Date: Mon, 31 Mar 2003 10:51:34 -0700 From: Nate Williams <nate@yogotech.com> To: Albert Meyer <freebsd@realtime.net> Cc: freebsd-isp@freebsd.org Subject: Re: Sendmail exploit Message-ID: <16008.32806.270326.501687@emerger.yogotech.com> In-Reply-To: <5.1.1.6.2.20030331103102.04fd5770@pop3.realtime.net> References: <5.1.1.6.2.20030331103102.04fd5770@pop3.realtime.net>
next in thread | previous in thread | raw e-mail | index | archive | help
> The CERT advisory on the new Sendmail exploit seems to be saying that > Sendmail machines behind a firewall can still be exploited. If I understand things correctly, if you allow your machine to connect to outside boxes through the firewall, then it can be exploited, since it will initiate connections to external boxes that can use the connection to do bad things to your box. Nate
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?16008.32806.270326.501687>