dangerousness for sendmail auth undocumented

Create issue
Issue #63 resolved
Former user created an issue

The dangerousness of email auth attacks is twice that of any other attack. This isn't documented. It seems better for the default level to be the same for all services.

sendmailmsg:
   SENDMAIL_RELAYDENIED_PREF addr SENDMAIL_RELAYDENIED_SUFF;
   | SENDMAIL_AUTHFAILURE_PREF addr SENDMAIL_AUTHFAILURE_SUFF { attack->dangerousness *= 2; } ;
   ;

Comments (1)

  1. Log in to comment