|
Subject: |
RE: response to questions regarding Rapt |
|
From: |
dcarter @
inmar-inc .
com (Carter, David) |
|
Organization: |
Inmar Enterprises Inc., Winston-Salem, North Carolina, 27102 USA |
|
Date: |
Sun, 29 Oct 1995 12:36:31 -0500 |
|
To: |
akirby @
raptor .
com (Alan Kirby), Firewalls @
GreatCircle .
COM (Firewalls) |
|
Cc: |
brian .
brizendine @
inmar-inc .
com (Brizendine, Brian), doug .
bordner @
inmar-inc .
com (Bordner, Doug), dave .
kutlenios @
cms .
inmar-inc .
com (Kutlenios, Dave) |
Can someone please expound on the "Raptor-supplied tools to pass mail"
mentioned in this post? We use Raptor's Eagle, but run the HP-supplied
sendmail version on the firewall, and it forwards to our internal mail
gateway. How big a risk does this pose? Can anyone tell me where to find
compiled binaries (for HP/UX 9.x) of the most current sendmail?
Thanks for any & all enlightenment!
----------
From: Alan Kirby[SMTP:akirby @
raptor .
com]
Sent: Thursday, October 26, 1995 7:13 PM
To: Firewalls
Subject: response to questions regarding Raptor
Sender: firewalls-owner @
GreatCircle .
COM
Precedence: bulk
This is in response to an October 24 posting to the Firewalls mailing
list.
The individual who posted the question is evaluating a Raptor firewall,
and
posed a question to this community regarding any known security
weaknesses
in the Raptor system.
In response to that posting, there was a question raised specifically
about
the use of an outdated version of Sendmail to pass mail through the
firewall.
There are widely known bugs in older versions of Sendmail. In fact,
Raptor
recommends to its customers to use Raptor supplied tools to pass mail
rather
than Sendmail. If Sendmail is to be used to pass mail, Raptor recommends
to
our customers that they install the latest version (Version 8.7.1) which
addresses known bugs.
Raptor takes any potential problem very seriously. Over the past 48
hours,
Raptor has given this the highest possible priority. Our technical
support
organization has aggressively pursued every available channel of
information
to attempt to substantiate the rumor. We have been unable to do so. To
our
knowledge, there are no substantiated reports by users of any break-ins
due
to architectural deficiencies or bugs in the Raptor product.
If anyone IS aware of information to the contrary, Raptor is extremely
interested in uncovering any problem. We will respond to any such
problem
immediately.
Alan Kirby,
VP Engineering
---
D. David Carter, Director of Systems Architecture
Inmar Enterprises, Inc., Winston-Salem, NC
dcarter @
inmar-inc .
com
|
|
