Re: [SECURITY] [DSA 533-1] New courier packages fix cross-site scripting vulnerability
On Fri, Jul 23, 2004 at 10:11:30AM +0200, Robert Penz wrote:
> On Friday 23 July 2004 06:20, Matt Zimmerman wrote:
>
> I've just updated to the new packages and now I've following problem
>
> Jul 23 10:03:41 blackstar courieresmtpd: started,ip=[::ffff:62.138.5.44]
> Jul 23 10:03:41 blackstar esmtpd-ssl:
> /usr/lib/courier/courier/modules/esmtp/authstart: cannot read authmodulelist.
> Jul 23 10:03:41 blackstar courieresmtpd:
> error,relay=::ffff:62.138.5.44,msg="535 Authentication failed.",cmd: AUTH
> LOGIN
>
> and Kmail reports that the server does not support login
>
> I looked a little bit into the problem and the file
>
> /etc/courier/authmodulelist
>
> got removed in the update again - why again?
>
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=147285
>
> fix with
>
> # cat > /etc/courier/authmodulelist
> authdaemon
CCing the package maintainer.
--
- mdz
Reply to: