Exim4U General Discussion

Anyone running Exim-4.94?

Classic

List

Threaded

4 messages Options

Odhiambo Washington

Anyone running Exim-4.94?

Hola,

If running exim-4.94, did you all fix this issue silently without discussing it here on the list, or did I miss the discussion?

2020-10-19 07:13:11 1kUMXc-0005pC-OR Tainted filename for search: '/var/spool/exim/db/greylist.db'

Anyway, just to say that I Googled and found something that I believe works for exim-4.94:

Old:

accept condition = ${lookup sqlite {GREYDB SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

New:

accept condition = ${lookup sqlite,file=GREYDB {SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

As discussed here: https://bugzilla.redhat.com/show_bug.cgi?id=1848283

Adiós.

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)

_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

gldickens3

Re: Anyone running Exim-4.94?

Administrator

Hi Odhiambo,

Thanks for the heads up!? I was unaware of this.? I am currently traveling but I will look into this and address this issue after I return home later this week.? Please forward on any other helpful tidbits that you have.

Thanks again,

Gordon

On 10/19/20 5:36 AM, Odhiambo Washington wrote:

Hola,

If running exim-4.94, did you all fix this issue silently without discussing it here on the list, or did I miss the discussion?

2020-10-19 07:13:11 1kUMXc-0005pC-OR Tainted filename for search: '/var/spool/exim/db/greylist.db'

Anyway, just to say that I Googled and found something that I believe works for exim-4.94:

Old:

? accept condition = ${lookup sqlite {GREYDB SELECT host from resenders \

? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?WHERE helo='${quote_sqlite:$sender_helo_name}' \

? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?AND host='$sender_host_address';} {1}}

New:

? accept condition = ${lookup sqlite,file=GREYDB {SELECT host from resenders \

? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?WHERE helo='${quote_sqlite:$sender_helo_name}' \

? ? ? ? ? ? ? ? ? ? ? ? ? ? ? ?AND host='$sender_host_address';} {1}}

As discussed here:?https://bugzilla.redhat.com/show_bug.cgi?id=1848283

Adi?s.

--

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.",?grep ^[^#] :-)
_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

Odhiambo Washington

Re: Anyone running Exim-4.94?

Hi Gordon,

Nice to hear from you.

The other thing that I had to deal with when I moved to exim-4.94 and this Taint issue became major was to do with DKIM signing and I had to change the DKIM transport.

I have several domains with same dkim_selector, but different keys. It's a situation that does not affect many people, because if anything, one can use the same keys everywhere, right? :-)

OLD:

remote_smtp_DK:

driver = smtp

dkim_domain = ${if exists{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}{${lc:$sender_address_domain}}{}}

dkim_selector = key1

dkim_private_key = ${if exists{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}\

{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}{0}}

dkim_canon = relaxed

dkim_strict = true

NEW:

remote_smtp_DK:

driver = smtp

dkim_domain = ${if exists{/etc/exim4/DKIM/${lc:$sender_address_domain}}{${lc:$sender_address_domain}}{}}

dkim_selector = key1

dkim_private_key = ${lookup {${sender_address_domain}} \

dsearch,ret=full {/etc/exim/DKIM} \

{$value/dkim.priv.key} {false}}

dkim_canon = relaxed

dkim_strict = true

On Mon, 19 Oct 2020 at 16:04, Gordon Dickens <[hidden email]> wrote:

Hi Odhiambo,

Thanks for the heads up! I was unaware of this. I am currently traveling but I will look into this and address this issue after I return home later this week. Please forward on any other helpful tidbits that you have.

Thanks again,

Gordon

On 10/19/20 5:36 AM, Odhiambo Washington wrote:
Hola,

If running exim-4.94, did you all fix this issue silently without discussing it here on the list, or did I miss the discussion?

2020-10-19 07:13:11 1kUMXc-0005pC-OR Tainted filename for search: '/var/spool/exim/db/greylist.db'

Anyway, just to say that I Googled and found something that I believe works for exim-4.94:

Old:

accept condition = ${lookup sqlite {GREYDB SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

New:

accept condition = ${lookup sqlite,file=GREYDB {SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

As discussed here: https://bugzilla.redhat.com/show_bug.cgi?id=1848283

Adiós.

--

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)
_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)

_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

Gordon Dickens-3

Re: Anyone running Exim-4.94?

In reply to this post by Odhiambo Washington

I have posted revised versions of the following files to accommodate Exim 4.94 regarding "Tainted filname for search" paniclog errors and sqlite usage syntax changes.

/etc/exim/exim.conf - https://github.com/Exim4U/src/blob/master/etc/exim/exim.conf
/etc/exim/exim-greylist.conf.inc - https://github.com/Exim4U/src/blob/master/etc/exim/exim-greylist.conf.inc

Please note that these files are not compatible with Exim versions prior to 4.94. So, please be aware of these changes if/when you upgrade to Exim 4.94 and higher. Exim4U will include versions of both files which will be maintained for Exim 4.94 and for Exim versions prior to 4.94 respectively. See:

https://github.com/Exim4U/src/tree/master/etc/exim

Note the following files in /etc/exim/:

exim-greylist.conf.inc-USE_WITH_EXIM_4.94_AND_LATER
exim-greylist.conf.inc-USE_WITH_EXIM_PRIOR_TO_VER_4.94
exim.conf-USE_WITH_EXIM_4.94_AND_LATER
exim.conf-USE_WITH_EXIM_PRIOR_TO_VER_4.94

A big thanks to Odhiambo Washington for bringing this issue up!

Gordon

On 10/19/20 5:36 AM, Odhiambo Washington wrote:

Hola,

If running exim-4.94, did you all fix this issue silently without discussing it here on the list, or did I miss the discussion?

2020-10-19 07:13:11 1kUMXc-0005pC-OR Tainted filename for search: '/var/spool/exim/db/greylist.db'

Anyway, just to say that I Googled and found something that I believe works for exim-4.94:

Old:

accept condition = ${lookup sqlite {GREYDB SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

New:

accept condition = ${lookup sqlite,file=GREYDB {SELECT host from resenders \

WHERE helo='${quote_sqlite:$sender_helo_name}' \

AND host='$sender_host_address';} {1}}

As discussed here: https://bugzilla.redhat.com/show_bug.cgi?id=1848283

Adiós.

--

Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.", grep ^[^#] :-)
_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]

_______________________________________________
users mailing list -- [hidden email]
To unsubscribe send an email to [hidden email]