Re: Sendmail Workaround for Linux Capabilities Bug (fwd)

To: Christian Hammers <ch@westend.com>
Cc: debian-security@lists.debian.org
Subject: Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
From: Wichert Akkerman <wichert@cistron.nl>
Date: Thu, 8 Jun 2000 14:03:21 +0200
Message-id: <[🔎] 20000608140321.A13927@cistron.nl>
In-reply-to: <[🔎] 20000608102956.B23189@westend.com>; from ch@westend.com on Thu, Jun 08, 2000 at 10:29:56AM +0200
References: <200006080810.KAA20170@genesis.westend.com> <[🔎] 20000608102956.B23189@westend.com>

Previously Christian Hammers wrote:
> Is it right that there must exist a vulnerability in the server, too that
> allowes the attacker to execute code to exploit the capabilities bug?
> In other words, how severe is the urge to update the kernels on our
> production systems?

It indeed requires local access to the machine.

Wichert.

-- 
   ________________________________________________________________
 / Generally uninteresting signature - ignore at your convenience  \
| wichert@liacs.nl                    http://www.liacs.nl/~wichert/ |
| 1024D/2FA3BC2D 576E 100B 518D 2F16 36B0  2805 3CB8 9250 2FA3 BC2D |

Reply to:

Follow-Ups:
- Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
  - From: Ethan Benson <erbenson@alaska.net>

References:
- Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
  - From: Christian Hammers <ch@westend.com>

Prev by Date: Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
Next by Date: Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
Previous by thread: Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
Next by thread: Re: Sendmail Workaround for Linux Capabilities Bug (fwd)
Index(es):
- Date
- Thread