Send cobalt-security mailing list submissions to
cobalt-security@xxxxxxxxxxxxxxx
To subscribe or unsubscribe via the World Wide Web, visit
http://list.cobalt.com/mailman/listinfo/cobalt-security
or, via email, send a message with subject or body 'help' to
cobalt-security-request@xxxxxxxxxxxxxxx
You can reach the person managing the list at
cobalt-security-admin@xxxxxxxxxxxxxxx
When replying, please edit your Subject line so it is more specific
than "Re: Contents of cobalt-security digest..."
Today's Topics:
1. Re: Remote Sendmail Header Processing Vulnerability (Rashid Abdullah)
2. Remote Sendmail Header Processing Vulnerability (Mail List)
3. RE: Remote Sendmail Header Processing Vulnerability (Goade, Matthew)
4. Remote Sendmail Header Processing Vulnerability (Mail List)
5. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
6. Remote Sendmail Header Processing Vulnerability (Mail List)
7. RE : [cobalt-security] Remote Sendmail Header Processing Vulnerab
ility (Philippe QUINSAC)
8. RE : [cobalt-security] Remote Sendmail Header Processing
Vulnerability (Maximux Filter)
9. Re: RE : [cobalt-security] Remote Sendmail Header Processing
Vulnerability (Bruce Timberlake)
10. Sendmail patch on PkgMaster.com (PkgMaster.com)
11. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
12. Re: Remote Sendmail Header Processing
Vulnerability (Brian Rahill)
13. RE: Sendmail patch on PkgMaster.com (Darryl Koster)
14. Re: Remote Sendmail Header Processing Vulnerability (Alex Busquets)
15. Re: Sendmail patch on PkgMaster.com (Gerald Waugh)
16. Re: Remote Sendmail Header Processing Vulnerability (Jeremy Towne)
17. Re: Remote Sendmail Header Processing Vulnerability (Rashid Abdullah)
18. Re: Remote Sendmail Header Processing Vulnerability (Michael Stauber)
--__--__--
Message: 1
From: "Rashid Abdullah" <webmaster@xxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 10:12:17 -1000
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Your're the Man Michael! Thanks for your continued service to the Cobalt
community.
-Rashid
----- Original Message -----
From: "Michael Stauber" <cobalt@xxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Monday, March 03, 2003 9:39 AM
Subject: Re: [cobalt-security] Remote Sendmail Header Processing
Vulnerability
> > Remote Sendmail Header Processing Vulnerability
> > http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
>
> I just released a PKG file for the RaQ4 which contains a fixed
Sendmail-8.10.2
> with the patch in place to fix the above mentioned vulnerability. That PKG
is
> available here:
>
> http://www.solarspeed.net/downloads/index.php
>
> I'm now working on a PKG for the RaQ550. I'm not yet sure if I want to do
a
> PKG for the RaQ3 and Qube3, though.
>
> --
>
> With best regards,
>
> Michael Stauber
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>
--__--__--
Message: 2
Date: Mon, 03 Mar 2003 15:18:32 -0500
To: cobalt-security@xxxxxxxxxxxxxxx
From: Mail List <maillist@xxxxxxxxxxxx>
Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
I wonder why there's no info on Security Focus about this yet.. Even
sendmail seems lax in their disclosure.. On their site they just says:
>Sendmail 8.12.8 is available; it contains a fix for a critical security
>problem in header parsing discovered by Mark Dowd of ISS X-Force; we thank
>ISS X-Force for bringing this problem to our attention. Sendmail urges all
>users to either upgrade to sendmail 8.12.8 or apply a patch for 8.12.
No other docs on the issue...
On the other hand CERT sure is sending the message loud and clear.. <g>
Thanks Michael for the patch, I'm going to go grap that right now and toss
it on the box..
--__--__--
Message: 3
Subject: RE: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 14:27:49 -0600
From: "Goade, Matthew" <mgoade@xxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Worked great on RaQ4r, thanks!
-----Original Message-----
From: Michael Stauber [mailto:cobalt@xxxxxxxxxxxxxx]
Sent: Monday, March 03, 2003 1:39 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Remote Sendmail Header Processing
Vulnerability
> Remote Sendmail Header Processing Vulnerability
> http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
I just released a PKG file for the RaQ4 which contains a fixed
Sendmail-8.10.2
with the patch in place to fix the above mentioned vulnerability. That PKG is
available here:
http://www.solarspeed.net/downloads/index.php
I'm now working on a PKG for the RaQ550. I'm not yet sure if I want to do a
PKG for the RaQ3 and Qube3, though.
--
With best regards,
Michael Stauber
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security
--__--__--
Message: 4
Date: Mon, 03 Mar 2003 15:33:04 -0500
To: cobalt-security@xxxxxxxxxxxxxxx
From: Mail List <maillist@xxxxxxxxxxxx>
Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Michael,
Just a quick question - Is it better to first disable the "Email Server"
via the GUI prior to apply this patch..? Just wondering if it made a
difference.. THANKS!
--__--__--
Message: 5
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Organization: SOLARSPEED.NET
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 21:40:06 +0100
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
> Just a quick question - Is it better to first disable the "Email Server"
> via the GUI prior to apply this patch..? Just wondering if it made a
> difference.. THANKS!
Doesn't make a difference. During the PKG installation sendmail will
automatically be shutdown by the PKG installer. Afterwards it'll be
restarted.
--
With best regards,
Michael Stauber
--__--__--
Message: 6
Date: Mon, 03 Mar 2003 15:57:32 -0500
To: cobalt-security@xxxxxxxxxxxxxxx
From: Mail List <maillist@xxxxxxxxxxxx>
Subject: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
>> Just a quick question - Is it better to first disable the "Email Server"
>> via the GUI prior to apply this patch..? Just wondering if it made a
>> difference.. THANKS!
>Doesn't make a difference. During the PKG installation sendmail will
>automatically be shutdown by the PKG installer. Afterwards it'll be
>restarted.
Went in and worked like a champ on my RaQ3 (uhhh), I mean RaQ4..
Thanks again Michael!
--__--__--
Message: 7
From: Philippe QUINSAC <philippe@xxxxxxxxxxxxxx>
To: "'cobalt-security@xxxxxxxxxxxxxxx'" <cobalt-security@xxxxxxxxxxxxxxx>
Subject: RE : [cobalt-security] Remote Sendmail Header Processing Vulnerab
ility
Date: Mon, 3 Mar 2003 22:38:16 +0100
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Done on my raq's. Works fine. "Comme d'habitude"
Thanks for all Michael.
> -----Message d'origine-----
> De : Michael Stauber [mailto:cobalt@xxxxxxxxxxxxxx]
> Envoyé : lundi 3 mars 2003 21:40
> À : cobalt-security@xxxxxxxxxxxxxxx
> Objet : Re: [cobalt-security] Remote Sendmail Header
> Processing Vulnerability
>
>
> > Just a quick question - Is it better to first disable the "Email
> > Server" via the GUI prior to apply this patch..? Just
> wondering if it
> > made a difference.. THANKS!
>
> Doesn't make a difference. During the PKG installation sendmail will
> automatically be shutdown by the PKG installer. Afterwards it'll be
> restarted.
>
> --
>
> With best regards,
>
> Michael Stauber
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt> -security
>
--__--__--
Message: 8
Date: Mon, 3 Mar 2003 13:54:20 -0800 (PST)
From: Maximux Filter <maximux420@xxxxxxxxx>
Subject: RE : [cobalt-security] Remote Sendmail Header Processing
Vulnerability
To: cobalt-security@xxxxxxxxxxxxxxx
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Great job and as always thanks for your excellent
work, Michael -
Quick Question: Does this package need the use of
gcc?
Thanks,
Max
__________________________________________________
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/
--__--__--
Message: 9
From: Bruce Timberlake <bruce@xxxxxxxxxx>
Organization: BRTNet.org
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: RE : [cobalt-security] Remote Sendmail Header Processing
Vulnerability
Date: Mon, 3 Mar 2003 14:03:43 -0800
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> Great job and as always thanks for your excellent
> work, Michael
I second that!
> Quick Question: Does this package need the use of
> gcc?
No, it's just installing a new RPM.
- --
Bruce Timberlake
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQE+Y9E/vLA2hUZ9kgwRAqLKAJwPzcoBCWGCRseCz2EWpktQGlHLBACdH1Um
teyzaN4EM1aoIPcr+C4stOU=
=oMBy
-----END PGP SIGNATURE-----
--__--__--
Message: 10
From: "PkgMaster.com" <webmaster@xxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Date: Mon, 3 Mar 2003 23:46:54 +0100
Subject: [cobalt-security] Sendmail patch on PkgMaster.com
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Sorry, only for RaQ4 at the moment
--__--__--
Message: 11
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Organization: SOLARSPEED.NET
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Tue, 4 Mar 2003 03:34:50 +0100
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Hi all,
I just rolled up a RaQ3 and RaQ550 package as well:
http://www.solarspeed.net/downloads/index.php
Note: The RaQ3 package cannot be uninstalled.
Qube3 is next. Expect it in a couple of hours.
--
With best regards,
Michael Stauber
--__--__--
Message: 12
Date: Mon, 03 Mar 2003 21:43:22 -0500
To: cobalt-security@xxxxxxxxxxxxxxx
From: Brian Rahill <cobalt@xxxxxxxxxxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] Remote Sendmail Header Processing
Vulnerability
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
At 03:34 AM 3/4/2003 +0100, you wrote:
>I just rolled up a RaQ3 and RaQ550 package as well:
>
> http://www.solarspeed.net/downloads/index.phpj
Thanks Michael! Installed without a glitch on a 550.
Brian
--__--__--
Message: 13
From: "Darryl Koster" <admin@xxxxxxxxxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: RE: [cobalt-security] Sendmail patch on PkgMaster.com
Date: Mon, 3 Mar 2003 22:01:15 -0500
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Damn,
I deleted that link for the download for the RaQ4, can you resend it.
Thanks
Darryl Koster
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Status Technologies Inc. President/Owner
"Let Us Help You Get The Status You Deserve!"
http://www.statustechnologies.com
P: (905) 435-0145 TF (NA) 888-909-9004 F: (905) 435-0873
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of PkgMaster.com
Sent: Monday, March 03, 2003 5:47 PM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: [cobalt-security] Sendmail patch on PkgMaster.com
Sorry, only for RaQ4 at the moment
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security
--__--__--
Message: 14
From: "Alex Busquets" <alex@xxxxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Tue, 4 Mar 2003 04:10:08 +0100
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Thanks, I also have good install.
Atentament:
Alexandre Busquets Triola
alex@xxxxxxx
www.3v2.net
3v2.net - TRIPLEVEDOBLE - Serveis d'internet
----- Original Message -----
From: "Michael Stauber" <cobalt@xxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Tuesday, March 04, 2003 3:34 AM
Subject: Re: [cobalt-security] Remote Sendmail Header Processing
Vulnerability
> Hi all,
>
> I just rolled up a RaQ3 and RaQ550 package as well:
>
> http://www.solarspeed.net/downloads/index.php
>
> Note: The RaQ3 package cannot be uninstalled.
>
> Qube3 is next. Expect it in a couple of hours.
>
> --
>
> With best regards,
>
> Michael Stauber
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>
--__--__--
Message: 15
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
Organization: Front Street Networks LLC
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Sendmail patch on PkgMaster.com
Date: Mon, 3 Mar 2003 22:14:15 -0500
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
On Monday 03 March 2003 22:01, Darryl Koster wrote:
> Damn,
>
> I deleted that link for the download for the RaQ4, can you resend it.
>
> Thanks
>
http://pkgmaster.com/i386/RaQ4-Sendmail-8.10.2-PM1.pkg
Gerald
--
http://frontstreetnetworks.com | http://store.raqware.com
Front Street Networks LLC | Phone: 203-785-0699
229 Front Street, Ste #C, New Haven, CT 06513-3203
--__--__--
Message: 16
From: "Jeremy Towne" <jtowne@xxxxxxxxxxxxxxxxx>
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 23:21:18 -0400
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
If you get this than the Raq3 install was a good one for me too.
Jeremy Towne
Contact Turtlehut.com for all of your webhosting needs.
---------- Original Message -----------
From: "Alex Busquets" <alex@xxxxxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Tue, 4 Mar 2003 04:10:08 +0100
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
> Thanks, I also have good install.
>
> Atentament:
> Alexandre Busquets Triola
> alex@xxxxxxx
> www.3v2.net
> 3v2.net - TRIPLEVEDOBLE - Serveis d'internet
>
> ----- Original Message -----
> From: "Michael Stauber" <cobalt@xxxxxxxxxxxxxx>
> To: <cobalt-security@xxxxxxxxxxxxxxx>
> Sent: Tuesday, March 04, 2003 3:34 AM
> Subject: Re: [cobalt-security] Remote Sendmail Header Processing
> Vulnerability
>
> > Hi all,
> >
> > I just rolled up a RaQ3 and RaQ550 package as well:
> >
> > http://www.solarspeed.net/downloads/index.php
> >
> > Note: The RaQ3 package cannot be uninstalled.
> >
> > Qube3 is next. Expect it in a couple of hours.
> >
> > --
> >
> > With best regards,
> >
> > Michael Stauber
> >
> > _______________________________________________
> > cobalt-security mailing list
> > cobalt-security@xxxxxxxxxxxxxxx
> > http://list.cobalt.com/mailman/listinfo/cobalt-security
> >
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
------- End of Original Message -------
--__--__--
Message: 17
From: "Rashid Abdullah" <webmaster@xxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Mon, 3 Mar 2003 17:22:55 -1000
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Michael,
I got an error installing.
-Rashid
----- Original Message -----
From: "Michael Stauber" <cobalt@xxxxxxxxxxxxxx>
To: <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Monday, March 03, 2003 4:34 PM
Subject: Re: [cobalt-security] Remote Sendmail Header Processing
Vulnerability
> Hi all,
>
> I just rolled up a RaQ3 and RaQ550 package as well:
>
> http://www.solarspeed.net/downloads/index.php
>
> Note: The RaQ3 package cannot be uninstalled.
>
> Qube3 is next. Expect it in a couple of hours.
>
> --
>
> With best regards,
>
> Michael Stauber
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>
--__--__--
Message: 18
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Organization: SOLARSPEED.NET
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Date: Tue, 4 Mar 2003 04:32:11 +0100
Reply-To: cobalt-security@xxxxxxxxxxxxxxx
Hi Rashid,
> I got an error installing.
The RaQ3 package? If it is a RaQ3, then do you have the "OS update 5.0"
installed, too? If not, then that's most likely the problem.
--
With best regards,
Michael Stauber
--__--__--
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security
End of cobalt-security Digest