The following alert appeared on the Oz-ISP mailing list. It appears that Linuxconf over-writes the Sendmail-8.9 conf files with Sendmail 8.8.x config. It appears that Sendmail-8.8 still has some serious bugs in prevent spam as indicated in the following mail message extract. Is anyone looking at this problem ? ------------------------------------------------------------ --------------- For those people still using sendmail 8.8.x in hostile environments, note that your anti-relaying is very likely to be compromised. ORBS and RRS are listing 8.8.x as open relays (as they are relaying) because of this. Here's an example of poor.victim.com.au relaying spam to tom: 220 poor.victim.com.au ESMTP Sendmail 8.8.5/8.8.5; Wed, 25 Aug 1999 09:55:39 +1000 (EST) mail from: <lkjfe> 250 <lkjfe>... Sender ok rcpt to: <"tom"@victim.com.au> 250 <"tom"@victim.com.au>... Recipient ok data [... insert porn spam here ..] ------------------------------------------------------------ --------------- Given the popularity of RedHat 6 and Linuxconf with ISPs who are a little short on Unix, inparticular Sendmail skills. This could be a major problem. Regards Terry O'Connor
*** This bug has been marked as a duplicate of 4648 ***