http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/?utm_source=rss&utm_medium=rss&utm_campaign=security-issue-in-djbdns-confirmed News and opinions about security, the internet and more Sat, 05 Jun 2010 08:04:47 +0000 hourly 1 http://wordpress.org/?v=3.0 http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/comment-page-1/#comment-1007 Ishwor’s munge, some drivels.. » Programmers making changes Thu, 19 Mar 2009 14:22:34 +0000 http://securityandthe.net/?p=1079#comment-1007 [...] news, then you’d also know that djb awarded some Matthew Dempskey the promised $1,000 for finding a security bug in djbdns. The patch’s a [...] [...] news, then you’d also know that djb awarded some Matthew Dempskey the promised $1,000 for finding a security bug in djbdns. The patch’s a [...]

]]> http://securityandthe.net/2009/03/05/security-issue-in-djbdns-confirmed/comment-page-1/#comment-963 Jonas B. Sun, 08 Mar 2009 10:38:34 +0000 http://securityandthe.net/?p=1079#comment-963 To be fair, you're suppsed to run qmail smtpd process under ulimit. So I have to side with DJB on that one: It is clearly a bug but not exploitable on a proper installation. To be fair, you’re suppsed to run qmail smtpd process under ulimit. So I have to side with DJB on that one: It is clearly a bug but not exploitable on a proper installation.

]]>