sendmail & localhost rDNS

To: debian-security@lists.debian.org
Subject: sendmail & localhost rDNS
From: Thomas Liske <liske@ibh.de>
Date: Mon, 10 Aug 2009 13:46:38 +0200
Message-id: <[🔎] 4A80089E.300@ibh.de>

Hi,

last week, there was an article on heise security about MTAs[1] whichrelay mails for hosts having a reverse resolution of 'localhost'. Doinga small test shows that sendmail on etch seems to be vulnerable, too. Ineed to have a localhost RELAY line in my access file (which is notdefault AFAIK).

Will there be a DSA on this issue, since it seems to turn Sendmailinstallations with allowed localhost RELAYing into Open Relays?



Cheers,
Thomas

[1]http://www.h-online.com/security/Naming-trick-opens-mail-servers--/news/113946


--
support@ibh.de                              Tel. +49 351 477 77 30
www.ibh.de                                  Fax  +49 351 477 77 39

-----------------------------------------------------------------------
Dipl.-Ing. Thomas Liske
Netzwerk- und System-Design


IBH IT-Service GmbH                         Amtsgericht Dresden
Gostritzer Str. 61-63                       HRB 13626
D-01217 Dresden                             GF: Prof. Dr. Thomas Horn
Germany                                     VAT DE182302907
-----------------------------------------------------------------------
Ihr Partner für: LAN, WAN IP-Quality, Security, VoIP, SAN, Backup, USV
-----------------------------------------------------------------------
       professioneller IT-Service - kompetent und zuverlässig
-----------------------------------------------------------------------

Reply to:

Follow-Ups:
- Re: sendmail & localhost rDNS
  - From: Lupe Christoph <lupe@lupe-christoph.de>

Prev by Date: zope2.10 packages prepared for stable-security (bug#540464)
Next by Date: Re: sendmail & localhost rDNS
Previous by thread: zope2.10 packages prepared for stable-security (bug#540464)
Next by thread: Re: sendmail & localhost rDNS
Index(es):
- Date
- Thread