Hello,
I did kinda expect some reactions to this, but boy anthills and hornets nests come mind. Just for the record, 20+ years of Exim usage here (and Smail-3 before that) as well and the taint bits are sure up there in the pain chart. As mentioned this was a test server, in production the combination of file and ldap lookup does not (yet) exist, so it came as a late taint surprise or early Xmas present. ^o^ On Wed, 22 Dec 2021 16:00:24 +0000 Jeremy Harris via Exim-users wrote: > On 22/12/2021 15:41, Michael Haardt via Exim-users wrote: > >> Yes, for the ldap lookup here, quoting should be done. > > I agree. The question is how to proceed on this. > > > domainlist d2 = > > ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=$domain > > becomes > > domainlist d2 = > ldap;ldap::///ou=mail,dc=do,dc=main?mailDomain?sub?mailDomain=${quote_ldap:$domain} > The dual list (as non-intuitive as it is) works. There are some input sanitizations before this query, but sure, quote_ldap is of course a good default to use. So for the record, the issue is "solved", but as Michael wrote, things like this will confuse/frustrate people with less deep insight into Exim to the point of just giving up. Regards, Christian >Nothing more complex than that. > -- > Cheers, > Jeremy > > -- > ## List details at https://lists.exim.org/mailman/listinfo/exim-users > ## Exim details at http://www.exim.org/ > ## Please use the Wiki with this list - http://wiki.exim.org/ > -- Christian Balzer Network/Systems Engineer ch...@gol.com Rakuten Communications -- ## List details at https://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/