Re: FreeBSD Security Advisory FreeBSD-SA-06:13.sendmail
--UlVJffcvxoiEqYs2
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, Mar 23, 2006 at 10:44:05AM +0200, Dmitry Pryanishnikov wrote:
>=20
> Hello!
>=20
> On Wed, 22 Mar 2006, FreeBSD Security Advisories wrote:
> > Path
> >- ----------------------------------------------------------------------=
---
> >RELENG_4
> > src/contrib/sendmail/libsm/fflush.c 1.1.1.1.2.1
> > src/contrib/sendmail/libsm/local.h 1.1.1.1.2.6
> > src/contrib/sendmail/libsm/refill.c 1.1.1.1.2.4
>=20
> This doesn't change sendmail's identification string - it's still "8.13.=
1"
> on RELENG_4_11, which makes detection of unpatched systems more difficult
> to sysadmin. Wouldn't be wise to add, say, "-p1" to this string in=20
> version.c?
>=20
It depends on what you think about whether it's good or not
that it's undetectable. I prefer it to be not-detectable.
Cheers,
--=20
Ruslan Ermilov
ru@FreeBSD.org
FreeBSD committer
--UlVJffcvxoiEqYs2
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (FreeBSD)
iD8DBQFEI+x8qRfpzJluFF4RAmeTAJ4kDYvXvT3x7SFUtrLuqQy2k1rptgCeIPsf
0hFYRIGSfp/JsFh7OQmjy5w=
=K9m+
-----END PGP SIGNATURE-----
--UlVJffcvxoiEqYs2--
討論串 (同標題文章)
完整討論串 (本文為第 11 之 14 篇):