Re: [exim] Taint checker confusing error (blaming file but c…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MJeremy Harris at <-
MMichael Haardt at ->
Delete this message
Reply to this message
Author: Michael Haardt
Date:  
To: Jeremy Harris via Exim-users
Subject: Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)
> > Perhaps quote_ldap should return an untainted string?
>
> No, it does no real checking so would just be
> an easy thing to abuse.

How would you do that? After all, originally it was introduced to prevent
just that, so people need to know.

Or are you talking about using quote_ldap outside the scope of ldap queries?

Michael

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)Re: [exim] Taint checker confusing error (blaming file but caused by later ldap lookup)->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)