Hi,
I would like to propose a modification of "iniset.php" to eliminate
possible "Undefined index: HTTPS" notices in the error log.
The existence of $_SERVER['HTTPS'] should be tested before any attempt
to retrieve its value. We currently use the following solution:
isset($_SERVER['HTTPS']) ? ini_set('session.cookie_secure',
($_SERVER['HTTPS'] && ($_SERVER['HTTPS'] != 'off')))
: ini_set('session.cookie_secure', 0);
The proposed modification is attached as a patch file.
Regards,
Jonas Nasholm
Bitfuse Network
--- 8< --- detachments --- 8< ---
The following attachments have been detached and are available for viewing.
http://detached.gigo.com/rc/j3/EflQHdK2/program_include_inis.patch
Only click these links if you trust the sender, as well as this message.
--- 8< --- detachments --- 8< ---
_______________________________________________
List info: http://lists.roundcube.net/dev/
Hi,
I’ve attached an updated Swedish localization for version
trunk-r2162-20081216. We currently use this translation in our systems.
Keep up the excellent work!
Regards,
Jonas Nasholm
Bitfuse Network
--- 8< --- detachments --- 8< ---
The following attachments have been detached and are available for viewing.
http://detached.gigo.com/rc/CD/yInFDl6e/sv_SE.tgz
Only click these links if you trust the sender, as well as this message.
--- 8< --- detachments --- 8< ---
_______________________________________________
List info: http://lists.roundcube.net/dev/
While it is still unclear whether or not there is a problem with
bin/html2text.php (http://trac.roundcube.net/ticket/1485618), maybe it's worth
considering adding session checking to all of the utilities in the bin
directory. If a vulnerability exists in a utility, then having a session check
will limit or complicate its exploitation.
The way quotaimg.php was doing session checking could be used in the other
utilities. (quotaimg.php's session checking was removed in October:
http://trac.roundcube.net/changeset/2012).
-kris
--
Kris Steinhoff
ITCS Web/DB Production Team
The University of Michigan
_______________________________________________
List info: http://lists.roundcube.net/dev/
Hi RC Devs,
I'm looking at the cache in the messages table regarding ticket #1485634.
It looks to me like this is what the caching is currently doing:
In _list_headers, if it is determined that the cache is more than 10%
out of sync, it fetches the headers for the page you are currently on
and puts them in the cache.
Then it erases all the cache entries with an id higher than the page you
are on.
Cache validity checking is per mailbox, not per page, this means that if
I have 20 pages of mail and I delete something on page 18, the cache
will "miss" on every visit to pages 1-17 until I revisit all 17 pages.
Also consider the case where an imap user with dozens of pages of mail
first accesses roundcube. Their cache will always miss until they visit
every page at least once.
Am I missing something?
Is it too costly for a cache miss to trigger populating the cache with
more than just the page they are on?
Maybe a cache miss could populate the current page plus some set amount
more to keep the time down, but eventually populate the user's whole
cache. Or maybe it could be adjusted so that the whole mailbox doesn't
have to be represented in the cache for the user to get some benefits
from it.
Thanks for your time,
Ziba
_______________________________________________
List info: http://lists.roundcube.net/dev/
Hi,
I just added a patch to #1484883, which enables TLS support in Net_SMTP.
Do we have a policy about modifying 3rd-party libraries?
Robin
_______________________________________________
List info: http://lists.roundcube.net/dev/
Missing strings were added in a previous message, see;
http://lists.roundcube.net/mail-archive/dev/2008-12/0000036.html
Regards
- Gokdeniz
> Message: 5
> Date: Wed, 17 Dec 2008 13:52:02 +0800
> From: "Aykut Kara" <aykut.kara(a)gmail.com>
> Subject: [RCD] turkish translation updated
> To: <dev(a)lists.roundcube.net>
> Message-ID: <494893a0.15528c0a.4509.5ff6(a)mx.google.com>
> Content-Type: text/plain; charset="us-ascii"
>
> Hi,
>
>
>
> Some of new variables translations were missing for Turkish. I added missing
> ones and attached to this email.
>
>
>
> Regards
>
> -- Aykut Kara --- 8< --- detachments --- 8< --- The following attachments have been detached and are available for viewing. http://detached.gigo.com/rc/8t/yYS4rCj5/messages.inchttp://detached.gigo.com/rc/8t/yYS4rCj5/labels.inc Only click these links if you trust the sender, as well as this message. --- 8< --- detachments --- 8< ---
_______________________________________________
List info: http://lists.roundcube.net/dev/
Hi, all.
I use RC 0.1.1-stable, but the filename after download attachment with
Chinese characters is incorrect, so i created this patch to fix this
issue. (I submitted another patch to fix incorrect attachment filename
display before, and was fixed in svn version in another way.)
Note: I havn't test this issue in RC svn version, but i will do it
later.
--
Best regards.
Zhang Huangbin
- Open Source Mail Server Solution for RHEL/CentOS 5.x:
http://code.google.com/p/iredmail/
--- 8< --- detachments --- 8< ---
The following attachments have been detached and are available for viewing.
http://detached.gigo.com/rc/pN/VvmkCwqf/roundcubemail-0.1.1_.patch
Only click these links if you trust the sender, as well as this message.
--- 8< --- detachments --- 8< ---
_______________________________________________
List info: http://lists.roundcube.net/dev/