Hi,
Some time back, I posted about a problem I had doing authenticated
binds against Active Directory. That problem remained unresolved, and now
it's back to bite me.
We've got a LISTSERV node which does lookups against an OpenLDAP
server which I've got to migrate to Active Directory. There's no way to do
a bind to check the $local_part of the LISTSERV address, so given
detainting, the only way I see to get this done is to use this hack:
https://jimbobmcgee.wordpress.com/2020/07/29/de-tainting-exim-configuration-variables/
I'm okay with doing this because my LISTSERV node is behind an
ingress node which is checking and making sure everything is good. The
checking happens there, there's no way around that node, and so I'm willing
to trust it, given that I have no choice in the matter. So there's my
question:
Why is this hacky lookup failing?
command = "/opt/lsoft/listserv/bin/lsv_amin /opt/lsoft/listserv/spool
${lookup{$local_part} lsearch*,ret=key{/etc/exim/detaint}}"
Thanks,
John A
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## [email protected]
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
