[exim] Re: Fwd: Upon applying 4.96-1 on test, "Tainted arg 2…

Página superior
Eliminar este mensaje
Responder a este mensaje
Autor: Jasen Betts
Fecha:  
A: exim-users
Asunto: [exim] Re: Fwd: Upon applying 4.96-1 on test, "Tainted arg 2" appears
On 2023-11-09, Johnnie W Adams via Exim-users <exim-users@???> wrote:
> No luck:


basically tainted data is a case of you can't get there from here.

There's no way to de-taint data. You have to start with untainted data.

So given tainted data what you do is make some kind of lookup that
returns an untainted datum that matches the tainted datum, and then
use that copy.

De-tainting is a sleight of hand where you substitute a known safe
string to replace an identical looking untrusted string.

--
Jasen.
🇺🇦 Слава Україні

--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/