Hi list, You know, as DSA-384-1, sendmail buffer overflow vulnerability is fixed but another hole "sendmail relay access restrictions can be bypassed with bogus DNS"(*) is NOT fixed yet. * http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=174907 Do you know why maintainer let this issue alone ? or not effect Debian package? (if so, this bug should be closed.) -- Regards, Hideki Yamane mailto:henrich @ iijmio-mail.jp