diff options
| author | Hendrik Jäger <gitcommit@henk.geekmail.org> | 2023-09-07 15:04:22 +0200 |
|---|---|---|
| committer | Hendrik Jäger <gitcommit@henk.geekmail.org> | 2023-09-07 15:04:22 +0200 |
| commit | 04bbb69494521d656bd312d73aeda849c0e71cfc (patch) | |
| tree | d135d3303abf84c588c060bcab2f65994c93fb5c | |
| parent | 24bba54445e0a7c17a50ddce05e31f12f4cf4e10 (diff) | |
exim config example: untainting user inputfix/exim_config_tainted
| -rw-r--r-- | schleuder/docs/server-admins.md | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/schleuder/docs/server-admins.md b/schleuder/docs/server-admins.md index ed28bc0..8bcf2c5 100644 --- a/schleuder/docs/server-admins.md +++ b/schleuder/docs/server-admins.md @@ -171,7 +171,8 @@ Within the `begin routers` section of your `exim.conf` you can add the following mlschleuder: driver = accept - condition = ${lookup {$local_part@$domain}lsearch{/etc/exim/schleuder-lists} {yes}{no}} + require_files = /etc/exim/schleuder-lists + address_data = ${lookup {$local_part@$domain} lsearch,ret=key {/etc/exim/schleuder-lists} {$value} fail} local_part_suffix_optional local_part_suffix = +* : -bounce : -sendkey : -request : -owner transport = mlschleuder_transport_local @@ -186,8 +187,8 @@ Within the `begin transports` section of your `exim.conf` you then configure the group = schleuder # schleuders generates nice log messages for some of the problems return_fail_output = true - home_directory = /var/lib/schleuder/lists/$domain/$local_part - command = "/usr/bin/schleuder work $local_part$local_part_suffix@$domain" + home_directory = /var/lib/schleuder/lists/${domain:$address_data}/${local_part:$address_data} + command = "/usr/bin/schleuder work ${local_part:$address_data}${local_part_suffix}@${domain:$address_data}" message_size_limit = 10M Please note that we keep the `$local_part_suffix` when handing the mail over to schleuder, so schleuder can e.g. detect bounces or sendkey emails properly. |