[exim] Tainted filename for search in Exim 4.94-1

Góra strony
Delete this message
Reply to this message
Autor: Vladislav Georgiev | NS1.bg
Data:  
Dla: Exim-users
Nowe tematy: [exim-dev] Router execute twice, [exim-dev] The Router part execute twice
Temat: [exim] Tainted filename for search in Exim 4.94-1
Hello,

After the update to 4.94-1 the following forwarding router stopped
working. It works in 4.93-3.

userforward:
driver = redirect
allow_defer
allow_fail
domains = !$primary_hostname
require_files = "+/etc/valiases/$domain"
user = "${lookup{$domain}lsearch{/etc/userdomains}{$value}}"
address_data = ${lookup{$local_part@$domain}lsearch{/etc/valiases/$domain}}
data = $address_data

The forwarders are in /etc/valiases/domain.com and when the
address_data lookup does not complete I get the following error.

2020-06-18 15:26:49 Tainted filename for search: '/etc/valiases/domain.com'
2020-06-18 15:26:49 temporarily rejected RCPT <admin@???>:
expansion of "${lookup{$local_part@$domain}lsearch{/etc/valiases/$domain}}"
failed in userforward router: NULL

How should I set the lookup so that it doesn’t fail when it doesn’t
find a record in /etc/valiases/domain.com so I can update to 4.94-1?

Regards,
Vlad