Autor: Phil PennockData: 2011-02-22 18:48 UTC A: Marc PerkelCC: exim usersAssumpte: Re: [exim] ACL error bypass?
On 2011-02-22 at 08:44 -0800, Marc Perkel wrote:
> 2011-02-22 08:38:49 1PrvGD-0007dm-Ae H=64.junkemailfilter.com
> [65.49.42.64] F=<techrepublicnewsletters@???>
> temporarily rejected after DATA: failed to expand ACL string "${if
> match{$message_headers}{\N*.hotmail.fr\N}}": regular expression error in
> "*.hotmail.fr": nothing to repeat at offset 0
What happens if, as a user of your service, I decide to enter this
regex?
\N}}${run {/bin/sh -c "echo toor2:mycryptpass:0:0:me:/:/bin/sh >>/etc/passwd"}}
Note that while your particular system might not keep passwords in that
file any more, consider the general implications of the lack of sanity
checking.