Alan McConnell via plug on 6 Sep 2019 08:25:57 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Exim oops

On Fri, Sep 06, 2019 at 10:18:09AM -0400, jeff via plug wrote:
> Tracked as CVE-2019-15846, the security vulnerability only affects Exim
> servers that accept TLS connections, potentially allowing attackers to gain
> root-level access to the system "by sending an SNI ending in a
> backslash-null sequence during the initial TLS handshake."
  	Many thanks for posting this, Jeff.  I have a perhaps
	stupid question:  I use exim4 as my MTA, called by my
	MUA mutt.  I wouldn't call this use of exim(4) a
	server; am I wrong?

	Another way to ask this question: is there a difference
	between exim4, the MTA, and exim, the email server
	referred to in your post?

TIA for any and all information!

Anxious Alan

Alan McConnell :
       We do not know one millionth of one percent about anything.(Edison)
       Education cuts don't heal.       
Philadelphia Linux Users Group         --
Announcements -
General Discussion  --