Re: [exim] tainted data issues

Top Page
This message is part of the following thread:
M++--+---+-\the complete thread tree sorted by date
MMM..M-+\M\M\Julian Bradfield at <-
MMM+\M\MMMMMMMike Tubby at ->
Delete this message
Reply to this message
Author: Kai Bojens
Date:  
To: exim-users
Subject: Re: [exim] tainted data issues
Am 10.11.20 um 09:37 schrieb Julian Bradfield via Exim-users:

> I understand that taint protection is considered a security feature,
> but it's a feature exim users have done without for decades, so I
> can't really see that there was a particularly urgent need to
> introduce it in a big bang.


I'd like to disagree. In light of the recent 2019 RCE CVE's I really
welcome these changes and think they are long overdue. There's just the
point of a clear documentation which is missing IMHO.

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] tainted data issuesRe: [exim] tainted data issues->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)