Bugtraq mailing list archives
Re: procmail
From: casper () HOLLAND SUN COM (Casper Dik)
Date: Mon, 21 Jul 1997 16:50:56 +0200
On Fri, 18 Jul 1997, jamie wrote:Greetings Citizen! Here's a heads up to anyone running procmail v3.11pre4. FILES=| sed -n -e 's/^Subject:.*request \(.*\)/\1/p' | (cat; cat $FILES) | $SENDMAIL -oi -tNot only that.. but is it as easy to run shell commands as it looks? Or will procmail escape metacharacters inside variables automagically? (man procmailrc says nothing about automatic escaping, but does say pipes are passed to the shell for evaluation if they contain metacharacters... which this one does.)
Shells will not honor meta characters inside variables. The shell will first parse (the phase in which meta chacretsr and keywords are detected) and only then will it do variabel substitution. Then it'll split stuff in words and only then wildcard expansion is done. (So wildcards in shell variables are expanded; meta charcters aren't) Casper
Current thread:
- procmail jamie (Jul 18)
- Re: procmail Illuminatus Primus (Jul 20)
- Re: procmail Brock Rozen (Jul 21)
- Re: procmail Casper Dik (Jul 21)
- Re: procmail Olaf Kirch (Jul 21)
- Re: procmail Casper Dik (Jul 22)
- Re: procmail Illuminatus Primus (Jul 20)
- AIX ping (Exploit) Bryan P. Self (Jul 20)
- AIX ping, lchangelv, xlock fixes Troy Bollinger (Jul 21)
- Re: procmail Philip Guenther (Jul 20)
- AIX lchangelv (Exploit) Bryan P. Self (Jul 20)
- SNI-16: INN News Server Security Advisory Secure Networks Inc. (Jul 21)
- Re: SNI-16: INN News Server Security Advisory Christopher Samuel (Jul 28)
- Re: SNI-16: INN News Server Security Advisory Nathan J. Mehl (Jul 28)
- Re: SNI-16: INN News Server Security Advisory Christopher Samuel (Jul 28)
- Re: procmail Adam Shostack (Jul 21)