[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [DSA 563-2] New cyrus-sasl packages really fix arbitrary code execution

I'm sorry to say that, but version 1.5.27-3woody3 seems to still have at least
one common bug with the previous "woody2" version: We use it for our sendmail
server. Along with "woody2" *and* "woody3", sendmail is not able to detect the
available SASL-based AUTH mechanisms. So I had to downgrade again to
libsasl7_1.5.27-3_i386.deb.

When I run sendmail with some verbose debugging output, this (the second line)
seems to be interesting:

Oct 13 09:23:41 agitator sendmail[18145]: gethostbyaddr(192.168.0.2) failed: 1
Oct 13 09:23:41 agitator sendmail[18145]: error: safesasl(\004/Sendmail.conf)
failed: No such file or directory
Oct 13 09:23:41 agitator sendmail[18145]: NOQUEUE: connect from root@localhost
Oct 13 09:23:41 agitator sendmail[18145]: STARTTLS=server, Diffie-Hellman init,
key=512 bit (1)
Oct 13 09:23:41 agitator sendmail[18145]: STARTTLS=server, init=1
Oct 13 09:23:41 agitator sendmail[18145]: AUTH warning: no mechanisms
Oct 13 09:23:41 agitator sendmail[18145]: i9D7Nf56018145: Milter (mimedefang):
init success to negotiate
Oct 13 09:23:41 agitator sendmail[18145]: i9D7Nf56018145: Milter: connect to
filters
Oct 13 09:23:41 agitator sendmail[18145]: i9D7Nf56018145: milter=mimedefang,
action=connect, continue
Reply to: