[exim] tainted filname issue

Top Page
Delete this message
Reply to this message
Author: Dan Egli
Date:  
To: exim-users
Subject: [exim] tainted filname issue
How that last message got encrypted, I don't know. But this should be an
unencrypted copy.

On 5/5/2021 4:04 AM, Heiko Schlittermann via Exim-users wrote:

> Dan Egli via Exim-users <exim-users@???> (Mi 05 Mai 2021 02:41:38
> CEST):
>> I just upgraded to 4.94.2, and most everything is working fine. But I'm
>> getting an issue on DKIM signings with tainted filename. I looked over


the
>> list and tried to apply the same fix I've seen used before, but I
>> guess I'm
>> not understanding it. Here's my dkim_private_key statement:
>>
>>   dkim_private_key   = ${if
>> exists{/etc/exim/DKIM/${lc:$sender_address_domain}/dkim.private.key.pem}\
>> {/etc/exim/DKIM/${lc:$sender_address_domain}/dkim.private.key.pem}{0}}
>>
>> So how do I correct this? Thanks!
> You didn't run 4.94 before, did you?
>

No, I've not done 4.94 before. Up until recently I was running 4.93. So,
I realized that exim wasn't fork()ing like I thought it would, but
actaully calling the exim binary. That explains the complaint about
-Mcd. But when I fixed THAT issue, I get  a new one that I have no idea
whats up. I have a link from /usr/sbin/exim_new to /usr/sbin/exim (and
have the old binary on exim_old. So it's calling the correct exim. Can
someone explain whats up?:

[after receiving a message to se
20094 ---- End of tree ----
20094 recipients_count=1
20094 **** SPOOL_IN - No additional fields
20094 body_linecount=159 message_linecount=18
20094 running system filter
20094 rda_interpret (file): '/etc/exim/filters/FILTER2008'
20094 expanded: '/etc/exim/filters/FILTER2008'
20094 search_tidyup called
20094 daemon-accept-delivery forking for router-interpret
20094 daemon-accept-delivery forked for router-interpret: 20095
20095 postfork: router-interpret
20095 LOG: MAIN PANIC DIE
20095   unable to set gid=12 or uid=8 (euid=1002): system filter
20095 search_tidyup called
20095 >>>>>>>>>>>>>>>> Exim pid=20095 (router-interpret) terminating
with rc=1 >>>>>>>>>>>>>>>>
20094 rda_interpret: subprocess yield=8 error=NULL
20094 LOG: MAIN PANIC
20094   internal problem in system filter: failure to transfer data from
subprocess: status=0100 readerror='No such file or directory'
20094 system filter returned 8
20094 LOG: MAIN PANIC
20094   Error in system filter: internal problem in system filter:
failure to transfer data from subprocess: status=0100 readerror='No such
file or directory'
20094 search_tidyup called
20094 >>>>>>>>>>>>>>>> Exim pid=20094 (daemon-accept-delivery)
terminating with rc=0 >>>>>>>>>>>>>>>>
20091 SMTP<< QUIT
20091 using ACL "acl_check_quit"
20091 processing "warn" (/etc/exim/exim_new.conf 415)
20091 check condition = $authentication_failed
20091                 = 0
20091 warn: condition test failed in ACL "acl_check_quit"
20091 processing "warn" (/etc/exim/exim_new.conf 420)
20091 check condition = $authentication_failed
20091                 = 0
20091 warn: condition test failed in ACL "acl_check_quit"
20091 end of ACL "acl_check_quit": implicit DENY
20091 SMTP>> 221 eglifamily.name closing connection
20091 tls_write(0x55c69d3d8b10, 40)
20091 SSL_write(0x55c69d50d0e0, 0x55c69d3d8b10, 40)
20091 outbytes=40 error=0
20091 tls_close(): shutting down TLS
20091 SSL3 alert write:warning:close notify
20091 LOG: smtp_connection MAIN
20091   SMTP connection from mobile-166-170-45-144.mycingular.net
([172.20.10.13]) [166.170.45.144] I=[209.141.58.25]:587 closed by QUIT
20091 search_tidyup called
20091 SMTP>>(close on process exit)
20091 >>>>>>>>>>>>>>>> Exim pid=20091 (daemon-accept) terminating with
rc=0 >>>>>>>>>>>>>>>>
20031 child 20091 ended: status=0x0
20031   normal exit, 0
20031 0 SMTP accept processes now running
20031 Listening...
^C20031 SIGTERM/SIGINT seen
20031 daemon forking for daemon-del-pidfile
20031 daemon forked for daemon-del-pidfile: 20162
20162 postfork: daemon-del-pidfile
20162 exec /usr/sbin/exim -C /etc/exim/exim_new.conf -d=0xf7795cfd -MCd
daemon-del-pidfile -oPX
exim: only uid=0 or uid=8 can use -oP and -oPX (uid=1002 euid=1002 | 1002)
20031 search_tidyup called
20031 >>>>>>>>>>>>>>>> Exim pid=20031 (daemon) terminating with rc=0
>>>>>>>>>>>>>>>>



--
Dan Egli
From my Test Server