Contributed by jose on from the crypto-verify dept.
"the sendmail package version 8.12.6 contains an openssh like trojan. this issue is on the cert site at CA-2002-28 . is openbsd-current sendmail source infected with this trojan?"OpenBSD shouldn't be affected by this as only every now and then the Sendmail sources are updated. However, some admins who used home rolled Sendmail installations may be affected. Note that the modified distfile was up and available for several days (unlike the OpenSSH Trojan, which was fixed in under a day).
(Comments are closed)