FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail

Ruslan Ermilov ru at freebsd.org
Fri Mar 24 12:57:21 UTC 2006


On Thu, Mar 23, 2006 at 10:44:05AM +0200, Dmitry Pryanishnikov wrote:
> 
> Hello!
> 
> On Wed, 22 Mar 2006, FreeBSD Security Advisories wrote:
> > Path
> >- -------------------------------------------------------------------------
> >RELENG_4
> > src/contrib/sendmail/libsm/fflush.c                         1.1.1.1.2.1
> > src/contrib/sendmail/libsm/local.h                          1.1.1.1.2.6
> > src/contrib/sendmail/libsm/refill.c                         1.1.1.1.2.4
> 
>  This doesn't change sendmail's identification string - it's still "8.13.1"
> on RELENG_4_11, which makes detection of unpatched systems more difficult
> to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in 
> version.c?
> 
It depends on what you think about whether it's good or not
that it's undetectable.  I prefer it to be not-detectable.


Cheers,
-- 
Ruslan Ermilov
ru at FreeBSD.org
FreeBSD committer
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20060324/8244adb8/attachment.pgp


More information about the freebsd-security mailing list