Re: [exim] "allow_insecure_tainted_data = yes" - was: tainte…

Página superior
Eliminar este mensaje
Responder a este mensaje
Autor: Heiko Schlittermann
Fecha:  
A: exim-users
Cc: Andreas Metzler
Asunto: Re: [exim] "allow_insecure_tainted_data = yes" - was: tainted data issues
Heiko Schlittermann via Exim-users <exim-users@???> (So 11 Apr 2021 09:08:10 CEST):
> Hi Andreas,
>
> which commit ID your build is based on? I'd like to reproduce it
> locally.


I can reproduce it using a minimal config, going to check it now.
(The version I'm running on production systems doesn't do local
delivery.)

    allow_insecure_tainted_data = yes


    log_selector = +pid
    acl_smtp_rcpt = accept


    begin routers


            accept:
                    driver = accept
                    check_local_user
                    transport = local


    begin transports


            local:
                    driver = appendfile
                    group = mail
                    file = /opt/exim/spool/mail/$local_part


--
Heiko