https://bugs.exim.org/show_bug.cgi?id=2609
--- Comment #2 from bagas <bagas1983@???> ---
(In reply to Jeremy Harris from comment #1)
> This is a configuration issue. You may not use $sender_address_domain
> directly
> as part of the filename because it is supplied by a potential attacker.
> You need to validate and de-taint this value first. Generally this means
> using
> it as a key for lookup in some trusted information (database, file,
> filesystem).
>
> Search in the docs Concept Index for de-tainting.
Not understood.
How do I set up signatures then?
--
You are receiving this mail because:
You are on the CC list for the bug.