schmonz.com is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.
This server runs the snac software and there is no automatic sign-up process.
I laughed at the description of `sendmail` as “... less a mail transfer agent and more a recurring CVE subscription.”
#Claude Code fand eine Remote Code Execution in einer populären Distribution von #qmail, einem sehr bekannten #Mailserver.
Das Problem lag an #popen und man benötigt einen wunderschönen MX-Record der Form:
x'`id>/tmp/pwned`'y.example.com
Das "reine" qmail von @djb ist nicht betroffen.
https://blog.calif.io/p/we-asked-claude-to-audit-sagredos
https://github.com/califio/publications/tree/main/MADBugs/qmail