When the administrator is not careful, the misuse or misconfiguration of sendmail can lead to an insecure and possibly compromised system.
A Milter no longer removes its socket when the Milter is run by root; see Section 7.1.2.10 [V8.13].
As of V8.13, AUTH information is no longer included in bounced email
when sendmail
is configure to use SMTP AUTH
(10.9[3ed]). This change was made to avoid
the risk of leaking sensitive information.
3.15.10.137