8830 – linuxconf generated sendmail.cf opens relay hole

Bug 8830 - linuxconf generated sendmail.cf opens relay hole

Summary: linuxconf generated sendmail.cf opens relay hole

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	linuxconf
Sub Component:
Version:	6.1
Hardware:	i386
OS:	Linux
Priority:	medium
Severity:	high
Target Milestone:	---
Assignee:	Nalin Dahyabhai
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2000-01-25 09:37 UTC by kill
Modified:	2008-05-01 15:37 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2006-02-21 18:47:37 UTC
Embargoed:

Attachments	(Terms of Use)

Description kill 2000-01-25 09:37:24 UTC

Using linuxconf to generate sendmail.cf opens up a hole in the relay
protection, spcificaly it allows for qutoed receiver in the RCPT Tag:

RCPT To:<"victime">

Very irritating!, since ORBS is now cheking this and closing down sites
en masse...

Comment 1 Brent Fox 2002-06-05 16:17:24 UTC

Closing because we don't ship linuxconf anymore

Comment 2 Red Hat Bugzilla 2006-02-21 18:47:37 UTC

Changed to 'CLOSED' state since 'RESOLVED' has been deprecated.

Note You need to log in before you can comment on or make changes to this bug.