Why not just have sendmail run as the user who owns the crontab? I see no credible reason to run it as root. This is fairly simple as do_command and cron_popen are only used to send mail anyway. Doing sanity checks on your input is all well and good but there's no guarantee you will catch everything. - todd
- [RHSA-1999:030-01] Buffer overflow in cron daemon Bill Nottingham
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Olaf Kirch
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Michal Zalewski
- Re: [RHSA-1999:030-01] Buffer overflow in cron da... Todd C. Miller
- Re: [RHSA-1999:030-01] Buffer overflow in cron da... Todd C. Miller
- Re: [RHSA-1999:030-01] Buffer overflow in cro... Kurt Seifried
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Sam Carter
- Re: [RHSA-1999:030-01] Buffer overflow in cron daemon Adam Morrison
