Messaging
cancel
Showing results for 
Search instead for 
Did you mean: 

SSRT3469 Potential Security Vulnerability in sendmail (rev.2)

Berlene Herren
Honored Contributor

SSRT3469 Potential Security Vulnerability in sendmail (rev.2)

**REVISED 02**
Restart sendmail.

If you were running sendmail before the killsm command above, you can now restart it with the --> following command (for HP-UX, not VVOS):
/sbin/init.d/sendmail start

--> Note: Do not execute the command above for VVOS 11.04 --> If you are running VVOS (Virtual Vault operating System) --> please do not start the sendmail daemon. VVOS support does --> not allow for a sendmail daemon to be running.

Note: If you receive either of the following messages after applying the fix, please follow the recommended action.

warning: /etc/mail/aliases has world read or write permission. This is unsafe.
warning: /etc/mail/aliases.dbhas world read or
write permission. This is unsafe.


Recommended action

Execute the following commands.

chmod 640 /etc/mail/aliases
chmod 640 /etc/mail/aliases.db
sendmail -bi


Berlene
http://www.mindspring.com/~bkherren/dobes/index.htm