Re: MTA's

Subject: Re: MTA's
From: Christopher E. Brown (cbrown@woods.net)
Date: Wed Apr 30 2003 - 12:26:05 AKDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Jon Reynolds: "Re: qmail or postfix ??"
• Previous message: David J. Weller-Fahy: "Re: OT GCI E-Mail"
• In reply to: dhul: "Re: MTA's"
• Next in thread: Jon Reynolds: "Re: MTA's"
• Reply: Christopher E. Brown: "Re: MTA's"
• Reply: Christopher E. Brown: "Re: MTA's"

On Wed, 30 Apr 2003, [iso-8859-1] dhull wrote:

> People say sendmail is not secure but you never here of anyone being
> hacked.

// flame on
And what alternate universe do you live in?
// flame off

Sendmail has gotton alot better since the folks at Sendmail, Inc.
(commercial version of sendmail) hired a couple folks to work on the
base sendmail (Sendmail Consortiums OpenSource version) full time, but
it still has a horrid track record, past *and* present.

There has been *at least* one remote root vulnerability within the
last 45 days, and a host of local and remote DOS, header corruption,
etc issues. I don't follow Sendmail (I don't use it), but it is
pretty hard not to notice the constant flow if sendmail issues.

You do at least read the fluffy high level reports from CERT if not
any of the 'full disclosure' security related groups; right?

 --
I route, therefore you are.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: Jon Reynolds: "Re: qmail or postfix ??"
• Previous message: David J. Weller-Fahy: "Re: OT GCI E-Mail"
• In reply to: dhul: "Re: MTA's"
• Next in thread: Jon Reynolds: "Re: MTA's"
• Reply: Christopher E. Brown: "Re: MTA's"
• Reply: Christopher E. Brown: "Re: MTA's"

This archive was generated by hypermail 2a23 : Wed Apr 30 2003 - 12:24:25 AKDT