[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: victimdomain!victimid@myserver hack



On 11 Aug, Amir Sedighi wrote:
> I am on ORBS because my server can be used as a relay if the RCT TO line
> is something like victimdomain!victimid@myserver .
> A while ago I saw a fix for other hacks by James S. MacKinnon which is
> implemented in cf/rrouter.conf at the beginning of the rrouter function.
>          tsift "$origaddr" in
>          # "percent redirect"
>          (.*)%(.*)@(.*)
>                  return (((error percent-redirect "$origaddr" $A))) ;;
>          # "colon pathing"
>          @(.*),@(.*):(.*)@(.*)
>                  return (((error colon-pathing "$origaddr" $A))) ;;
>          tfist

Use the same pattern:
          # "exclamation"
          (.*)!(.*)@(.*)
                  return (((error bounce "$origaddr" $A))) ;;

-- 
#! /usr/bin/perl -- Eino Tuominen, eino@utu.fi
("1-2-1-2---1-1-1---2--1---1-4-6--4-1--1---2--1----1---1-3--1-4--2-1-1---2-".
"3-6-1-5--2-1-1---2-2--1--4-6--1-4--4-1--3--1--1-1--1--2-1-1---2-")=~//;while
($'=~m$.$){($&ne"-")?$}.="0"x$&:($}.=1)}{*_=\$#}${_}=pack"B192",$};print time