- changed status to resolved
dangerousness for sendmail auth undocumented
Issue #63
resolved
The dangerousness of email auth attacks is twice that of any other attack. This isn't documented. It seems better for the default level to be the same for all services.
sendmailmsg:
SENDMAIL_RELAYDENIED_PREF addr SENDMAIL_RELAYDENIED_SUFF;
| SENDMAIL_AUTHFAILURE_PREF addr SENDMAIL_AUTHFAILURE_SUFF { attack->dangerousness *= 2; } ;
;
Comments (1)
-
- Log in to comment
Fixed in 2884d37, thanks!