Hi, a. roars via Exim-users <exim-users@exim.org> (Mo 17 Mai 2021 20:31:30 CEST): > Hello, > > I hope I can get some help with the router configuration. This > configuration worked for previous versions of exim but not with the current > one.
Variables populated with "external" data are not trusted anymore. Their values are considered "tainted", and are insecure. Tainted values can not be used to construct file paths anymore. You need to rework the configuration to make it secure. (As a mitigation the "allow_insecure_tainted_data" main config option might help, if your copy of Exim includes the relevant patch (SuSE and Debian do include it)). > archive_out: > driver = redirect > senders = ! : > data = ${if > exists{/etc/valiases/$sender_address_domain}{${lookup{archive.$sender_address}lsearch{/etc/valiases/${sender_address_domain}}}}} > unseen After playing around a while I came up with the following: archive_out: driver = redirect address_data = ${lookup{$sender_address_domain}dsearch,ret=full{$config_dir/valiases}{$value}fail} data = ${lookup{archive.$sender_address}lsearch{$address_data}} I'm pretty sure there are more elegant ways to achive the same result. Best regards from Dresden/Germany Viele Grüße aus Dresden Heiko Schlittermann -- SCHLITTERMANN.de ---------------------------- internet & unix support - Heiko Schlittermann, Dipl.-Ing. (TU) - {fon,fax}: +49.351.802998{1,3} - gnupg encrypted messages are welcome --------------- key ID: F69376CE -
signature.asc
Description: PGP signature
-- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/