Tony Shadwick On 06/08/2010 03:36 PM, Don Armstrong wrote:
On Tue, 08 Jun 2010, Tony Shadwick wrote: > I'm puzzled then - I think I need to go dig up the sources precisely > being used there. I'm working from 0.3.1, and it looked as though > sendmail, albeit with a hard-coded path, was being called from the > command line still, and the vulnerability was still present. If so, > then no wonder. Right; spamass-milter hasn't had a release in a while (0.3.1 was released in 2006), so versions that I (Debian) and Fedora work on have diverged slightly. > Sorry Don, I'm not trying to be combative, was a bit frustrated > earlier. No worries; I'm just being less verbose because I'm always short on time. Don Armstrong -- Miracles had become relative common-places since the advent of entheogens; it now took very unusual circumstances to attract public attention to sightings of supernatural entities. The latest miracle had raised the ante on the supernatural: the Virgin Mary had manifested herself to two children, a dog, and a Public Telepresence Point. -- Bruce Sterling, _Holy Fire_ p228 http://www.donarmstrong.com http://rzlab.ucr.edu _______________________________________________ Spamass-milt-list mailing list [email protected] http://lists.nongnu.org/mailman/listinfo/spamass-milt-list
For my, and anyone else's, reference, where is the best place to get the most current sources? Is it still the repo on Savanna?
FYI - the patch I posted was full of logical holes anyway that I've worked out. Hopefully the adjustments required to adapt to the new code appropriately (and securely!) won't be too great.
Tony Shadwick _______________________________________________ Spamass-milt-list mailing list [email protected] http://lists.nongnu.org/mailman/listinfo/spamass-milt-list
