[exim] Re: Fwd: Upon applying 4.96-1 on test, "Tainted arg 2…

Top Page
Delete this message
Reply to this message
Author: Jasen Betts
Date:  
To: exim-users
Subject: [exim] Re: Fwd: Upon applying 4.96-1 on test, "Tainted arg 2" appears
On 2023-11-09, Johnnie W Adams via Exim-users <exim-users@???> wrote:
> No luck:


basically tainted data is a case of you can't get there from here.

There's no way to de-taint data. You have to start with untainted data.

So given tainted data what you do is make some kind of lookup that
returns an untainted datum that matches the tainted datum, and then
use that copy.

De-tainting is a sleight of hand where you substitute a known safe
string to replace an identical looking untrusted string.

--
Jasen.
🇺🇦 Слава Україні

--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/