OT: Sendmail
Res
res at AUSICS.NET
Thu Sep 18 23:57:00 IST 2003
On Thu, 18 Sep 2003, Raymond Dijkxhoorn wrote:
> Hi!
>
> > > Redhat for example backported the fixes, they always do...
>
> > Shouldn't they still change the version number in some way (eg 8.12.8 ->
> > 8.12.8a or 8.12.8-1) so that sysadmins know whether they've got the new one
> > or the old one on a given machine?
>
> This implies a security risk, with version scanners. Admins on the box
> can do a rpm -q sendmail ...
Most scanners that use versions are braindead and should NEVER be used in
the first place, for instance nesus reckons mines insecure, it reckons
mines open to VRFY, but it certainly is not, those thongs are only
guesses.
>
> Bye,
> Raymond.
>
--
Regards,
Res
Network Administrator
Postmaster / Abusemster / Flamemaster
http://www.ausics.net Australian Hosting Services
More information about the MailScanner
mailing list