Date: Mon, 24 Aug 1998 16:16:06 -0600 From: Wes Peters <wes@softweyr.com> To: "Dag-Erling Coidan Smørgrav" <dag-erli@ifi.uio.no> Cc: freebsd-security@FreeBSD.ORG Subject: Re: REQ: free pop3 daemon recommendations Message-ID: <35E1E626.8B26000C@softweyr.com> References: <20938.903553244@axl.training.iafrica.com> <xzpn28z8v6b.fsf@skejdbrimir.ifi.uio.no> <35DE1217.8472B1A1@softweyr.com> <xzpk941b2fh.fsf@skejdbrimir.ifi.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Dag-Erling Coidan Smørgrav wrote: > > Wes Peters <wes@softweyr.com> writes: > > imap-uw has had more than it's share of security exploits of late, too. > > The FreeBSD version has (hopefully) been patched to keep up with them. > > I'm aware of only one recent imap-uw exploit, in 4.1b IIRC. I'd be > grateful for any information about other security problems with > imap-uw. That's probably the one I'm thinking of. IIRC, those who looked it over found the code a ripe ground for buffer overflows, and the code generally of poor "university hackathon" quality. <Sigh> Too bad Charlie Crittenden (my most stringent prof in CS) wasn't the principal investigator, the code would be prettier than a Pulitzer prize winning novel, AND work better, too. He was a gem. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC http://www.softweyr.com/~softweyr wes@softweyr.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?35E1E626.8B26000C>