At 00:09 04/01/2002 +0000, you wrote: > >The only _right_ way to do security on anything that sends email from a
> >web HTTP form POSTing, is to severely limit what addresses it can mail
> >*TO*, for instance, by making and mainting a list of authorized
> >recpients. When a customer wants to add a form to their site, they have
> >to have the desired recipient address added to your list..
This is a definite. You can fix the lookuphost router as follows:
lookuphost:
driver = lookuphost
transport = smtp
senders = "!@@lsearch;/usr/local/exim/local/nullsenders"
You can then add this to the file "/usr/local/exim/local/nullsenders":
Since your script is restricted to the nobody user (or the httpd user or
whatever, which you add to your file), the above will fail the email if the
To: is non-local.
This is one way to stop abuse from the nobody@[hostname] address, or any
other system users that could be abused to spam from your hosts. Since
webscripts are usually used to send something to a local account, the
restrictions are perfect.
