I installed the "new" fetchmail rpm 5.6.5 for SuSE 7.1, but unfortunately fetchmail does not poll messages with the ETRN command any more. When starting to fetch the mails, fetchmail asks for a password (from lists.debian.org):
Debian bug #85938: fetchmail asks for a password when using ETRN;
This is a bug, which is fixed in 5.6.6. So, for me, this is not the right
way "to avoid problems"! What could i do, if SuSE does not offer an upgrade
to the latest version?
CU
Sven
Thomas Biege
Hi,
Hi.
Just received teh fetchmail related security announcement and IIRC on thebugtraq list it was mentioned fetchmail 5.8.17 and above is not vulnerable. Is it SuSE's numbering scheme diffirent or the patch has been applied to the preivious versions.
Second why the package numbers are different for 7.1 and 7.2 platforms
That's because we patch the original packets instead of making a version upgrade to avoid problems on older SuSE Linux versions. But in special cases we also did a version upgrade + testing, i.e. when the changes are too big. Have a nice weekend. Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/contact/thomas.asc | pgp -fka" Key fingerprint = 51 AD B9 C7 34 FC F2 54 01 4A 1C D4 66 64 09 84 -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com _____________________________________________ Sven Westenberg EDV/Schäfer Trennwandsysteme GmbH Phone: +49 (2687) 9151-46 Fax: +49 (2687) 9151-30 Email: s.westenberg@schaefer-trennwandsysteme.de