hubcap@hubcap.UUCP (Mike Marshall) (11/08/88)
ULTRIX 2.X is delivered with fingerd turned off and sendmail configured sans debug... Thanks, DEC Mike Marshall hubcap@hubcap.clemson.edu
bin@rhesus.primate.wisc.edu (Brain in Neutral) (11/08/88)
From article <3480@hubcap.UUCP>, by hubcap@hubcap.UUCP (Mike Marshall): > ULTRIX 2.X is delivered with fingerd turned off and sendmail configured sans > debug... > > Thanks, DEC And without a sendmail that understands name servers or MX records, so you have to throw it away anyway and install Berkeley sendmail if you want one that understands more than /etc/hosts. Thanks, DEC? Paul DuBois dubois@primate.wisc.edu rhesus!dubois
vixie@decwrl.dec.com (Paul Vixie) (11/10/88)
# And without a sendmail that understands name servers or MX records, # so you have to throw it away anyway and install Berkeley sendmail if # you want one that understands more than /etc/hosts. # # Thanks, DEC? I'm not a company spokesperson, mind you, but... ...fixed in 3.0. -- Paul Vixie Work: vixie@decwrl.dec.com decwrl!vixie +1 415 853 6600 Play: paul@vixie.sf.ca.us vixie!paul +1 415 864 7013
paul@uxc.cso.uiuc.edu (11/12/88)
># And without a sendmail that understands name servers or MX records, ># so you have to throw it away anyway and install Berkeley sendmail if ># you want one that understands more than /etc/hosts. ># ># Thanks, DEC? > >I'm not a company spokesperson, mind you, but... > >...fixed in 3.0. I hope it's fixed all the way. The 3.0 systems inside DEC had BOTH the sendmail and fingerd bugs. I bet there were people scrambling Thursday... Paul Pomes UofIllinois
vixie@decwrl.dec.com (Paul Vixie) (11/12/88)
### [...] you have to throw away Ultrix sendmail and install BSD sendmail [...] ## ...fixed in 3.0. # # I hope it's fixed all the way. The 3.0 systems inside DEC had BOTH the # sendmail and fingerd bugs. I bet there were people scrambling Thursday... Not really. Someone caught it early and battoned down the hatches. We did not have the fingerd bug because our externally reachable machines run fingd which does a bounded read(2) rather than a gets(3). Our sendmail was the BSD 5.59 one with some local hacks and we got a few worms in that way. If we had been running the field test 3.0 sendmail, we would have been completely immune. (STILL not a company spokesman, btw.) -- Paul Vixie Work: vixie@decwrl.dec.com decwrl!vixie +1 415 853 6600 Play: paul@vixie.sf.ca.us vixie!paul +1 415 864 7013