On 2025-02-11 15:10, Daniel Botting wrote:
Hi Jeremy,
Thank you for your very prompt answer, please accept my apologies for
the delayed response, I was out of the office.
Your guidance is very helpful for moving me forward with my rebuild, I
have tried out the expansion-test mode and it is useful to be able to
test in that manner instead of sending an email to the server.
Many thanks
Daniel
PS
I originally clicked on the link in the archives to (Reply to this
message) and it provides the address as exim-us...@exim.org, this
bounced as undeliverable.
On 2025-02-09 22:58, Jeremy Harris wrote:
On 09/02/2025 22:29, Daniel Botting via Exim-users wrote:
> My understanding of tainting and experience so far is that it will stop your
configuration from working until you resolve the tainted data?
No.
Some data is tainted. Basically, if it came from the wire.
This is normal.
What is not permitted is the *expansion* of tainted data
(for fairly expansive interpretations thereof).
You *are* allowed to use tainted data as the key for a lookup
(in fact, that's the most common way of getting untainted data).
So your
> ${lookup{$sender_address}nwildlsearch{CONFDIR/sender-whitelist}
is fine.
If you want to play around to see what happens, use "exim -d -be".
Expansion-test mode on current Exim lets you set variables and mark
the content as tainted.
--
Cheers,
Jeremy
--
## subscription configuration (requires account):
##
https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscr...@lists.exim.org
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
