[exim] Re: tainted uux transport

Página Principal
Apagar esta mensagem
Responder a esta mensagem
Autor: Jeremy Harris
Data:  
Para: exim-users
Assunto: [exim] Re: tainted uux transport
On 31/07/2023 17:55, Randy Bush via Exim-users wrote:
> force_uucp:
>    driver = manualroute
>    domains = ! +local_domains


Would it be feasible for you to have a definitive, limited,
list of acceptable domains to check against here - rather than
"anything but the local list"?

Basically, it is that locally-stored (and therefore trusted) data
that is needed.

>    route_data = ${lookup{$domain}partial-lsearch{/usr/local/etc/exim/ro.uucp}}

>
> which contains
>
>      foo                     foo                     uux
>      *.foo.co.uk             foo                     uux
>      foo.co.uk               foo                     uux
>      foo.com                 foo                     uux
>      chips.foo.com           foo                     uux


It's the wildcard there that implies a problem, along with your "and others".
--
Cheers,
Jeremy


--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/