drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Fehlerhafte Zugriffsrechte in ssmtp
| Name: |
Fehlerhafte Zugriffsrechte in ssmtp |
|
| ID: |
FEDORA-2013-10128 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 17 |
|
| Datum: |
Do, 4. Juli 2013, 08:43 |
|
| Referenzen: |
Keine Angabe |
|
| Applikationen: |
ssmtp |
|
Originalnachricht |
Name : ssmtp
Product : Fedora 17
Version : 2.61
Release : 20.fc17
URL : http://packages.debian.org/stable/mail/ssmtp
Summary : Extremely simple MTA to get mail off the system to a Mailhub
Description :
A secure, effective and simple way of getting mail off a system to your mail
hub. It contains no suid-binaries or other dangerous things - no mail spool
to poke around in, and no daemons running in the background. Mail is simply
forwarded to the configured mailhost. Extremely easy configuration.
WARNING: the above is all it does; it does not receive mail nor manage queues.
That belongs on a mail hub with a system administrator.
-------------------------------------------------------------------------------
-
Update Information:
Removes world read access from the configuration file thus prohibiting reading
of the password stored inside it.
-------------------------------------------------------------------------------
-
ChangeLog:
* Tue Jun 4 2013 Manuel "lonely wolf" Wolfshant
<wolfy@fedoraproject.org> - 2.61-20
- remove world readable permissions of the config file (#962988)
* Sun Oct 14 2012 Manuel "lonely wolf" Wolfshant
<wolfy@fedoraproject.org> - 2.61-19
- Optional separation of TLS client key and certificate files
- Add patch enabling verification of TLS server ( #864894 )
- Correct %description and the source in order to reflect that sSMTP expands
aliases
which are read from a plain text file
* Sat Jun 30 2012 Manuel "lonely wolf" Wolfshant
<wolfy@fedoraproject.org> - 2.61-18
- Apply patch to fix addition of garbage at end of attachments
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #962988 - ssmtp.conf is world readble which is a security risk when
using a password authentication
https://bugzilla.redhat.com/show_bug.cgi?id=962988
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update ssmtp' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|
