "Re: Remote Cisco Identification"
Next in thread: Steve VanDevender: "Re: Sendmail 8.8.x/8.9.x bugware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 18 Jan 1999, Michal Zalewski wrote:

> > 550 <rhialtoat_private@victim.some.where>... Relaying denied
>
> As you noticed, relaying is denied in your configuration ;P This attack is
> possible if relaying is enabled, and it allows multiple redirections
> trough protected or external networks, which shouldn't be allowed.

Is stuff like <nobody%example.comat_private> allowed through?

--
Brock Rozen                                              brozenat_private
Director of Technical Services                              (410)358-9800
Project Genesis                                     http://www.torah.org/

Next message: aleph1at_private: "ISSalert: ISS Security Advisory: Vulnerability in the BackWeb"
Previous message: Kurt Seifried: "Re: Remote Cisco Identification"
Next in thread: Steve VanDevender: "Re: Sendmail 8.8.x/8.9.x bugware"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:29:14 PDT