Zabezpeceni SendMailu

[Petr Novotny]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 7 Aug 00, at 14:05, Ladislav Šolc wrote:

> Dobry den,
> kolega mi otestoval PC security scannerem a zjistil nasleduji chybu v
> konfiguraci sendmailu:
>
> It was possible to crash the remote SMTP server by opening a great
> amount of sockets on it.

Hm. To je sakra chytry scanner, kdyz pozna, ze nejaka aplikace
spadla. Jak se to projevuje? (Cti: Jaky je rozdil od stavu, kdy
sendmail detekuje vysoky load stroje, a prestane prijimat nove connections?)

> Nevite jak to opravit ?

1. Nepouzivat sendmail.
2. Pouzit jiny scanner.
3. http://www.sendmail.org/m4/tweakingoptions.html, zejmena polozky
confQUEUE_LA, confREFUSE_LA,
confMAX_DAEMON_CHILDREN,
confCONNECTION_RATE_THROTTLE. Udelat novy sendmail.cf,
HUPnout sendmail.


-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2 -- QDPGP 2.60
Comment: http://community.wow.net/grt/qdpgp.html

iQA/AwUBOY6YpFMwP8g7qbw/EQIvDwCfUsSn/8Vv8EbyvZEiW6UUGOGiPDQAoI3X
hNWwuu7sGxxqXne2u6wb3fVR
=e8EE
-----END PGP SIGNATURE-----