On Wed, 21 Aug 2002, Jason R. Mastaler wrote: > When OUTGOINGMAIL = 'sendmail', TMDA sends mail with the sendmail > interface like such: > > /usr/sbin/sendmail -f 'envelope_sender' -- 'envelope_recipient' > > Thus, if someone sends you a message with some shell command as their > Return-Path, there is a chance it could be executed by the shell when > the above sendmail command is run.
I tested by doing this on the command line: /usr/sbin/sendmail -f '`rm /home/jphekman/tmp/foo`' -- '[EMAIL PROTECTED]' ~/tmp/foo did not get deleted. (I also tried without the backticks, just in case, since you hadn't mentioned them.) I conclude that I am safe, unless I'm misunderstanding the situation. j --- "Users complain that they receive too much spam, while spammers protest messages are legal." -InfoWorld "You do not have to do everything disagreeable that you have a right to do." -Judith Martin (Miss Manners) _____________________________________________ tmda-users mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-users
