Skip to main content
ExLibris
  • Subscribe by RSS
  • Ex Libris Knowledge Center

    How to Protect Primo Local Installation from Misuse of "Send to Email" Functionality

    • Product: Primo
    • Relevant for Installation Type: Local

    Issue

    A potential misuse of the "Send To Email" functionality in Primo was recently discovered. This can result in multiple e-mails being sent from Primo to a long list of recipients. 

    Resolution

    Until permanent fix that will increase the security level of the Primo email feature will be delivered, we recommend that you disable the email functionality, or at least block e-mails that have more than 5 recipients. 

    searches alerts and pipe failures email will not work until the fix is implemented in your environment.  To check your pipe status please go to Back office Primo Home > Monitor Primo Status > Pipe Monitoring.

    How to disable the email functionality

    Change the SMTP_HOST parameter under General Configuration: 'E-mail and SMS Configuration' to a fake parameter (for example: NOT_REAL_SMTP).

    Deploy 'System Configuration' from Deploy ALL.

    How to block e-mails that have more than 5 recipients for "Sendmail" mail agent/server:

    1. Connect as root to Primo FE server (in case of multiple FE's this should be done on each server).
    2. Add the following line to sendmail.mc: “define(`confMAX_RCPTS_PER_MESSAGE', `5')dnl”
    3. Save file and exit.
    4. Run the following command to compile:
    # m4 /etc/mail/sendmail.mc > /etc/mail/sendmail.cf
    5. Restart sendmail service by running the following command:
    # service sendmail restart

    "Sendmail" and "Postfix" are common mail agent/servers and these instructions are relevant only for them. If you are using a different mail agent/server it is necessary to adapt these instructions to the mail agent/server.

    How to block e-mails that have more than 5 recipients for  for "Postfix" mail agent/server:

    1.    Connect as root to Primo FE server (in case of multiple FE's this should be done on each server).

    2.    Edit Postfix main.cf file usually located under /etc/postfix

    3.    Add the line : “smtpd_recipient_limit = 5” save and exit file

    4.    reload postfix service by command : service postfix reload

     


    • Article last edited: 05-Jun-2017
    • Was this article helpful?