>>>>> "VGI" == Vladimir G Ivanovic <[EMAIL PROTECTED]> writes:
VGI> What exactly are you suggesting? That we all turn off sendmail because
VGI> of some as yet unknown vunerablity?
I do not believe that you could infer that from my message, unless you are
purposefully trying to distort what I wrote. If you wish to have a
discussion, kindly do not attempt to put words in my mouth.
For the vast majority of installs, there is no point in having Sendmail
listen to the outside world. To have it turned on when it is not needed is
unnecessary exposure. To have it turned on when it is needed is necessary
exposure. Red Hat, being conscious of security, agrees with me that
unnecessary exposure is a bad thing in an imperfect world, and kindly saves
me the trouble of having to turn off external listening on the scads of
boxes I install which benefit from having a local MTA but certainly should
not be listening to SMTP from the world at large. The cost is only that I
must actually enable it on the handful of machines which need it, while the
benefit is that my exposure to a potential Sendmail remote exploit is
reduced from many machines to some small number. I am confused that anyone
would argue that this cost is too high.
VGI> BTW, do you receive these Red Hat Security Alerts? You'll have to have
VGI> sendmail working to receive them ;-)
Of course I receive the security alerts, as I am perfectly capable of
enabling mail serving functionality on machines which need it. You don't
seem to have made a point, though.
- J<
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
