Solved

"Fixed MIME Content-Type header field"

Posted on 2004-08-27
5
1,378 Views
Last Modified: 2013-12-27
Good day

I get the following error message from the error log in a Solaris 9 system. Is this an misconfiguration error or bug? If so, how do I fix this? Thank you.

Aug 27 15:39:29 mail sendmail[25528]: [ID 801593 mail.alert] i7RNdE8R025486: Fixed MIME Content-Type header field (possible attack)
0
Comment
Question by:shawnk
  • 2
5 Comments
 
LVL 34

Expert Comment

by:PsiCop
ID: 11918973
Well, you didn't bother to say exactly which version of sendmail you're running, but if you're running the one that came with the stock Solaris v9 install (even patched), be aware that its almost certainly an older sendmail version. Telnet to the machine's port 25 and take a look at what version is reported. If its not v8.12.11 or v8.13.x, then you're running a older version. If its v8.11.x or earlier, then its a VULNERABLE older version and you should update immediately (or at the very least change the config so it doesn't broadcast to everyone who connects it just how bad off it is).

What the error means is that as sendmail processed a message header, probably an incoming one, it saw a suspicious MIME Content-Type header field, one that may have been part of an attack on your system. What specific attack I dunno. Perhaps an attempt to get sendmail to hang. You'd have to track down the message via the logs and examine it.
0
 
LVL 34

Expert Comment

by:PsiCop
ID: 11918983
First things first, check your sendmail version, and if its outdated (personally, I'd call anything earlier than v8.12.10 "outdated"), you should start working on updating it. I know that a package for v8.12.11 (the last v8.12 release) is available on http://sunfreeware.com. I imagine that v8.13 is as well, and if it isn't, you can download the source from http://www.sendmail.org

Recommended reference: _Sendmail,_3rd Edition_ by Bryan Costales, ISBN 1-56592-839-3. Its not a "How to" or "For Dummies" book, its a reference for sendmail's features and functions.
0
 
LVL 40

Accepted Solution

by:
jlevie earned 125 total points
ID: 11919362
That is a result of a change in Sendmail introduced in 8.12.8. The RELEASE_NOTES say:

"If MaxMimeHeaderLength is set and a malformed MIME header is fixed, log the fixup as "Fixed MIME header" instead of "Truncate MIME header".  Problem noted by Ian J Hart."

Sendmail is just reacting to a bogus MIME header, fixing it so that it can't cause problems, and telling you about it.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
prtdiag report hdd failure 10 149
IBM flash storage 840 15 62
LastLogonTimeStamp Attribute 7 48
How to Change Interface on Cisco IOU 11 97
In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now