[Mimedefang] use strict
David F. Skoll
dfs at roaringpenguin.com
Wed Apr 13 21:05:02 EDT 2005
Kenneth Porter wrote:
> In addition to "use strict", does it make sense to use "-wT"?
Taint-checking would probably cause lots of problems.
> (Presumably this would need to be in mimedefang.pl.) Could a hostile
> sender effect a shell escape in a poorly-written filter?
Well, by definition, a "poorly-written" filter can let a hostile
sender do anything. :-) You could write a filter that executes
the subjects of incoming e-mails as shell commands if you really
wanted to.
Regards,
David.
More information about the MIMEDefang
mailing list