Language Selection

English French German Italian Portuguese Spanish

Sendmail flaw opens door to intruders

Filed under
Security

A serious flaw exists in certain versions of the popular Sendmail open-source and commercial e-mail software, but fixes are available, researchers said Wednesday.

The vulnerability, which was reported by Mark Dowd at Internet Security Systems, could allow a remote attacker to take control of a PC. To do this, the intruder would send arbitrary code at carefully crafted time intervals to the SMTP mail server, according to alerts from security providers ISS and FrSirt.

An attack could interfere with or intercept mail delivery, permit the intruder to tamper with other programs and data on the vulnerable system, and potentially provide access to other systems on the affected machine's network.

The flaw relates to all Linux- and Unix-based versions of Sendmail 8 up to version 8.12.6.

Full Story.

More in Tux Machines

I Switched (Back) Over To Fedora As My Main OS & It's Going Great!

Before this long stint with Ubuntu on my main system, I was using Fedora (Core) and before that was openSUSE, Mandrake, and others. I stopped using Fedora (Core) due to some of the releases being less reliable than others with at the time less of a focus on shipping quality releases and at times just feeling like a dirty testing ground for RHEL. With being very pleased with Fedora 20 and Fedora 21 on the many test systems around the office, I decided to give Fedora another go on my main system. I've also been very interested in Fedora.Next and how Fedora 22 is shaping up. Fedora these days seems to be back on a solid footing for end-users with a bright future ahead; Fedora 22 might even ship on time for a change while not sacrificing quality! Fedora 21 brings back a lot of good memories for me of the early Fedora days. Read more

Elementary Extensions for Python-EFL

For those who are unaware the Enlightenment Foundation Libraries and Elementary are the tools that power the Enlightenment desktop and a growing number of other applications. To learn more about getting started with Elementary and python you should check out the full API reference here, the examples on git, or stop by #e.py on Freenode. I have been working on a number of small applications using Elementary. While building these applications I found myself reusing a few of the same gadgets in different places, so I had the idea others might find some of them useful as well. Read more

‘Enterprise customers are now more willing to implement open source’

Jim Whitehurst expects India to play a larger role in NYSE-listed Red Hat’s global strategy, thanks to the rapid pace of infrastructure creation. “When a new system’s put into place, it’s increasingly likely that it may be built on open source. We like places where there is a lot of infrastructure going in,” Whitehurst, President and Chief Executive Officer, Red Hat, said. Red Hat is the world’s largest commercial distributor of the open source-based Linux operating system. Open source denotes software for which the original source code is made freely available and may be redistributed and modified. In an interaction with BusinessLine, Whitehurst throws light on the opportunities in the Indian marketplace for open source. He also explains why the company is keen to increasingly move more support functions to India. Read more

The Navy's Newest Linux-Powered Command Center Is Right Out Of Star Trek

The DDG-1000 Zumwalt Class Destroyer could very well revolutionize the way the Navy does its surface warfare business. One of its biggest innovations is ditching the cramped, darkly lit Combat Information Center (CIC), a fixture for many decades on past USN combat ships, and replacing it with the state-of-the-art, spacious, Star Trek bridge-like Ship's Mission Center. Read more