[Full-Disclosure] Buffer overflow in qmail-qmtpd, yet still qmail much better than windows
prj at po.cwru.edu
Wed Mar 3 17:46:14 GMT 2004
Russell Nelson <nelson at crynwr.com> wrote:
> The work-around is not to set RELAYCLIENT. Since it's extremely
> unlikely that anybody is setting it in the first place, this bug
> should have no operational consequences.
Well, I don't think it's that uncommon in general - Bruce's relay-ctrl
works by setting RELAYCLIENT - but you're probably right that hardly
anybody uses RELAYCLIENT with QMTP.
Full-Disclosure is hosted and sponsored by Secunia.