BOn Mon, 23 Aug 2010, Cord Beermann wrote: > First message should be from i-ask-for-someth...@$number.example.com, > the confirmation should be come from > i-do-not-want-anyth...@$number.example.com. > > In your try you used the same address for both?!
Hmm. I see there is a problem with $number.example.com, but not one which is fixed by modifying the "subscribe" script. If I send a message like this: From: [email protected] To: test-request Subject: subscribe [email protected] then [email protected] receives a cookie which enables him to subscribe the [email protected] address (wrong, but not particularly dangerous). We clearly want [email protected] to receive such mail instead, and we want the cookie to be for [email protected]. This patch seems to fix that: --- extraddr.old 2010-08-23 16:05:42.000000000 +0200 +++ extraddr 2010-08-23 16:06:05.000000000 +0200 @@ -61,13 +61,13 @@ $sed -n -e 'y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/' \ -e '/^[ ]*[^ a-z]/ q' \ -e 's/^...@]*add[ ]*'\ -'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z][^ ]*\).*/\1/p' \ +'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z0-9][^ ]*\).*/\1/p' \ -e 's/^...@]*address[ ]*'\ -'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z][^ ]*\).*/\1/p' \ +'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z0-9][^ ]*\).*/\1/p' \ -e 's/^...@]*sub[ ]*'\ -'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z][^ ]*\).*/\1/p' \ +'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z0-9][^ ]*\).*/\1/p' \ -e 's/^...@]*subscribe[ ]*'\ -'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z][^ ]*\).*/\1/p' ` +'[^ ]*[ ]\([^ ]*[-a-z0-9...@!][a-z0-9][^ ]*\).*/\1/p' ` fromaddr=`$cat $tmpfrom` I also see that once this is fixed, the message which is sent to [email protected] still says "To: [email protected]" in the message *body* but it's sent to [email protected] anyway. It would be nice to fix this as well, but I don't see that the suggested patch for "subscribe" fixes it. -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
