From: Fernan Aguero (fernaniib.unsam.edu.ar)
Date: Wed Mar 05 2003 - 07:43:32 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

+----[ <security-advisoriesFreeBSD.ORG> (04.Mar.2003 15:19):
|
| 2) To patch your present system:
|
| The following patch has been verified to apply to FreeBSD 5.0, 4.7,
| and 4.6 systems.
|
| a) Download the relevant patch from the location below, and verify the
| detached PGP signature using your PGP utility.
|
| ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:04/sendmail.patch
| ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-03:04/sendmail.patch.asc
|
| b) Execute the following commands as root:
|
| # cd /usr/src
| # patch < /path/to/patch

I already cvsupped my sources yesterday evening (GMT-03),
when trying to apply the patch, it said that:

Patching file contrib/sendmail/src/daemon.c using Plan A...
Reversed (or previously applied) patch detected! Assume -R? [y]

So, may I assume that the source contained the patch?
I then went on to the following,

| # cd /usr/src/lib/libsm
| # make obj && make depend && make
| # cd /usr/src/lib/libsmutil
| # make obj && make depend && make
| # cd /usr/src/usr.sbin/sendmail
| # make obj && make depend && make && make install

no problems here. So i restarted sendmail,

| c) Restart sendmail. Execute the following command as root.
|
| # /bin/sh /etc/rc.sendmail restart

but then

strings /usr/sbin/sendmail | grep Dropped

produces no output.

My system:
FreeBSD pi.iib.unsam.edu.ar 4.8-RC FreeBSD 4.8-RC #0: Mon Mar 3 11:44:37 ART 2003 fernanpi.iib.unsam.edu.ar:/usr/obj/usr/src/sys/PI i386

My sendmail (after the update):
220 pi.iib.unsam.edu.ar ESMTP Sendmail 8.12.8/8.12.7; Wed, 5 Mar 2003 10:40:00 -0300 (ART)
 
|
+----]

--
F e r n a n A g u e r o
http://genoma.unsam.edu.ar/~fernan

To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]