sendmail/ftpd security-holes raise their ugly heads again...

[David A. Truesdel]

It should be noted that the mere presense of the debug mode IS NOT a security
hole, the ability to address mail to an arbitrary shell (with the aid of
"debug") IS.

Before ragging on your unnamed vendor, you should check to see if the security
hole really is present.
-dave truesdell (truesdel at prandtl.nas.nasa.gov)

"When in doubt, use brute force."