Re: [exim] tainted string in 4.93

Góra strony
Delete this message
Reply to this message
Autor: Kurt Jaeger
Data:  
Dla: Aristedes Maniatis
CC: exim-users
Temat: Re: [exim] tainted string in 4.93
Hi!

> After an upgrade to 4.93 from 4.92 (FreeBSD ports), I am getting
>
>
> 2020-02-24 18:13:08 1j67LU-0005vG-1C == ari@??? R=localuser
> T=local_delivery defer (0): Expansion of
> "${local_part}${local_part_suffix}@$domain" from command
> "/usr/local/libexec/dovecot/dovecot-lda -a
> ${local_part}${local_part_suffix}@$domain -d $local_part@$domain -f
> $sender_address" in local_delivery transport failed: attempt to expand
> tainted string '${local_part}${local_part_suffix}@$domain'
>
>
> I don't understand how to work around this problem because there is
> nothing in the manual I could find around how to mark a particular string
> as not tainted, or to filter it appropriately to be safe. Any pointers on
> what to do here?


There's another update for the FreeBSD port mail/exim, committed
today:

https://lists.freebsd.org/pipermail/svn-ports-all/2020-February/243949.html

this updates to exim 4.93.0.4, which should cover those tainted
error messages.

-- 
pi@???            +49 171 3101372                    Now what ?