On 25 Oct 2011, at 10:23 AM, Rob Verduijn wrote: > Since 23:56 last night mailscanner is crashing with the taint errors again. > Adding the -U to the shebang of /usr/sbin/MailScanner no longer works for me, > anybody else who has this issue ?
I think the problem is within the postfix module PFDiskStore.pm sub CopyEntireMessage the $targetdir, $targetfile variables are tainted. Anyway i don't use postfix so i cannot investigate further to fix, you need to trace where the variables get assigned an untaint them. -- Baruwa - www.baruwa.org _______________________________________________ Keep Baruwa FREE - http://pledgie.com/campaigns/12056
