Re: sendmail -C: Known? Patches? (AIX 4.1.5)

ericSENDMAIL.ORG

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Eric Murray: "Re: Netscape Referer header considered harmful?"
• Previous message: Munil Shah: "Re: Vulnerability in WINS web server, NT4.0"
• In reply to: DI. Dr. Klaus Kusche: "sendmail -C: Known? Patches? (AIX 4.1.5)"
• Next in thread: Eric Allman: "Re: sendmail -C: Known? Patches? (AIX 4.1.5)"

As near as I can tell, no sendmail from Berkeley (back to 5.61, that
is, 1988, and probably before -- that was just the earliest one that
I had available to check) had this problem.  I suspect that if the
problem exists at all, it is IBM-specific.

eric


============= In Reply To: ===========================================
: From:  "DI. Dr. Klaus Kusche" <Klaus.KuscheOOE.GV.AT>
: Subject:       sendmail -C: Known? Patches? (AIX 4.1.5)
: Date:         Wed, 6 Aug 1997 08:07:36 PDT

: On several not-so-official WWW pages, I found a hint that
:
: /usr/lib/sendmail -C <any-file-you-want-to-read>
:
: produces "interesting" output.
:
: I tried that on our AIX 4.1.5 (as an ordinary user!) with
: "/etc/security/passwd", and it indeed displayed all the
: shadow passwords.
:
: I checked IBM's and CERT's archives about it and found nothing.
:
: Questions:
: 1.) Is the problem known?
: 2.) Does IBM have a fix for it?
: 3.) Is it fixed in the latest (non-IBM) sendmail releases?
:
: DI. Dr. Klaus Kusche
: Oberoesterreichische Landesregierung / Government of Upper Austria
: Rechenzentrum / Computing Centre
: Smail: Kaerntnerstrasse 16, A-4020 Linz, Austria (Europe)
: Phone: +43 732 7720 - 3394   Fax: +43 732 7720 - 3198
: Email: Klaus.Kuscheooe.gv.at

• Next message: Eric Murray: "Re: Netscape Referer header considered harmful?"
• Previous message: Munil Shah: "Re: Vulnerability in WINS web server, NT4.0"
• In reply to: DI. Dr. Klaus Kusche: "sendmail -C: Known? Patches? (AIX 4.1.5)"
• Next in thread: Eric Allman: "Re: sendmail -C: Known? Patches? (AIX 4.1.5)"