Subject: poppassd buffer overflow?
To: None <>
From: Martti Kuparinen <>
List: tech-pkg
Date: 04/30/2002 14:40:04

Should we be worried about this?

fw:~> telnet localhost 106
200 fw poppassd v4.0.3 hello, who are you?
USER username
200 your password please.
PASS oldpass
200 your new password please.
NEWPASS newpass
200 Password changed, thank-you.

And from /var/log/messages:

Apr 30 14:20:36 fw poppassd[22010]: buffer overflow on read from child
Apr 30 14:20:36 fw poppassd[22010]: password changed for username

I have this in inetd.conf:

poppassd stream tcp nowait root /usr/pkg/libexec/poppassd poppassd


Martti Kuparinen <>      NetBSD - No media hype