[exim-dev] [Bug 1062] increase the maximum recursion depth f…

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Phil Pennock
Datum:  
To: exim-dev
Betreff: [exim-dev] [Bug 1062] increase the maximum recursion depth for ACLs
------- You are receiving this mail because: -------
You are on the CC list for the bug.

http://bugs.exim.org/show_bug.cgi?id=1062




--- Comment #3 from Phil Pennock <pdp@???> 2011-01-13 09:20:45 ---
dnsdb: http://lists.exim.org/lurker/message/20090527.213428.45e1069c.en.html
addresses:
http://lists.exim.org/lurker/message/20101029.060214.2f459730.en.html

Exim has a very powerful string expansion language, but it's not a general
purpose scripting language, does not pretend to be and it's unwise to treat it
as such. There are plenty of hooks for using external tools, or an embedded
Perl interpreter, etc. The string manipulations with map/reduce and so on are
conveniences which have proven incredibly powerful, but if you find yourself
hitting the limits of those, then switch to an external scanner. Exim is
designed as an MTA which can talk to various content scanners, not to be a
content scanner in its own right.

If someone proposes a rationale for changing the ACL recursion depth to a
higher value because of a use-case which does *not* place the depth of the
stack under the control of untrustworthy content (an email), then I'll
reconsider my stance.

I think that it would be extremely unwise to aid and abet someone in
deliberately shooting themselves in the foot in a way which can have security
implications.


--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email