Date: Mon, 24 Aug 1998 16:16:06 -0600 From: Wes Peters <wes@softweyr.com> To: "Dag-Erling Coidan Smørgrav" <dag-erli@ifi.uio.no> Cc: freebsd-security@FreeBSD.ORG Subject: Re: REQ: free pop3 daemon recommendations Message-ID: <35E1E626.8B26000C@softweyr.com> References: <20938.903553244@axl.training.iafrica.com> <xzpn28z8v6b.fsf@skejdbrimir.ifi.uio.no> <35DE1217.8472B1A1@softweyr.com> <xzpk941b2fh.fsf@skejdbrimir.ifi.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Dag-Erling Coidan Smørgrav wrote:
>
> Wes Peters <wes@softweyr.com> writes:
> > imap-uw has had more than it's share of security exploits of late, too.
> > The FreeBSD version has (hopefully) been patched to keep up with them.
>
> I'm aware of only one recent imap-uw exploit, in 4.1b IIRC. I'd be
> grateful for any information about other security problems with
> imap-uw.
That's probably the one I'm thinking of. IIRC, those who looked it
over found the code a ripe ground for buffer overflows, and the code
generally of poor "university hackathon" quality.
<Sigh> Too bad Charlie Crittenden (my most stringent prof in CS) wasn't
the principal investigator, the code would be prettier than a Pulitzer
prize winning novel, AND work better, too. He was a gem.
--
"Where am I, and what am I doing in this handbasket?"
Wes Peters Softweyr LLC
http://www.softweyr.com/~softweyr wes@softweyr.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?35E1E626.8B26000C>