Hi John,
On Wed, Sep 11, 2019 at 11:28:27AM +0100, John Winters wrote:
Presumably if your exim is not running as root, then
the most it can give is
access as your exim user?
Are there setups where Exim doesn't run as root? Normally it runs as
root in order to do local delivery as the required user.
If you have no local delivery then my understanding is that you
aren't vulnerable to this bug, because it relies on writing bad data
into a file that a later delivery agent processes.
Cheers,
Andy
--
https://bitfolk.com/ -- No-nonsense VPS hosting