[Qmail-scanner-general]illegal mime char

Mon, 19 Aug 2002 01:57:29 -0700 

Hello all,

Using QS 1.13

I know that lone CR are forbidden in Mime headers, but are CRLF forbidden
too ?
I was not able ton find something dealing with that explicitely in the RFCs.

 if ($BAD_MIME && /\r|\0/) {
        $illegal_mime=1;
        &debug("w_c: illegal MIME chars found in header");
      }

Since QS detect CR and CRLF as bad mime headers, I'm not able to receive any
mail from a customer using Groupwise.
Here is a part of the hex dump of the header of some rejected mail.

00000258   20 41 75 67  20 32 30 30  32 20 30 38  3A 31 31 3A  33 32 20 2B
30 31 30 30   Aug 2002 08:11:32 +0100
00000270   0A 4D 49 4D  45 2D 56 65  72 73 69 6F  6E 3A 20 31  2E 30 0A 43
6F 6E 74 65  .MIME-Version: 1.0.Conte
00000288   6E 74 2D 54  79 70 65 3A  20 74 65 78  74 2F 70 6C  61 69 6E 3B
20 63 68 61  nt-Type: text/plain; cha
000002A0   72 73 65 74  3D 49 53 4F  2D 38 38 35  39 2D 31 0A  43 6F 6E 74
65 6E 74 2D  rset=ISO-8859-1.Content-
000002B8   54 72 61 6E  73 66 65 72  2D 45 6E 63  6F 64 69 6E  67 3A 20 71
75 6F 74 65  Transfer-Encoding: quote
000002D0   64 2D 70 72  69 6E 74 61  62 6C 65 0A  4D 65 73 73  61 67 65 2D
49 44 3A 20  d-printable.Message-ID:
000002E8   3C 47 57 4A  4D 58 30 2E  33 44 36 30  38 43 31 34  2E 36 39 38
46 2E 30 30  <GWJMX0.3D608C14.698F.00
00000300   44 30 2E 30  30 30 40 68  71 5F 73 72  76 31 2E 72  6F 6E 64 61
2E 63 68 3E  [EMAIL PROTECTED]>
00000318   0A 53 75 62  6A 65 63 74  3A 20 4A 6F  6B 65 0A 58  2D 4D 61 69
6C 65 72 3A  .Subject: Joke.X-Mailer:
00000330   20 4E 6F 76  65 6C 6C 20  47 72 6F 75  70 77 69 73  65 20 76 69
61 20 4D 41   Novell Groupwise via MA
00000348   58 2F 4E 4C  4D 20 33 2E  33 31 2F 59  31 4E 36 34  43 38 32 32
44 0D 0A 50  X/NLM 3.31/Y1N64C822D..P <<CRLF 
00000360   72 69 6F 72  69 74 79 3A  20 4E 6F 72  6D 61 6C 0A  58 2D 43 6F
6E 66 69 72  riority: Normal.X-Confir
00000378   6D 2D 52 65  61 64 69 6E  67 2D 54 6F  3A 20 73 6F  74 74 6F 67
61 6C 6C 69  m-Reading-To: sottogalli

I put for instance BAD_MIME=0 to receive the mails. But I don't want to stay
like that as far as Jason said it's a security break.
(http://www.geocrawler.com/archives/3/4041/2002/3/0/8165831/)

Any suggestion ?

FC NET
Patrice Blot
Ing�nieur syst�me - Responsable Technique
Besan�on - France
 


-------------------------------------------------------
This sf.net email is sponsored by: OSDN - Tired of that same old
cell phone?  Get a new here for FREE!
https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390
_______________________________________________
Qmail-scanner-general mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/qmail-scanner-general

Reply via email to