[3058] in bugtraq
Re: your mail
daemon@ATHENA.MIT.EDU (neill)
Mon Aug 5 16:22:28 1996
Date: Mon, 5 Aug 1996 15:42:28 -0400
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: neill <neill@en.com>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199608051434.IAA09260@ncar.ucar.EDU> from "Greg Woods" at Aug 5,
96 08:34:30 am
>
> > /tmp/yo put in your .forward file:
> >
> > "|/tmp/yo"F
>
> This is exactly the kind of attack that can be easily prevented by
> installing "smrsh" (which is now distributed with more recent sendmail
> source).
Also, this is the type of attack that can be prevented by not using
sendmail at all..
BTW - someone mentioned a possible insecurity with smrsh.. que?
