[postfix-es] Re: Hotmail DAV vulnerability used for Spam injection
José Luis Tallón
jltallon en adv-solutions.net
Dom Jun 8 17:39:41 CEST 2003
At 16:36 08/06/2003 +0200, you wrote:
>José Luis Tallón wrote:
>
>>Hi all. I have just learnt about a vulnerability in Hotmail DAV service.
>>Read the full story at http://www.unicom.com/chrome/a/000262.html.
>>Guessing we might see a surge in UCE coming from Hotmail ( one of the
>>comments claim a 2200% increase in the last couple of months or so ) and
>>not knowing if you are already aware about it, i decided to send the link.
>>
>>Meanwhile, I have quickly grafted a PCRE to block it ( might contain
>>errors ):
>>/etc/postfix/body_checks.pcre
>>/^Received: from (:?\d{1,3}\.)+(:?xxx\.)+ by (.+)\.hotmail\.com with
>>DAV;/ REJECT Not
>> that clever trick, man!
>
>This is a Received: header, so why are you checking for it in a file named
>body_checks?
Err..... mistake?
Correct, it should be header_checks :$
>Thanks,
>David
-
Para ENVIAR mensajes a esta lista tienes que estar SUSCRITO a ella.
.
Envía la linea "unsubscribe postfix-es" en el cuerpo de un mensaje
a majordomo en WL0.org para quitarte de la lista.
Más información sobre la lista de distribución Postfix-es