[Mimedefang] Truncated connections causing multiple resends onincoming mail
John Nemeth
jnemeth at victoria.tc.ca
Fri May 4 15:12:08 EDT 2007
On Sep 24, 7:23am, John wrote:
} At 12:26 PM 5/4/2007, you wrote:
}
} >You might want to review this:
} >http://www.redhatmagazine.com/2007/04/18/risk-report-two-years-of-red-hat-enterprise-linux-4/
} >if you are talking about staying up to date with security-related updates.
} >I can't find the reference now but I think someone mentioned that if they
} >repeated the study for RHEL3 there would only be about 2 more critical
} >flaws in its additional 2 year life span.
}
} Here is the key:
}
} "The subset of vulnerabilities affecting the Linux kernel mostly lead to
} one of two consequences: either a local unprivileged user can cause the
} machine to crash, or a local user can gain privileges. "
}
} The key word in the above comment is "local" user. I there are no local
} users, you have no kernel issues. And since it is not windows, updating
This is not even remotely true. A hole in a network facing daemon
could be used to get into the system then the "local" hole could be
used to gain root privs (even if the hole in the network daemon doesn't
directly allow it). Those that do not understand security should not
comment on security issues.
}-- End of excerpt from John
More information about the MIMEDefang
mailing list