[opendmarc-users] unverified - OpenDMARC Bug

Benny Pedersen me at junc.eu
Thu Sep 19 11:49:06 PDT 2019


https://bugs.gentoo.org/694968


I dont wait for redhat anymore

On 19. september 2019 20.37.48 Steve Siirila <sfs at umn.edu> wrote:
> Good luck getting this fix into a release.  We're still waiting for a RHEL7 
> RPM of opendmarc with a CRITICAL patch made available nearly 2 years ago 
> incorporated.
>
>
> On Thu, Sep 19, 2019 at 8:53 AM Benny Pedersen <me at junc.eu> wrote:
>
> A. Schulze skrev den 2019-09-11 18:50:
>
>> Golem, a german online IT magazin, reported about a Bug in OpenDMARC.
>> https://www.golem.de/news/opendmarc-aktiv-ausgenutzte-dmarc-sicherheitsluecke-ohne-fix-1909-143798.html
>>
>> Protonmail found that bug actively used
>> https://protonmail.com/blog/bellingcat-cyberattack-phishing/
>>
>> Also there is a proposed fix available as pull request on GitHub
>> https://github.com/trusteddomainproject/OpenDMARC/pull/48
>>
>> This message is intended only to relay that info unfiltered to the
>> list.
>
> i just like to see more patches, not updated tarballs :(/
>
> will make a gentoo bug now, to have it solved there
>
> have opendkim, openarc same fails with multiple from ?
>
> thanks for the heads up
> _______________________________________________
> opendmarc-users mailing list
> opendmarc-users at trusteddomain.org
> http://www.trusteddomain.org/mailman/listinfo/opendmarc-users

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.trusteddomain.org/pipermail/opendmarc-users/attachments/20190919/570601fa/attachment.htm>


More information about the opendmarc-users mailing list