Subject: Developers of Sympa
List archive
Re: [sympa-dev] parsing bug in List::request_action() ?
- From: Olivier Salaun - CRU <address@concealed>
- To: Sergiy Zhuk <address@concealed>
- Cc: address@concealed, address@concealed
- Subject: Re: [sympa-dev] parsing bug in List::request_action() ?
- Date: Mon, 24 Mar 2003 14:33:13 +0100
Hi Sergiy,
This has been fixed 1 year ago, refering to the release_notes :
3.3.6b.1 26 June 2002
[...]
Bug fixes :
src/List.pm: [reported by Fabien Salvi] made Sympa die if sender address contained '*'
Sergiy Zhuk wrote:
I hope the below is a known bug which has been fixed in 3.4.x...--
It looks like if someone (say a spammer) sends a message with a sender
(parsed From:) starting with a '*', sympa.pl will die, e.g.:
From: *@*
From: "TOM(tom.com)" <*@tom.com>
From: "blah" <*address@concealed>
If there's a '*' anywhere else in the address, that works fine, e.g.:
From: "blah" <no*spam*@*>
This is happenning with 3.3.5, I didn't test it with 3.4.x.
I've added a temp. workaround to sympa.pl in 2 places where we check sender:
- if ($sender =~
/^(mailer-daemon|sympa|listserv|mailman|majordomo|smartlist|$conf_email)/mio)
{
+ if ($sender =~
/^(mailer-daemon|sympa|listserv|mailman|majordomo|smartlist|\*|$conf_email)/mio)
{
But this is not a solution.
'*' is a perfectly legit char according to RFC-822 and thus should be dealt
with accordingly...
Olivier Salaun
Comite Reseau des Universites
-
parsing bug in List::request_action() ?,
Sergiy Zhuk, 03/21/2003
- Re: [sympa-dev] parsing bug in List::request_action() ?, Olivier Salaun - CRU, 03/24/2003
Archive powered by MHonArc 2.6.19+.