Re: [exim] tainted data issues

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MMichael Haardt at <-
MChris Siebenmann at ->
Delete this message
Reply to this message
Author: Jeremy Harris
Date:  
To: exim-users
Subject: Re: [exim] tainted data issues
On 11/11/2020 16:29, Ian Zimmerman via Exim-users wrote:
> On 2020-11-11 13:16, Jeremy Harris wrote:
>
>>> Semi-radical: provide an ACL, router, and transport modifier that
>>> checks some variable or content for dangerous contents
>
>> We have that. All data provided by an untrusted source, described
>> as "tainted" for a shorthand.
>
> I will not argue with the rest of your post, but it is not a _modifier_
> if it is always on.

Ah. Would an expansion condition be sufficient? So you could write

${if tainted{my_suspect_expansion} {expand_this} {expand_that}}

That would be simple to code and test.
--
Cheers,
Jeremy

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] tainted data issuesRe: [exim] tainted data issues->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)