Another Reason To Use Postfix
A new vulnerability was discovered in Version 8 of Sendmail yesterday. See the Advisory over at ISS. This has got to be the best part though:
In order to exploit this vulnerability, an attacker simply needs to be
able to connect to sendmail SMTP server. This is a multi-shot exploit,
meaning the attacker can attempt to exploit it an indefinite amount
of times, since sendmail spawns a new process for each connected
client.
That my friends, is just awesome. So think every Sendmail box there is, what’s the point of a mail server if you can’t communicate via port 25?