Hi Gordon,

Nice to hear from you.

The other thing that I had to deal with when I moved to exim-4.94 and this Taint issue became major was to do with DKIM signing and I had to change the DKIM transport.
I have several domains with same dkim_selector, but different keys. It's a situation that does not affect many people, because if anything, one can use the same keys everywhere, right? :-)


OLD:
remote_smtp_DK:
�� driver = smtp
�� dkim_domain�� �� �� ��= ${if exists{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}{${lc:$sender_address_domain}}{}}
�� dkim_selector�� �� �� = key1
�� dkim_private_key�� ��= ${if exists{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}\
�� �� �� �� �� �� �� �� �� �� �� ��{/etc/pki/tls/dk/${lc:$sender_address_domain}-dkim.priv.key}{0}}
�� dkim_canon = relaxed
�� dkim_strict = true

NEW:
remote_smtp_DK:
�� driver = smtp
�� dkim_domain�� �� �� �� = ${if exists{/etc/exim4/DKIM/${lc:$sender_address_domain}}{${lc:$sender_address_domain}}{}}
�� dkim_selector�� �� �� = key1
�� dkim_private_key�� ��= ${lookup {${sender_address_domain}} \
�� �� �� �� �� �� �� �� �� �� �� ��dsearch,ret=full {/etc/exim/DKIM} \
�� �� �� �� �� �� �� �� �� �� �� ��{$value/dkim.priv.key} {false}}
�� dkim_canon�� �� = relaxed
�� dkim_strict�� �� �� = true
��




On Mon, 19 Oct 2020 at 16:04, Gordon Dickens <gecko@exim4u.org> wrote:
Hi Odhiambo,

Thanks for the heads up!�� I was unaware of this.�� I am currently traveling but I will look into this and address this issue after I return home later this week.�� Please forward on any other helpful tidbits that you have.

Thanks again,

Gordon



On 10/19/20 5:36 AM, Odhiambo Washington wrote:
Hola,


If running exim-4.94, did you all fix this issue silently without discussing it here on the list, or did I miss the discussion?

2020-10-19 07:13:11 1kUMXc-0005pC-OR Tainted filename for search: '/var/spool/exim/db/greylist.db'

Anyway, just to say that I Googled and found something that I believe works for exim-4.94:

Old:
�� accept condition = ${lookup sqlite {GREYDB SELECT host from resenders \
�� �� �� �� �� �� �� �� �� �� �� �� �� �� �� ��WHERE helo='${quote_sqlite:$sender_helo_name}' \
�� �� �� �� �� �� �� �� �� �� �� �� �� �� �� ��AND host='$sender_host_address';} {1}}

New:
�� accept condition = ${lookup sqlite,file=GREYDB {SELECT host from resenders \
�� �� �� �� �� �� �� �� �� �� �� �� �� �� �� ��WHERE helo='${quote_sqlite:$sender_helo_name}' \
�� �� �� �� �� �� �� �� �� �� �� �� �� �� �� ��AND host='$sender_host_address';} {1}}


Adi��s.

--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.",��grep ^[^#] :-)

_______________________________________________
users mailing list -- users@exim4u.org
To unsubscribe send an email to users-leave@exim4u.org



--
Best regards,
Odhiambo WASHINGTON,
Nairobi,KE
+254 7 3200 0004/+254 7 2274 3223
"Oh, the cruft.",��grep ^[^#] :-)