>I've just had one of my AIX systems security scanned and the results
>have included a vulnerability that I can't figure out how to resolve.
>Postfix is set up to relay incoming mail on to a program. it works like
>this:
>
> telnet host 25
> HELO host
> MAIL FROM: root
> RCPT TO: |program

With respect, I would suggest you aren't getting value from your security
people. You can get better information than this simply by downloading
free tools off the net.

As a number of other people have suggested, this is a false alarm.

If you can't convince your security people that it's harmless, here's a
simple fix (provided you have regexp map support - check the output of
postconf -m):

- create a file "recipient.re" in your $config_directory directory:

    /^|/ 550 Pipe to command not allowed

- add the following early in your smtpd_recipient_restrictions:

    check_recipient_access regexp:$config_directory/recipient.re

-- 
Andrew McNamara, Senior Developer, Object Craft
http://www.object-craft.com.au/
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]