[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] How can they do this and how to stop it???

Subject: Re: [cobalt-security] How can they do this and how to stop it???
From: John Bailey <support@xxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 8 Sep 2001 15:20:46 +0100 (BST)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

> > Sep  7 17:17:08 ns sendmail[30573]: RAA30573: Authentication-Warning:
> > ns.xxxxxxxxxxxxxxxxxxx.com: colour set sender to sdjkfk@xxxxxxx using  -f
>
> somebody did run sendmail with the switch "-f" with which you can specify
> another sender address than user@xxxxxxxxxxxxxxx This can be done in the
> shell, or from a script.

As a footnote to this, the file

'/etc/mail/sendmail.ct'

dictates which users are allowed to use the '-f' switch.

Regards,

John

References:
- Re: [cobalt-security] How can they do this and how to stop it???
  - From: Michael Stauber

Prev by Date: [cobalt-security] Interpreting Log Files?
Next by Date: Re: [cobalt-security] Interpreting Log Files?
Previous by thread: Re: [cobalt-security] How can they do this and how to stop it???
Next by thread: [cobalt-security] Interpreting Log Files?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index