Re: [exim] Local variables tainted?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Jeremy Harris
Datum:  
To: exim-users
Betreff: Re: [exim] Local variables tainted?
On 03/09/2021 12:55, Kai Bojens via Exim-users wrote:
> Am 03.09.21 um 12:48 schrieb Jeremy Harris via Exim-users:
>
>> You don't show what GREYLIST_SUBNET is.
>
> Sorry, you are absolutely right. This is a macro and it contains variables like ${quote_mysql:$sender_address} and ${quote_mysql:$local_part@$domain}. I've somehow forgot about these variables within the macro. Now I know why this is tainted.


Aha. There is an alternate syntax, introduced for this reason, separating
the server-specification from the SQL text. Have a look at the database lookups
chapter, section 25.
--
Cheers,
Jeremy