Or indeed if people are willing to get their hands in their pockets and sponsor Julian to do this or buy him something nice from his Amazon list he may have a little more incentive to do this.<br>(Assuming he's not playing with his new pet <a href="http://zend.to">zend.to</a> :-)<br>
<br clear="all">-- <br>Martin Hepworth<br>Oxford, UK<br>
<br><br><div class="gmail_quote">On 21 June 2011 20:08, Peter Bonivart <span dir="ltr"><<a href="mailto:bonivart@opencsw.org">bonivart@opencsw.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im">On Tue, Jun 21, 2011 at 8:42 PM, Stuart Henderson <<a href="mailto:stu@spacehopper.org">stu@spacehopper.org</a>> wrote:<br>
> "really" untainting would be something more than the<br>
><br>
> $foo =~ /^(.*)$/;<br>
> $foo = $1;<br>
><br>
> and similar you see everywhere... running with -U or su'ing<br>
> to the "Run as user" before starting MailScanner isn't really any<br>
> worse than this.<br>
<br>
</div>I agree with you and I don't suggest that the people who have trouble<br>
with this should fix this for Julian but if others are capable of<br>
writing, e.g., advanced custom functions and debugging Postfix support<br>
I think they are capable of properly untainting at least some of the<br>
code. It was just an open invitation without targeting anyone<br>
specific.<br>
<br>
It comes to a point when you answer the same question x amount of<br>
times you realize that if you fixed the source of the problem instead<br>
you would have saved time. :)<br>
<font color="#888888"><br>
/peter<br>
</font><div><div></div><div class="h5">--<br>
MailScanner mailing list<br>
<a href="mailto:mailscanner@lists.mailscanner.info">mailscanner@lists.mailscanner.info</a><br>
<a href="http://lists.mailscanner.info/mailman/listinfo/mailscanner" target="_blank">http://lists.mailscanner.info/mailman/listinfo/mailscanner</a><br>
<br>
Before posting, read <a href="http://wiki.mailscanner.info/posting" target="_blank">http://wiki.mailscanner.info/posting</a><br>
<br>
Support MailScanner development - buy the book off the website!<br>
</div></div></blockquote></div><br>