MailScanner Bug - Privacy Advisory

Kevin Miller Kevin_Miller at ci.juneau.ak.us
Fri Jul 2 17:35:20 IST 2010


Hugo van der Kooij wrote:
> On 02/07/10 17:24, Julian Field wrote:
>> This only occurs if you choose to use the "$to" variable in your
>> inline.spam.warning.txt. It is not present in the default templates
>> I ship. 
>> 
>> I would therefore suggest 2 things:
>> 1. You remove the "Dear $to" line from your own
>> inline.spam.warning.txt report file.
>> 2. I remove "$to" from the list of available variables which can be
>> used in that report file.
> 
> I suggest we keep the variable available.
> 
> The "privacy leakage" is a choice made by the administrator in this
> case. 
> 
> Hugo.

I agree, given it's not the default...

...Kevin
-- 
Kevin Miller                Registered Linux User No: 307357
CBJ MIS Dept.               Network Systems Admin., Mail Admin.
155 South Seward Street     ph: (907) 586-0242
Juneau, Alaska 99801        fax: (907 586-4500


More information about the MailScanner mailing list