On 2023-10-04, Slavko via Exim-users <exim-users@lists.exim.org> wrote: > Dňa 4. 10. o 8:45 Florian Zumbiehl via Exim-users napísal(a): > >> responses--however, if that recursive resolver is on a different machine >> than exim itself, which probably is a common setup, then an attacker with >> access to the same local network can just send exim faked DNS responses >> ahead of the recursive resolver to exploit the vulnerability. > > Please, do you want to tell, that having resolver on localhost prevents > to exploit this?
It does not prevent the exploit, but to execute the exploit you'd need root permissions, which kind of makes it moot, -- Jasen. 🇺🇦 Слава Україні -- ## subscription configuration (requires account): ## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/ ## unsubscribe (doesn't require an account): ## exim-users-unsubscr...@lists.exim.org ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
