Thank you, I'll take a closer look, because Shellshock implies that somehow the SMTPD executes a bash script, which I find highly unlikely. That is why I thought they are trying to exploit something further down the pipeline (Logstash, Prometheus, etc).
On Sat, 14 Jan 2023 14:41:17 +0000 Collider via mailop <[email protected]> wrote: > I received one of these bad girls to my Nightmare Mail (fork of notqmail), > albeit with a different argument to the attempted wget command (which was > never processed, though my mailserver was able to successfully make delivery > of this technically non-compliant message). It seems to my friends to be an > attempt to exploit Shellshock. _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
