Hi
I scanned myself online using nessus/nmap (scanning my dynamic IP) and received an
email from nessus stating:
Your MTA is vulnerable to the 'mailto: files' attack. Is this a hole or a false
positive because I,m scanning myself? Any ideas how to fix this?
Thanks in advance
Bob
--
I fish
On Sat, Jun 03, 2000 at 04:09:21AM +, Jim Breton wrote:
On Fri, Jun 02, 2000 at 10:58:51PM -0500, Bob Waskosky wrote:
Your MTA is vulnerable to the 'mailto: files' attack. Is this a hole or a false
positive because I,m scanning myself? Any ideas how to fix this?
I believe Nessus
On Sat, Jun 03, 2000 at 04:29:07AM +, Jim Breton wrote:
On Fri, Jun 02, 2000 at 11:17:30PM -0500, Bob Waskosky wrote:
Is this a hole and how would I plug it?
No it's not a hole. It would only be a security concern if your mailer
were to allow the message to actually be piped
Bob Waskosky writes:
rcpt to: | programname
Is this a hole and how would I plug it?
It's not a hole. It's someone trying to send mail to the email
address "| programname". The vertical bar is odd, yes. The space is
even more unusual, yes. But a security hole? No. It would b
I think the example line in your reply triggered a virus alert.
I received an email stating the reply I sent possibly contained a password stealing
virus. I hope that was just triggered by your example. I don't believe I have any
viruses on this machine.
--
I fish therefore I lie.
Bob
