Joe Acquisto-j4:
> >>>
> > kris_h:
> >> Hey Wietse,
> >>
> >> thank you for this clearification.
> >>
> >> What do you think about using the reject-recipient /\$\{/-rule?
> >
> > As a temporary rule, it may have made sense when the Exim bug was new.
> >
> > As a permanent 'deny' rule, it won't block new exploits.
>
> Seems these exploits only a concern if Exim is installed? Or am I mistaken?
It could be an indirect attack: attacker -> Postfix -> Exim.
Hence, the filter may be useful while the bug is exploitable.
Wietse
