[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Sendmail Log Message

Subject: Re: [cobalt-security] Sendmail Log Message
From: David Lucas <david@xxxxxxxxxxxxxxxx>
Date: Fri, 27 Jun 2003 09:16:39 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 08:54 AM 6/27/2003, you wrote:

At 02:28 PM 6/27/2003 +0100, you wrote:
Recently I have started to get this log report
sendmail: Truncated MIME Content-Disposition header due to field size(possible
attack)

Is this something that I can prevent and stop? I'm running fully patched raq3
and raq4r and message appears in both logfiles.
It is the SoBig.E virus being sent to user's mailboxes. It hit my mailserver as quickly as I read the news about it yesterday and numeroustimes. Interestingly, the news about the virus does not report that it issending an oversize mail header. Is this an indication that it wasdesigned to take advantage of the sendmail vulnerability that we patched afew months ago? You did patch for the oversized header vulnerabilitydidn't you?



Was that a cobalt patch or a non-cobalt patch?



--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.

Follow-Ups:
- Re: [cobalt-security] Sendmail Log Message
  - From: DNSAdmin

References:
- [cobalt-security] Sendmail Log Message
  - From: Jon
- Re: [cobalt-security] Sendmail Log Message
  - From: Admin

Prev by Date: Re: [cobalt-security] Sendmail Log Message
Next by Date: [cobalt-security] RE: Lcap
Previous by thread: Re: [cobalt-security] Sendmail Log Message
Next by thread: Re: [cobalt-security] Sendmail Log Message

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index