mailscanner trouble

Scott Silva ssilva at sgvwater.com
Wed Jul 25 17:40:04 IST 2007


Matt Kettler spake the following on 7/24/2007 9:58 AM:
> Martin.Hepworth wrote:
>> Simon
>>
>> You're running really really old mailscanner and really really really old spamassassin!
>>
>> I'd suggest you update both to modern versions first..
> 
> I'd agree.. however, he's also running a really really really old version of
> RedHat ( Redhat 8, circa 2002), which is no longer supported and thus no longer
> has security fixes posted.
> 
> He's also running a really old sendmail which is likely full of exploits.
> 
> I know sendmail-8.12.5-7 is vulnerable to at least this remote DoS attack.
> http://www.securityfocus.com/bid/8485
> 
> This version of RedHat also runs perl 5.0005, which would inhibit upgrading to
> anything too terribly modern. SpamAssassin ditched 5.0005 support with SA 3.0.0.
> 2.6x would be the newest build that would support such an old version of perl.
> 
> While it's a lot of work, really Simon should be completely upgrading his entire
> OS. Centos might make a good option as it would be relatively familiar to a
> RedHat user and has fairly long-lived release cycles.
> 
> Upgrading a couple tools won't help you when nearly every package on your entire
> system is 5 years old and doesn't have any security updates published.
> 
> 
And probably hardware just as old.
Kind of like quitting smoking "after" the doctor tells you that you have 3
months to live!  ;-(

-- 

MailScanner is like deodorant...
You hope everybody uses it, and
you notice quickly if they don't!!!!



More information about the MailScanner mailing list