[Mimedefang] Another Sendmail security problem: Upgrade to 8.12.9
Dirk Mueller
dmuell at gmx.net
Sun Mar 30 10:48:00 EST 2003
On Sam, 29 Mär 2003, Albert E. Whale, CISSP wrote:
> I'm afraid that Postfix and Qmail will all have vulnerabilities exposed
> sooner or later. It's a mater of course, Sendmail has a larger breadth
> of use and has been around for a lot longer time.
Sorry, but thats utter nonsense. Postfix and Qmail are secure _by_
_design_, something you can hardly say about sendmail. QMail is employed
widely and used on most famous and big transit mailers. If there would be a
possible problem, then hackers would have found it already.
every little sendmail problem is a root exploit. This can't happen with
postfix or qmail, because 95% of the code runs in a chrooted nonprivilege
environment. In sendmail. 95% of the code runs as root. Thats the
difference.
> ABS Computer Technology, Inc. - ESM, Computer & Networking Specialists
> Sr. Security, Network, and Systems Consultant
Ah.
Dirk
More information about the MIMEDefang
mailing list