Gitweb:
https://git.exim.org/exim.git/commitdiff/83e8da8c07f783c7d677166940be3fc9b3f7d0ab
Commit: 83e8da8c07f783c7d677166940be3fc9b3f7d0ab
Parent: 32ef25152ecda2555eabe22a0c37ec398068dbba
Author: Jeremy Harris <jgh146exb@???>
AuthorDate: Fri May 8 11:47:43 2020 +0100
Committer: Jeremy Harris <jgh146exb@???>
CommitDate: Fri May 8 11:47:43 2020 +0100
Docs: tweaks
---
doc/doc-docbook/spec.xfpt | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt
index af28f0c..f1940bb 100644
--- a/doc/doc-docbook/spec.xfpt
+++ b/doc/doc-docbook/spec.xfpt
@@ -6641,6 +6641,8 @@ file that is searched could contain lines like this:
.endd
When the lookup succeeds, the result of the expansion is a list of domains (and
possibly other types of item that are allowed in domain lists).
+.cindex "tainted data" "de-tainting"
+The result of the expansion is not tainted.
In the second example, the lookup is a single item in a domain list. It causes
Exim to use a lookup to see if the domain that is being processed can be found
@@ -15631,6 +15633,10 @@ and RET and ORCPT options on MAIL FROM commands.
A NOTIFY=SUCCESS option requests success-DSN messages.
A NOTIFY= option with no argument requests that no delay or failure DSNs
are sent.
+.new
+&*Note*&: Supplying success-DSN messages has been criticised
+on privacy grounds; it can leak details of internal forwarding.
+.wen
.option dsn_from main "string&!!" "see below"
.cindex "&'From:'& header line" "in bounces"
