Kenneth Porter wrote:
In addition to "use strict", does it make sense to use "-wT"?
Taint-checking would probably cause lots of problems.
(Presumably this would need to be in mimedefang.pl.) Could a hostile sender effect a shell escape in a poorly-written filter?
Well, by definition, a "poorly-written" filter can let a hostile sender do anything. :-) You could write a filter that executes the subjects of incoming e-mails as shell commands if you really wanted to.
Regards,
David. _______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list MIMEDefang@lists.roaringpenguin.com http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
