Dear Qpopper fans:
My question is relative to the particular and curios feature 'PopSend' of Eudora and Qpopper. I use this feature to send from my mobile computer, and works really fine.
However, PopSend is completely undocumented in the Qpopper guide, or the FAQs, and even if you make a search on Google about it you find no descriptive matches.
What I want to know is:
1) Has anyone with a good knowledge of security (not as mine :-) thought about that popsend feature could be used for malicious people to execute some code in the system. Is it possible to send a buffer overflow to Qpopper, when invoking sendmail, that can compromise security?
2) What does exactly invoke Qpopper? Makes a temporary file with the message, pipes to sendmail... ??�?�?
3) How can popsend feature on qpopper, if wanted, be COMPLETELY disabled? Need to recompile qpopper? What lines or modules should be commented out or deleted?
Thanks all for your time,
NETVECTOR - Business & Residential Internet Services
C/ Barberes, 12 3-B Tel: +34 902 190 364
03570 La Vila Joyosa Fax: +34 966 850 298
Valencia - SPAIN Mail: [EMAIL PROTECTED]
PGP key available http://www.netvector.net
_________________________________________________________
