[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Interscan - path disclosure -WAS:SpamAssasin - path disclosure

To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Interscan - path disclosure -WAS:SpamAssasin - path disclosure
From: Steffen Kluge <kluge@fujitsu.com.au>
Date: Mon, 25 Aug 2003 12:25:31 +1000

On Mon, 2003-08-25 at 11:16, morning_wood wrote: 
> Trend Interscan Viruswall has a path disclosure issue

I wouldn't exactly call that a disclosure. It is commonly known that
/etc/iscan is the directory in which Trend Interscan lives by default,
and yes, /etc/iscan/virus is where it quarantines viruses. What would be
the point of obscuring this "information"?

Kinda like disclosing that the password file lives in /etc on many Unix
boxes...

> So these products are often used in conjuntion with each other?
> Trend Interscan Viruswall and Spamassasin run on the same box and
> combining thier output?

They are both often used as plug-ins to an MTA (like postfix, qmail or
sendmail), or via some MTA middle-ware (like amavis). Hence, they share
the logging facility of the MTA or the middle-ware.

Cheers
Steffen.

This is a digitally signed message part

References:
- RE: [Full-Disclosure] SpamAssasin - path disclosure
  - From: "ViLLaN" <villain@protonic.com>
- [Full-Disclosure] Interscan - path disclosure - WAS:SpamAssasin - path disclosure
  - From: "morning_wood" <se_cur_ity@hotmail.com>

Prev by Date: RE: [Full-Disclosure] Interscan - path disclosure - WAS:SpamAssasin - path disclosure
Next by Date: Re: [Full-Disclosure] SpamAssasin - path disclosure
Prev by thread: [Full-Disclosure] Interscan - path disclosure - WAS:SpamAssasin - path disclosure
Next by thread: RE: [Full-Disclosure] Interscan - path disclosure - WAS:SpamAssasin - path disclosure
Index(es):
- Date
- Thread