Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

Debian: sendmail SSL certificate

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) Debian: sendmail SSL certificate
# 1  
Old 01-31-2010
Debian: sendmail SSL certificate
LinuxSecurity.com: It was discovered that sendmail, a Mail Transport Agent, does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate. This allows an attacker to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and to bypass intended access restrictions via a crafted client certificate issued by a legitimate Certification Authority.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Web Development

CronJobs issues after SSL certificate

Hello! I had a cron job running on my website, activating a php script every friday. The Php script just activated another photo to add in the gallery. It worked fine until I got an SSL certificate for my website, then everything broke. This was the command before: lynx -source... (0 Replies)
Discussion started by: AGDesign
0 Replies

2. Cybersecurity

SSL Certificate Stores

Hey everyone, I'm trying to get a lay of the land for OS and Application Certificate Stores. Can someone confirm that I have this concept right? If the application you're using say Firefox has it's own trusted CA store, it uses that exclusively. So if you're running firefox in Windows, Firefox... (4 Replies)
Discussion started by: Lost in Cyberia
4 Replies

3. Red Hat

SSL certificate generation error 8016

Hi guys, I'm trying to generate a key using the genkey command in centos 6.4 and RHEL6.4, Every thing seems to go cool but I get this error message bad certificate request error -8016 and no key/cert is generated. I don't want use the many openssl(s) commands instead since genkey is a shourtcut... (4 Replies)
Discussion started by: leo_ultra_leo
4 Replies

4. Red Hat

SSL Certificate Renewal on Tomcat

Hi, I want to renew the ssl certificate for one of my application on tomcat without down time. I want to know what would the possible impacts for the users who currently have sessions to the app. Regards, Arumon (1 Reply)
Discussion started by: arumon
1 Replies

5. Web Development

export SSL certificate

we are doing TCP for our systems. I have a working SSL certificate on prodction webserver. Im planning to export it to our DR server for TCP purposes. However when I export based on the procedure below, it doesn't work. When I restart the DR webserver, it still says the certifcate is expired.Any... (1 Reply)
Discussion started by: lhareigh890
1 Replies

6. Cybersecurity

SSL certificate

Hi guys. I have some questions about ssl certificates. I looked at SSL providers and saw that they are providing 2 types of certificates: per server or per domain. my server host name is: srv1.example.com I have a smtp, imap, web server on this box. but all services accessed by different... (1 Reply)
Discussion started by: majid.merkava
1 Replies

7. AIX

Installing SSL certificate on AIX

Hello, I am new in UNIX, and some one asks me to install SSL certificates to allow exchange with an external system. Can someone tell how to install certificate (ex : verisignxxx.cer) on a UNIX server? Many thanks. Tibo (4 Replies)
Discussion started by: tibo51
4 Replies

8. Web Development

SSL certificate

Dear All Anyone know how to issue two different certification on apache virtualhost fyi i have one virtualhost eg 69.192.1.25:443 already signed with verisign how can i configure another virtualhost 69.192.1.25:443 which signing with another certificate which self signing. i search net not... (1 Reply)
Discussion started by: netxus
1 Replies

9. Web Development

SSL Certificate Installation problem

Hello everybody Hope somebody can help me I'm trying to install SSL Certificate on Apache/mod_ssl on Linux with Zend for Oracle. I bought and downloaded certificate from certificate from Network Solutions. Than I followed the instructions to the dot. I created a directory for certificate... (2 Replies)
Discussion started by: Trusevich
2 Replies
Login or Register to Ask a Question

LEARN ABOUT REDHAT

ne_ssl_certificate

NE_SSL_CERTIFICATE(3)						neon API reference					     NE_SSL_CERTIFICATE(3)

NAME

       ne_ssl_certificate, ne_ssl_dname - structures representing SSL certificates

SYNOPSIS

       #include <ne_session.h>

       /* A simplified X.509 distinguished name. */
       typedef struct {
	   const char *country, *state, *locality, *organization;
	   const char *organizationalUnit;
	   const char *commonName;
       } ne_ssl_dname;

       /* A simplified SSL certificate. */
       typedef struct {
	   const ne_ssl_dname *subject, *issuer;
	   const char *from, *until;
       } ne_ssl_certificate;

DESCRIPTION

       The ne_ssl_dname structure is used to represent a simplified X.509 distinguished name, as used in SSL certificates; a distinguished name is
       used to uniquely identify an entity. Along with the fields giving the geographical and organizational location of the entity,  the  common-
       Name  field  will be assigned the DNS hostname of the entity. The ne_ssl_readable_dname function can be used to create a single-line string
       out of an ne_ssl_dname structure.

       The ne_ssl_certificate structure is used to represent a simplified SSL certificate; containing the distinguished names of  the  issuer  and
       subject	of the certificate. The issuer is the entity which has digitally signed the certificate to guarantee its authenticity; the subject
       is the owner of the certificate. A certificate is only valid for a certain period of time: the from and until contain  strings  giving  the
       validity period.

SEE ALSO

       ne_ssl_dname(3), ne_ssl_set_verify(3)

AUTHOR

       Joe Orton <neon@webdav.org>.

neon 0.23.5							   8 October 2002					     NE_SSL_CERTIFICATE(3)