Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
General
cancel
Showing results for 
Search instead for 
Did you mean: 

SSRT3469 Potential Security Vulnerability in sendmail (rev.2)

Berlene Herren
Honored Contributor

SSRT3469 Potential Security Vulnerability in sendmail (rev.2)

**REVISED 02**
Restart sendmail.

If you were running sendmail before the killsm command above, you can now restart it with the --> following command (for HP-UX, not VVOS):
/sbin/init.d/sendmail start

--> Note: Do not execute the command above for VVOS 11.04 --> If you are running VVOS (Virtual Vault operating System) --> please do not start the sendmail daemon. VVOS support does --> not allow for a sendmail daemon to be running.

Note: If you receive either of the following messages after applying the fix, please follow the recommended action.

warning: /etc/mail/aliases has world read or write permission. This is unsafe.
warning: /etc/mail/aliases.dbhas world read or
write permission. This is unsafe.


Recommended action

Execute the following commands.

chmod 640 /etc/mail/aliases
chmod 640 /etc/mail/aliases.db
sendmail -bi


Berlene
http://www.mindspring.com/~bkherren/dobes/index.htm