Valid E-mails Rejected as Invalid
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GNU Mailman |
Fix Released
|
High
|
Unassigned |
Bug Description
I ran into a problem recently with sync_members. I was
attempting to add a list of addresses that included
"---<email address hidden>", but this address was rejected:
bin/sync_members -a=no -f
/usr/local/
system-status
Invalid : ---<email address hidden>
You must fix the preceding invalid addresses first.
While this is an ODD address, it is perfectly legal,
per section 3.4 of RFC 2822
(http://
valid address like this seems like a pretty major
problem to me.
This was with MailMan 2.1.6 on FreeBSD 4. If there is
any more information I can provide, please let me know.
Regards,
Tim Wilde
[http://
Related branches
- Barry Warsaw: Needs Fixing
-
Diff: 18 lines (+6/-0)1 file modifiedsrc/mailman/app/tests/test_registration.py (+6/-0)
This appears to be a problem with line 210 of Utils.py, in
the ValidateEmail function:
if _badchars.search(s) or s[0] == '-': MMHostileAddres s, s
raise Errors.
MailMan is explicitly rejecting e-mails that start with a
hyphen. Why? This is a perfectly legal e-mail address. If
MailMan is using e-mail addresses in such an unsafe way that
they could be interpreted as command line arguments, that's
just absurd. I can't see any other reason to forbid a
leading hyphen, though.
Can anyone tell me if I will be safe removing this check, or
if MailMan will blow up elsewhere?