-
-
Notifications
You must be signed in to change notification settings - Fork 90
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow allowlisting allowed forward commands #1066
Comments
DemiMarie
changed the title
Allow whitelisting allowed forward commands
Allow allowlisting allowed forward commands
Aug 26, 2020
I think a reasonable approach would be to use one or more regular expressions. For instance, |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
If
smtp.conf
was allowed to contain a list of commands allowed in~/.forward
files, most of the security problems associated with~/.forward
files could be avoided. Since the allowed script can still do whatever it wants, this is not a loss in functionality from the user’s perspective.Such an option should probably be disabled by default, at least at first.
The text was updated successfully, but these errors were encountered: