On Thu, Jun 7, 2012 at 9:58 AM, Wietse Venema wrote:
> Schiz0:
>> Hey list,
>>
>> I have a setup with postfix-2.9.3,1 using virtual users from a
>> postgresql database. A thought suddenly occurred to me, what if
>> someone tries to send email to a user like this: '; drop table
>> mailbox;'
>> Does
Schiz0:
> Hey list,
>
> I have a setup with postfix-2.9.3,1 using virtual users from a
> postgresql database. A thought suddenly occurred to me, what if
> someone tries to send email to a user like this: '; drop table
> mailbox;'
> Does postfix properly escape fields when querying a sql database?
On 7 Jun 2012, at 9:33, Schiz0 wrote:
Hey list,
I have a setup with postfix-2.9.3,1 using virtual users from a
postgresql database. A thought suddenly occurred to me, what if
someone tries to send email to a user like this: '; drop table
mailbox;'
Does postfix properly escape fields when queryi
Hey list,
I have a setup with postfix-2.9.3,1 using virtual users from a
postgresql database. A thought suddenly occurred to me, what if
someone tries to send email to a user like this: '; drop table
mailbox;'
Does postfix properly escape fields when querying a sql database? My
virtual-users confi
