Subject: Re: localhost security hole
To: Andrew Brown <>
From: Todd Vierling <>
List: tech-security
Date: 06/28/2003 22:21:39
On Sat, 28 Jun 2003, Andrew Brown wrote:

: >The zone administrator (or DNS spoofer) can redirect all root mail, by
: >adding a zone entry "localhost.dom.ain." that points to some other
: >place than  Is this considered a feature?
: that doesn't matter.  that will only be looked for if "localhost" by
: itself is not found.

...and even that case can be cared for by using "root@localhost." (note
trailing dot, which tells the resolver that search domains must not be

-- Todd Vierling <>