Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. exim>
  3. dev
More taint fun (now 4.93.0.4/FreeBSD)
exim-dev at exim
Feb 24, 2020, 6:15 PM
Post #1 of 2 (189 views)
Permalink
Upgraded to 4.93.0.4, and got the following:

<21>1 2020-02-24T12:59:20.956095-06:00 thebighonker.lerctr.org exim
24803 - - [1\83] 1j6Iwq-0006S3-LL H=malur.postgresql.org
[2a02:16a8:dc51::56]:59940 I=[2001:470:1f0f:3ad:bb:dcff:fe50:d900]:25
X=TLS1.2:ECDHE-RSA-AES256-SHA:256 CV=yes DN="/CN=lists.postgresql.org"
F=<pgsql-hackers-owner+M2386-215359@lists.postgresql.org> temporarily
rejected during MIME ACL checks: failed to expand ACL string
"${lookup{${lc:${sg{$mime_filename}{^.+\\.([a-zA-Z0-9]+)\$}{\$1}}}}lsearch{/usr/local/etc/exim/checkfiles/bad-exts}{yes}{no}}":
attempt to expand tainted string '$1'


which came from this (uncommented):
+#FILENAME_EXT =
${lc:${sg{$mime_filename}{^.+\\.([a-zA-Z0-9]+)\$}{\$1}}}

+ #deny message = This message contains an unwanted file extension
($mime_filename)
+ # log_message = MALWARE: unwanted extension ($mime_filename)
+ # condition =
${lookup{FILENAME_EXT}lsearch{BLACKLIST_FILES}{yes}{no}}

I'm not sure how to make the taint stuff happy here.

What's a good work-around for this?



--
Larry Rosenman http://www.lerctr.org/~ler
Phone: +1 214-642-9640 E-Mail: ler@lerctr.org
US Mail: 5708 Sabbia Dr, Round Rock, TX 78665-2106

--
## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
Re: More taint fun (now 4.93.0.4/FreeBSD) [ In reply to ]
exim-dev at exim
Feb 25, 2020, 1:31 AM
Post #2 of 2 (188 views)
Permalink
On 25/02/2020 02:15, Larry Rosenman via Exim-dev wrote:
> What's a good work-around for this?

First, check that your distro includes later fixes than that release.
--
Cheers,
Jeremy

--
## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal