diff options
| author | aartoni <arto7796@gmail.com> | 2024-02-10 14:55:54 +0100 |
|---|---|---|
| committer | aartoni <arto7796@gmail.com> | 2024-02-10 14:55:54 +0100 |
| commit | 1d3d7e7ba954b702aff79886d4286d0130723ab0 (patch) | |
| tree | 506e976bba80403d79dfeb862c9338028958ebfc /emailwiz.sh | |
| parent | bcfba987e41db1a34d9900b777f16677357f82bb (diff) | |
Long term fix to prevent SMTP smuggling
Diffstat (limited to 'emailwiz.sh')
| -rw-r--r-- | emailwiz.sh | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/emailwiz.sh b/emailwiz.sh index c7d952f..ee5440c 100644 --- a/emailwiz.sh +++ b/emailwiz.sh @@ -308,9 +308,9 @@ postconf -e 'smtpd_milters = inet:localhost:12301' postconf -e 'non_smtpd_milters = inet:localhost:12301' postconf -e 'mailbox_command = /usr/lib/dovecot/deliver' -# Short-term workaround to prevent SMTP smuggling -postconf -e 'smtpd_forbid_unauth_pipelining = yes' -postconf -e 'smtpd_discard_ehlo_keywords = chunking' +# Long-term fix to prevent SMTP smuggling +postconf -e 'smtpd_forbid_bare_newline = normalize' +postconf -e 'smtpd_forbid_bare_newline_exclusions = $mynetworks' # A fix for "Opendkim won't start: can't open PID file?", as specified here: https://serverfault.com/a/847442 /lib/opendkim/opendkim.service.generate |