[100423] in RedHat Linux List
Re: how secure are sendmail and POP3 on Red Hat?
daemon@ATHENA.MIT.EDU (Alain Terriault)
Fri Nov 20 13:17:05 1998
Date: Fri, 20 Nov 1998 13:10:37 -0500
From: Alain Terriault <alaint@music.mcgill.ca>
To: redhat-list@redhat.com
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
>
> > What about POP3? Are there "safer" versions of these services that
> > are in wide use on Linux?
>
> The imap rpm seems to be solid. The previous version suffered from a
> buffer overflow exploit which was fixed in the current release and
> I've not heard any negative reports at all. I use it. (Note: the
> imap rpm aldo contains the standard pop daemons for Linux).
Does the imapd support encryption? .. or is it still a clear text transaction
between the server and the client.
The last time I check I could read anybody passwd from the /dev/eth0 when they
were reading their mail .. fortunately you can only sniff on your local segment,
but still.
Alain
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com http://archive.redhat.com
To unsubscribe: mail redhat-list-request@redhat.com with
"unsubscribe" as the Subject.
