[Simon Walter] Bug#506353: mailscanner: many scripts allow
local users to overwrite arbitrary files, and more,
via symlink attacks
Kai Schaetzl
maillists at conactive.com
Tue Jan 6 13:53:31 GMT 2009
Hugo van der Kooij wrote on Fri, 12 Dec 2008 17:19:00 +0100:
> Care to share it with the rest of the world? Put it online somewhere if
> you want others to enjoy it too.
I just checked it with the latest MS and added a bit of explanation. You
can get it from http://winware.org/centos/updatems.zip
The first script downloads and updates MS, the second updates the conf.
Comments welcome (suggest PM).
Kai
--
Kai Schätzl, Berlin, Germany
Get your web at Conactive Internet Services: http://www.conactive.com
More information about the MailScanner
mailing list