Author: Adam Spiers Date: To: users Subject: Re: [bitfolk] 21 critical Exim security issues need addressing
On Fri, May 07, 2021 at 11:26:28AM +0000, Andy Smith wrote: >Hello,
>
>On Fri, May 07, 2021 at 10:44:15AM +0100, Nigel Rantor via users wrote:
>>Thank you so much for this.
>
>No worries, but if this did come as news to anyone then I recommend
>enabling automatic security upgrades - or at least notifications of
>them.
>
>On Debian/Ubuntu you can install the unattended-upgrades package to
>automatically do the upgrades, and/or apticron to email you about
>available upgrades.
Brilliant tips, thanks a lot!
>Also apt-;listchanges mails you the changelogs after upgrades have
>taken place.
This one I knew about, at least.
>The only reason I've mailed announce@ this time is that the last two
>times there were remote root exploits in Exim, some people did not
>patch for whatever reason and were compromised.
Much appreciated. I should be covered now with the DSA subscription
and unattended-upgrades installed.
>I understand it's not actually that hard to convert a simple Debian
>Exim setup to Postfix so if anyone would like tow rite a wiki
>article or blog about it that would be most welcome!
