Autor: Kai Bojens Data: Para: exim-users Asunto: Re: [exim] tainted data issues
Am 10.11.20 um 09:37 schrieb Julian Bradfield via Exim-users:
> I understand that taint protection is considered a security feature,
> but it's a feature exim users have done without for decades, so I
> can't really see that there was a particularly urgent need to
> introduce it in a big bang.
I'd like to disagree. In light of the recent 2019 RCE CVE's I really
welcome these changes and think they are long overdue. There's just the
point of a clear documentation which is missing IMHO.