On Sat, 28 Jun 2003, Sam Varshavchik wrote:
Turbo Fredriksson writes:
I've got a couple of mails which have not been checked (and hence
not delivered) the last two weeks.
First I just ignored it (it was spam any way). But today it hit me.
This might be dangerous!!
If you don't know how to write a secure mail filtering recipe, it could
certainly be dangerous.
Actually, I think maildrop should expand it's escape function. I was one
of the people mentioning that having it escape shell characters would be
nice, because I use it heavily for that (before every xfilter, in fact),
but that winds up escaping quite a bit that doesn't need to be escaped.
It's odd looking at headers inserted by xfilter this way, because you wind
up escaping periods, dashes, etc, which can make a domain name or ip
address harder to read.
Maybe two new seperate escape functions, one that does just the regex
escaping, and one that does just shell escaping.
It's not a big deal to me, however, since I'm moving away from maildrop in
favor of custom perl filters, so feel free to ignore the idea unless it
really is a good one in your opinion.
3 messages in net.sourceforge.lists.courier-maildropRe: [maildropl] Re: escaping/protecti...
