Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Re: SMAIL
From: unkadath!shamus () pine cse nau edu (James W. Abendschan)
Date: Fri, 7 Oct 1994 07:09:52 -0700 (MDT)


Hi,

As far as I have seen the following is sufficient:

-smpt_debug in config

check_path in transports (after the 'file' sub)

arg_debug_file should be added to the 'if then' resseting userid with
certain arguments. This is in main.c and from memory.


there is another problem that was discovered recently which allows
people to write to any non-existant file on the system and append
to any file with semi user-controllable data.  comp.mail.smail has
a patch that will fix this -- i suggest you apply it if you run smail.

-- 
James W. Abendschan                                                "Hi Roy!"
shamus () unkadath uucp, jwa () nau edu                                   -- Pris

  By Date           By Thread  

Current thread:
  • Re: SMAIL jvdam () freedom NMSU Edu (Oct 07)
    • Re: SMAIL James W. Abendschan (Oct 07)
    • <Possible follow-ups>
    • Re: SMAIL James Seng (Oct 09)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]