[rt-devel] RT 1.0.4 released
Jesse
jesse at fsck.com
Thu Aug 17 21:02:53 EDT 2000
RT 1.0.4 is now available at
ftp://ftp.fsck.com/pub/rt/release/rt-1.0.4.tar.gz
It is recommended that you upgrade to this release as soon as
is reasonably possible, as it closes a possible security hole
in rt-mailgate which could allow an attacker to resolve arbitrary
tickets. I'd like to thank Michael J. Pomraning from SecurePipe
for bringing this to my attention and for professionally handling the
report of the hole. Expect a full advisory with explanation
within several days.
Additionally, rt-mailgate got an overhaul sponsored by MAPS LLC.
To see the new options available, run rt-mailgate --help. Mailgate
will continue to work as you expect it to unless you use the
--extended-syntax flag when invoking it.
New installations will get the benefit of a 25 character phone
field in user records. (Compared to 1.0.3's 15 characters)
A couple permissions nits were fixed in the makefile.
If you experience any issues with the upgrade to or installation of
RT 1.0.4, please don't hesitate to contact rt-devel at fsck.com
Thanks,
Jesse Vincent
--
jesse reed vincent --- root at eruditorum.org --- jesse at fsck.com
pgp keyprint: 50 41 9C 03 D0 BC BC C8 2C B9 77 26 6F E1 EB 91
-------------------------------------------------------------
Gur SOV jnagf gb znxr guvf fvt vyyrtny.
More information about the Rt-devel
mailing list