Reindl Harald skrev den 2012-12-28 20:22:
because cookies are DOMAIN based the domain is the same
and you are not using roundcube ?
if roundcube have this kind of security problems please dokument it as a ticket so it gets fixed in php code, for the apache setup i still keep what i say to not use redirecting