Re: Two questions about task-harden.

To: "Wichert Akkerman" <wichert@wiggy.net>, <debian-devel@lists.debian.org>
Subject: Re: Two questions about task-harden.
From: "Scott K. Ellis" <scott@debian.org>
Date: Thu, 23 Aug 2001 23:09:18 -0400
Message-id: <[🔎] 002901c12c4a$29e107a0$b84c5d18@carolina.rr.com>
References: <[🔎] 20010823211431.A10673@chrystal.opal.dhs.org> <[🔎] 20010823172451.A18861@morgul.net> <[🔎] jvppu9msaem.fsf@grecotha.kendall.akamai.com> <[🔎] 20010824002918.H31276@wiggy.net>

> > Sure, but there are plenty of other MTAs which can be used in place of
> > sendmail.  Sendmail has a history of security problems; postfix and
> > exim have a history of reasonably secure behavior.  A machine with
> > sendmail installed *isn't* hardened.
>
> To be fair, the sendmail code has improved a lot recently and it actually
> quite decent now, and other mailers such as postfix and exim have not
> been around long enough or are used as often as sendmail to have received
> the same amount of scrutiny.

Of course, there is the latest sendmail vunerability that SuSE is reporting.

http://www.linuxsecurity.com/advisories/suse_advisory-1568.html

Reply to:

Follow-Ups:
- Re: Two questions about task-harden.
  - From: Wichert Akkerman <wichert@wiggy.net>
- Re: Two questions about task-harden.
  - From: Richard A Nelson <cowboy@debian.org>

References:
- Two questions about task-harden.
  - From: Ola Lundqvist <opal@debian.org>
- Re: Two questions about task-harden.
  - From: Noah Meyerhans <noahm@debian.org>
- Re: Two questions about task-harden.
  - From: Brian Sniffen <bts@akamai.com>
- Re: Two questions about task-harden.
  - From: Wichert Akkerman <wichert@wiggy.net>

Prev by Date: Re: Still no base tarball
Next by Date: new XFree86 packages may be stalled temporarily
Previous by thread: Re: Two questions about task-harden.
Next by thread: Re: Two questions about task-harden.
Index(es):
- Date
- Thread