[rt-users] Problem with taint checking and larger binary attachments

Fri Oct 26 13:28:48 EDT 2001

I have rt-2.0.7 installed on RH6.2 and am fighting with two
attachment issues.  One is a bug, the other a design need:

1) incoming customer mails with attachments sometimes work
and sometimes don't.  I can't figure out a pattern (except
perhaps failing ones are larger, but still much smaller
than the default 10M limit).  The messages I get in the 
rt.log.xxxx file when receiving a single 2.1M attachment are:

Insecure dependency in eval while running with -T switch at /usr/lib/perl5/site_perl/5.6.0/Text/Template.pm line 315, <STDIN> line 30256.
Insecure dependency in eval while running with -T switch at /usr/lib/perl5/site_perl/5.6.0/Text/Template.pm line 315, <STDIN> line 30256.

It would appear that somehow attachments are being taint
checked (and I can't see how to disable this, since nowhere
can I find it being enabled).

Also, the same file can't be attached thru the web interface.

2) There is no way to send an email correspondance to a customer
   that contains an attachment.  That seems wrong, but reading
   the rt-users history, that is the current design.  The last
   message I saw asked if the mod written by ?? met with Jesse's
   approval.  Does it?

BTW,  other than the large number of CPAN dependencies, setting 
up RT was very easy and it appears to be a VERY powerful 
product.  Good job!

-- 
--------------------------------------------------------
Brian McClendon     bam at intrinsic.com       650-966-6804
--------------------------------------------------------