Scalix Forums

Skip to content

RedHat security advisory for sendmail

Announcements relating to technical aspects of the Scalix product including FAQs and documentation errata or addendum

Moderator: ScalixSupport

Locked
ScalixSupport
Scalix
Scalix
Posts: 5503
Joined: Thu Mar 25, 2004 8:15 pm

RedHat security advisory for sendmail

Postby ScalixSupport » Wed Mar 22, 2006 12:52 pm

Following are details on a security advisory for users of Redhat and Suse distributions for a potential remote exploit when using sendmail.

The Redhat details can be found at https://rhn.redhat.com/errata/RHSA-2006-0264.html

Details for Suse can be found at http://www.novell.com/linux/security/advisories/2006_17_sendmail.html

For Scalix customers, this shouldn't cause too much concern as, by default, the SMTP Relay is listening on the external IP address and sendmail should only be listening on the localhost ( 127.0.0.1 ) address.

However, the errata will provide a new sendmail.cf and submit.cf with .rpmnew extensions. Usual practice is that customers should analyse the differences between the original and the .rpmnew versions and apply any changes to the .rpmnew version. They should then copy the .rpmnew version over the original.

If you have configured a milter such as SpamAssassin, you will need to re-apply the changes as documented in the technote. Details are at http://www.scalix.com/community/viewtopic.php?t=929.

After copying the .rpmnew version over the original, you should run the Scalix command

Code: Select all

omsendin
to re-apply the Scalix-specific rules.

Once that is complete, restart sendmail with

Code: Select all

/etc/init.d/sendmail restart
.

Customers that are currently using the dual IP address solution from previous SpamAssassin technotes should take the time to read the new technote as there is no longer any need to have that dual IP solution in place. The SMTPFILTER option to smtpd.cfg has been available since 9.4.

If there are any questions, please post them to the forum.

Cheers

Dave


Fedora Core 4 update instructions:

This update can be downloaded from:
http://download.fedora.redhat.com/pub/f ... updates/4/

2f41bf9a76d532bfd18894449b55b4e03fbb69e0 SRPMS/sendmail-8.13.6-0.FC4.1.src.rpm
1f4f77d16904cfaf7eae51d00c0b95d36a067bd3 ppc/sendmail-8.13.6-0.FC4.1.ppc.rpm
1810117898534bc17a2e13b8974bda21d1bacc22 ppc/sendmail-doc-8.13.6-0.FC4.1.ppc.rpm
d3c3dafc635f0b5830eaa84639f5e20c5f19b7bc ppc/sendmail-devel-8.13.6-0.FC4.1.ppc.rpm
7e36bb934ed5520cdfea8fb06f08c1aa693b34e2 ppc/sendmail-cf-8.13.6-0.FC4.1.ppc.rpm
7d3f327c6868a41b42f890466a9cdfc0fdf12666 ppc/debug/sendmail-debuginfo-8.13.6-0.FC4.1.ppc.rpm
0f0fa8a62d665cf4b2c64d40a32a6c7e293fabef x86_64/sendmail-8.13.6-0.FC4.1.x86_64.rpm
ba1c492c9170d93c59569f42d6db98f99bb74ad6 x86_64/sendmail-doc-8.13.6-0.FC4.1.x86_64.rpm
89d9870850e5897ab80d750eab573a35df55da67 x86_64/sendmail-devel-8.13.6-0.FC4.1.x86_64.rpm
25a6aa61aaeb6444cfe2d49ff8e6f38f708df7c3 x86_64/sendmail-cf-8.13.6-0.FC4.1.x86_64.rpm
20925139af12915cac541aeac5245e5bd93a9c66 x86_64/debug/sendmail-debuginfo-8.13.6-0.FC4.1.x86_64.rpm
8a778e471c555d3ef69a81c03f176dee42303ec2 i386/sendmail-8.13.6-0.FC4.1.i386.rpm
8ccf754fb3c3fc97d81d5883c2ccf21c8ed381be i386/sendmail-doc-8.13.6-0.FC4.1.i386.rpm
a65d56ffda4cdc16569755cc4998c169cbb576af i386/sendmail-devel-8.13.6-0.FC4.1.i386.rpm
2d0ad2eec6de626659aa5e0c7d3a66221c2978e4 i386/sendmail-cf-8.13.6-0.FC4.1.i386.rpm
67fd85127ae4edaf73b5decd36364282a1392aca i386/debug/sendmail-debuginfo-8.13.6-0.FC4.1.i386.rpm

This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.

=======================================================================

Suse RPMS:

x86 Platform:

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update ... 3.i586.rpm
06ab5c69929cb50f26f54588f66146b4

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update ... 3.i586.rpm
df6e12d411035bf7ab3ad996f92ac5cf

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update ... 3.i586.rpm
17c91fd6341147c689dc2cd7dc71d911

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update ... 2.i586.rpm
157dfa4779aff534e835215492697cbb

Power PC Platform:

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update ... .3.ppc.rpm
12dc596559ab135dcc338d5783052fa3

x86-64 Platform:

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update ... x86_64.rpm
ef97f8861a09194962a73822cc9fc046

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update ... x86_64.rpm
a3d0e0ee376a474039b03bcc4b5bf424

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update ... x86_64.rpm
ade99a91173e0cc39d0c64c259bc7f33

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/upda ... x86_64.rpm
14e8a55656f88e11a50d732379491922

Sources:

SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update ... .3.src.rpm
94722f948da4436d9b32abf3df26486d

SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update ... .3.src.rpm
e75f7eb0d5aad94141e06a57701f8aa7

SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update ... .3.src.rpm
30ea81965aafb0e7726c7c503ae6838a

SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update ... .2.src.rpm
9fb0bc7806b56efe1049595cf3dbdd95
ftp://ftp.suse.com/pub/suse/x86_64/upda ... .2.src.rpm
15db49b697c161e35c06115e352de985
Top
Locked

Return to “Support Announcements”



Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB® Forum Software © phpBB Limited
 

 

cron