Upgraded from 4.4.4 to 5.0.1 using the Ubuntu repos. Everything seems fine except the CommandbyMail extension. It works, unless I email the -comment queue which kicks in the --action comment modifier in the rt-mailgate command. Our paniclog (and exim4 log) have these:
If I just reply via email, there’s no issue. The line above has --action correspondence and stops after T=request_tracker4_pipe. Mail flows through fine.
Hoping for some ideas – we have the latest CommandbyMail.pm (which admittedly isn’t that new – 3.0.1-4.
Are you using Exim version >= 4.94 by any chance? ISTR hitting the “tainted” “not permitted” issue when our CentOS boxes were updated to that version and it was also a Debian bug raised. If that is the case you’ll need to tweak your exim config a bit (how you do this depends very much on what your local exim config looks like).
GreenJimII – thanks, that’s definitely it. I was reading about the tainted changes but wasn’t fully understanding the potential. It is definitely not clear how I’d make the adjustment but I’m working on it. Thank you for the lead.
/etc/exim4/main/10_request-tracker4
QUEUENAME_QUERY = \
SELECT Name FROM Queues WHERE \
CorrespondAddress = '${quote_mysql:$local_part}@${quote_mysql:$domain}' \
OR CommentAddress = '${quote_mysql:$local_part}-comment@${quote_mysql:$domain}' \
AND Disabled = '0'
#hide mysql_servers = $DBHOST/$DBNAME/$DBUSER/$DBPASSWORD
hide mysql_servers = localhost/rtdb5/rtuser/password
domainlist rt4_domains = rt.ourdomain.com : rt.ourdomainalias.com
RT4_URL = http://localhost/
The SQL query above was my attempt at getting the inbox-comment@rt.domain.com to make it past rt-mailgate. I gather the “lookup” syntax is what I’m shooting for, I’m just not sure where to include it. Maybe within the SQL query?
Thinking about it – it’s not the CommandbyEmail plugin that’s problematic – it’s just replying via email to inbox-comment@domain.com or any of the -comment addresses. There must be something basic wrong with my config. It’s definitely still exim taint-related, just not clear why since non-comment addresses seem to work fine.
Not impossible but I think that would make it look for a variable called $local_part-comment which isn’t a thing. The $local_part would be the email ID (such as “inbox”) and I’m adding -comment to that so it finds it all in the query. I think my issue is I need to detaint the data in $local_part first using the lookup, then perhaps the query will work.
But I’m not sure. I’m not sure it’s even in the RT-focused configs that I need to detaint $local_part. It could be in another part of the transport or router, and then the query uses the contents of that data.