[exim] Re: Tainted search

Pàgina inicial
Delete this message
Reply to this message
Autor: Jeremy Harris
Data:  
A: exim-users
Assumpte: [exim] Re: Tainted search
On 13/06/2023 14:41, Mark Elkins via Exim-users wrote:
> This does not work:    domain='${quote_mysql:domain:$h_from:}'


That would be quoting a string starting "domain:" and then
having the content of the From: header - which probably isn't
what you wanted.

Read the docs on string-expansions (and then worry if
the *header* data is what you should be starting from, too).

https://exim.org/exim-html-current/doc/html/spec_html/ch-string_expansions.html

> This currently works:   domain='${domain:$h_from:}'   -  but gives the tainted search error ... but at least the DKIM part works.


If you really do want that source data, then you need two expansions:
an inner one to get the domain, and an outer one to do the quoting.
--
Cheers,
Jeremy


--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/