Re: [exim] @example.net versus ""@example.net

Top Page
Delete this message
Reply to this message
Author: Michael Fischer v. Mollard
Date:  
To: Ian Eiloart
CC: exim users
Subject: Re: [exim] @example.net versus ""@example.net


-- Am 03/11/13 10:52:03 +0000 schrieb Ian Eiloart:

>
> On 8 Mar 2013, at 17:37, "Michael Fischer v. Mollard" <fvm@???>
> wrote:
>>> ...
>>
>> Hi,
>>
>> thanks for the explanation. But it still feels like syntax, not
>> semantics ;-)
>>
>> Michael
>
> The point of the quotes is to permit stuff that would not normally be
> permitted - like empty strings, "@" symbols, commas, and so on. Quite why
> anyone would want to use an empty string as the local part is beyond me,
> but then so are the rest of the examples.


as I don't need these strange local parts for my local domains I decided to
use a whitelist on the rcpt acl. In
<https://github.com/Exim/exim/blob/master/src/src/configure.default#L333>)
the following ACL is suggested:

  deny    message       = Restricted characters in address
          domains       = +local_domains
          local_parts   = ^[.] : ^.*[@%!/|]


Using
          local_parts   = ^[.] : !^[A-Za-z0-9.+_-]+\$
is less surprising (given there are really no addresses with funny local 
parts in local_domains) and more secure, especially if you feed your local 
parts via SQL/LDAP to an external backend.


Michael