Hi Henrique!
On Tue, 16 Aug 2005, Henrique de Moraes Holschuh wrote:
> Package: bsmtpd
> Version: 2.3pl8b-16
> Severity: grave
> Justification: causes non-serious data loss
> sbsmtp will gladly ignore any error-exit status codes from UUX, and proceed
> to act as if mail was corretly delivered.
>
> If backups are enabled, that means the batch ends up in the bak dir for a
> while, if the admin notices it, no data is lost permanently. Otherwise,
> mail goes to /dev/null without any sort of error messages, anywhere. Unless
> uux is told to do it itself, somehow.
>
> No errors are logged anywhere. They only hint of a problem is found on the
> Debug log.
> This is a ridiculous oversight on sbsmtp. It absolutely *MUST* handle
> errors correctly everywhere. I wonder what else bsmtp tries to call and
> never bothers to check before sending my mail to the bitbucket?
I fully agree with you. I suggest to put bsmtpd itself in the
bitbucket. The code is quite old, hard to read and every time I look
deeper into it, I find some problems in the code like above.
I suggest to rewrite this package from scratch with security and
safety in mind. But I personally don't use UUCP at the moment, so I
don't have the need for this myself.
Maybe some user of bsmtpd would like to patch this, replace this or
adopt the package?
My motivation to work on this package is very limited, maybe we should
remove it from the distribution?
Tschoeeee
Roland
--
* [EMAIL PROTECTED] * http://www.spinnaker.de/ *
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
