Hello,
I did kinda expect some reactions to this, but boy anthills and hornets
nests come mind.
Just for the record, 20+ years of Exim usage here (and Smail-3 before
that) as well and the taint bits are sure up there in the pain chart.
As mentioned this was a test server, in production the combination of file
and ldap lookup does not (yet) exist, so it came as a late taint surprise
or early Xmas present. ^o^
On Wed, 22 Dec 2021 16:00:24 +0000 Jeremy Harris via Exim-users wrote:
> On 22/12/2021 15:41, Michael Haardt via Exim-users wrote:
> >> Yes, for the ldap lookup here, quoting should be done.
> > I agree. The question is how to proceed on this.
>
> > domainlist d2 = ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain
>
> becomes
>
> domainlist d2 = ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=${quote_ldap:$domain}
>
The dual list (as non-intuitive as it is) works.
There are some input sanitizations before this query, but sure, quote_ldap
is of course a good default to use.
So for the record, the issue is "solved", but as Michael wrote, things like
this will confuse/frustrate people with less deep insight into Exim to the
point of just giving up.
Regards,
Christian
>Nothing more complex than that.
> --
> Cheers,
> Jeremy
>
> --
> ## List details at https://lists.exim.org/mailman/listinfo/exim-users
> ## Exim details at http://www.exim.org/
> ## Please use the Wiki with this list - http://wiki.exim.org/
>
--
Christian Balzer Network/Systems Engineer
chibi@??? Rakuten Communications
