Bug#626011: exim4: default host_lookup_order should be consistent with nsswitch.conf
ricola
ricola at poivron.org
Sat May 7 20:12:16 UTC 2011
Package: exim4
Severity: normal
The default value of the host_lookup_order option is to do a DNS lookup
first, and then to try a local lookup. This should be made consistent
with the default nsswitch.conf configuration that tries first a local
lookup, and then a DNS lookup.
This bug can raise a privacy issue since with the default configuration,
a DNS query can leak the hostname while trying to deliver a mail
locally.
-- System Information:
Debian Release: 6.0.1
Architecture: i386 (i686)
Kernel: Linux 2.6.32-5-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages exim4 depends on:
ii debconf [debconf-2.0] 1.5.36.1 Debian configuration management sy
pn exim4-base <none> (no description available)
pn exim4-daemon-light | exim4-da <none> (no description available)
exim4 recommends no packages.
exim4 suggests no packages.
More information about the Pkg-exim4-maintainers
mailing list