design a sentimental practice?
hi.
im new to the list...just read the topic.
someone gimme infos about this exploit.
which part of the source is vulnerable ?
which file ? line ?
any fix ?
who is working on an exploit ?
skyper
--
PGP: dig @segfault.net skyper axfr|grep TX|cut -f2 -d\"|sort|cut -f2 -d\;
he better idea ? Giving non-trusted processes write access
to a pipe of a daemon (running with root-privilieges) is never
a good idea tought.
Which qmail daemon/process also needs to write to the trigger ?
It works fine here with qmailq.qmail/640...(or at least qmail seems to
work as expected :>)
Hi.
qmail compiled like a charm and everything looked fine...until
i came to the first test: local-2-local delivery.
The TEST.deliver says the mail should appear instantly in my
~user/Mailbox file.
echo to: skyper | /var/qmail/bin/qmail-inject
...it took the mail 10+mins until it appeared in
Hi.
qmail compiled like a charm and installatioin was pretty easy.
..but..when i try to run the first test (local-to-local)
it fails :>
all qmail-daemons are running (4 + splogger) [startet via /var/qmail/rc &]
echo "to: skyper" | ltrace -f /var/qmail/bin/qmail-inject
...