^ and / are allowed charactes in email address
Bug #266178 reported by
Reeg
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
Invalid
|
Medium
|
Unassigned |
Bug Description
According RFC 2822 (section 3.4.1 and 3.2.4) the
characters ^ and / are allowed in the localpart of an
email address. But in the file Mailman/Utils.py line
201 they are listed as _badchars.
[http://
To post a comment you must log in.
_badchars in Utils.py is essentially not for dompliance with
the RFC2822. Any printable characters can appear in local
part if you use 'quoted-string' (I vaguely suppose). This is
mainly for security in Mailman and web interface I suppose.
The character '/' was removed from this list in the CVS
after close investigation. Problem was in the cookie which
mailman send to the browser. '^' is a special character for
regular expression and must be very careful in treating
this. Another character which is listed in _badchars and
allowd in RFC2822 is '|' which is used for pipeline commands
and should be treated with care.
Again, '/' will be removed from the next 2.1.6 release.
BTW, I know '/' is used for X.400 gateway but how '^' is
used? I want to assess this priority.