spamassassin a possible security risk?
Thomas Zehetbauer
thomasz at hostmaster.org
Tue Oct 19 18:39:50 UTC 2004
On Die, 2004-10-19 at 11:56 -0400, Matthew Miller wrote:
> spamd *does* have the option to use ident, though, which would be
> sigificantly better. (Since it *is* only bound to localhost, one would hope
> one can trust the identd on the local machine.) However, this requires a
> command line option that the Fedora package doesn't appear to use, and more
> importantly, it requires the Net::Ident perl module, and perhaps even more
> importantly, it requires the identd to tell the truth, at least to daemons
> running locally.
I have just tried to use this option, but after installing Net::Ident it
only seems to trigger some rather obscure bug in authd:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=136392
Using uidentd (http://www.unoc.net/a/uidentd/) works though.
Tom
--
T h o m a s Z e h e t b a u e r ( TZ251 )
PGP encrypted mail preferred - KeyID 96FFCB89
finger thomasz at hostmaster.org for key
Chaos is the only form of life, order was caused by the Nazis and millions died!
- Peter Wenzl
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 481 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20041019/2d9c68e4/attachment-0001.sig>
More information about the fedora-list
mailing list