Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

They give it away (which I find moderately not nice of them) by saying they used Exim (the mail server) in their POC.


The default exim config seems to not be vulnerable.

I checked the configs on two of my systems, one default, and one heavily customized, neither had the helo verification turned on.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: