[dovecot] Re: security audit of the code

Timo Sirainen tss at iki.fi
Tue Jan 14 00:23:07 EET 2003

On Tue, 2003-01-14 at 00:16, seth vidal wrote:
> > I don't really know who or where to ask. I'd be interested of getting
> > people to audit Dovecot too.

> Would it be reasonable to ask on bugtraq?
> What about Chris Evans? - he wrote vsftpd and audited a bunch of Red
> Hat's releases iirc.  Maybe worth bugging him to see if he'd be willing
> to look it over?

I don't think it's a good idea to bug people with auditing requests,
unless they've stated they don't mind. I usually audit only software
that I use myself.

More information about the dovecot mailing list