0ct0pu5/squirrelmail
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
14405 commits 3 branches 0 tags 27 MiB
Commit graph

293 commits

Author SHA1 Message Date
Fredrik Jervfors
c076a1f1ae Update copyright 2013-07-26 17:31:02 +00:00
pdontthink
47cddde346 Allow more liberal reuse of tokens to avoid cross-frame conflicts 2013-06-18 04:20:50 +00:00
Thijs Kinkhorst
efd75f4867 Replace calls to htmlspecialchars() with sm_encode_html_special_chars(). 
New function sm_encode_html_special_chars() encodes HTML special
characters by calling htmlspecialchars(). It sets the character set
to ISO-8859-1, to fix compatibility with PHP >= 5.4.

Patch by Paul Lesniewski.

See #3491925
 2012-12-09 12:06:30 +00:00
pdontthink
b2cc0dac1c Revert changes in revision 14302. Revision 14302 should only have changed functions/imap_general.php 2012-04-01 20:09:11 +00:00
pdontthink
33ebad3f5c Fall back to using LIST if NAMESPACE answer is malformed or otherwise problematic. This still doesn't account for situations where the NAMESPACE or LIST answer can't be parsed correctly. 2012-04-01 19:50:49 +00:00
pdontthink
3e322d9b3f Spelling mistake 2012-02-07 23:05:36 +00:00
pdontthink
c1319ea61a Better performance by reducing token usage to only one at a time (also added an option to revert to old behavior if desired) 2012-02-07 22:51:58 +00:00
pdontthink
acc409fb2a Updating copyrights. Happy New Year. 2012-01-02 02:09:17 +00:00
pdontthink
353fa70bf7 Don't use regular expressions when you don't need to 2011-03-04 01:19:33 +00:00
pdontthink
fc57bf2b59 Happy New Year! 2011-01-06 03:16:21 +00:00
pdontthink
1b8c0c2308 Fixed system lock-ups caused by a combination of certain rare, malformed message headers and buggy versions of PHP mbstring (#3053349, 987016) 2010-09-03 03:09:51 +00:00
pdontthink
6a87c99bc2 Reduced default time security tokens stay valid from 30 days to 2 days (reduces chances of session data growing too large) 2010-06-21 07:01:16 +00:00
pdontthink
a651189f84 Multibyte strings (notably subjects) are now handled correctly (#2824813, #2925731) 2010-02-04 20:05:51 +00:00
pdontthink
7aa0e60863 Update copyrights to 2010 2010-01-25 03:23:30 +00:00
pdontthink
3c1837c21b Fix wrong doc 2009-10-04 22:58:41 +00:00
Fredrik Jervfors
134d462c94 The copyright symbol isn't really needed since the word "copyright" is there. Also it doesn't display right in the documentation. 2009-09-29 12:15:33 +00:00
pdontthink
04498a59be Correct documentation 2009-08-12 08:36:13 +00:00
pdontthink
b28d767437 Implemented security token system. (Secunia Advisory SA34627) 2009-08-12 08:28:38 +00:00
pdontthink
bc3fb36016 Stop using deprecated ereg() functions (#2820952) 2009-07-29 01:55:21 +00:00
pdontthink
79cebcc00d Port Thijs fix (rev.13790) to DEVEL: no words must be an empty array, not a string, to prevent notices when later array operations are done on $words. 2009-07-28 22:50:12 +00:00
pdontthink
84a468306b Clarify docs and use correct $nbsp 2009-05-14 17:20:47 +00:00
Fredrik Jervfors
0a6245814a There are too many modified files being committed without the copyright year being updated, so here's a copyright year update the old-fashioned style. 2009-04-15 22:00:49 +00:00
pdontthink
6db973fc82 Fix documentation 2009-04-01 21:18:59 +00:00
pdontthink
d27f53fb49 Fix for accesskey getting set to 'NONE' in somem cases 2009-03-26 21:05:53 +00:00
pdontthink
836d2c03e6 Allow makeInternalLink() and makeComposeLink() to accomodate access keys 2009-03-25 03:16:51 +00:00
pdontthink
7b7ec67401 Fix port detection (2388423) 2008-12-04 21:34:53 +00:00
pdontthink
7d285b51a0 Fix HTTPS detection under Windows IIS (#2318118) 2008-11-26 02:56:42 +00:00
Thijs Kinkhorst
833746dca6 rework seed generation: this is something that really belongs in init.php 
so do it there. Input enough random components from diferent dimensions,
so hard to predict.
 2008-08-21 12:16:20 +00:00
Thijs Kinkhorst
9ad293f984 make MiB/KiB translatable 2008-01-24 15:22:43 +00:00
pdontthink
c3203d004e Make message list refresh work again in default advanced tempate 2007-09-29 21:57:56 +00:00
pdontthink
c39eb5a9a8 Make all comparisons case insensitive for forwarded protocol in get_location() 2007-07-10 07:54:42 +00:00
pdontthink
a6129582a1 Added ability to detect HTTP_X_FORWARDED_PROTO in get_location(), thanks to Daniel Watts 2007-07-10 06:00:11 +00:00
Thijs Kinkhorst
11b10ba5d1 increment year in copyright notices 2007-01-13 20:15:44 +00:00
pdontthink
3174ac0e31 Use checkForJavascript() instead of $javascript_on. Except I did not change mailbox_display.php because $javascript_on comes from $aProps, not sure if it could be changed - Marc? 2007-01-03 09:26:44 +00:00
pdontthink
7a16713e83 Refactor hyperlink template code 2006-12-31 04:18:52 +00:00
pdontthink
548b9b18f8 Add id attribute to hyperlink and image templates 2006-12-30 22:22:05 +00:00
pdontthink
e6aa350ba9 Add class attribute to template 2006-12-30 21:29:54 +00:00
pdontthink
8245571b10 Strip HTML for hyperlink creation from core 2006-12-10 21:44:28 +00:00
stekkel
628caa9264 sqBodywrap was extreme slow on large messages. The reason for that were the 
amount of calls to sq_strpos and sq_substr. Those functions did expensive
in_array calls and a few other things that only need to be done once. By
using static vars I cached the results with as result my compose screen
opens within a second again instead of 10 seconds.
 2006-09-30 16:24:00 +00:00
pdontthink
7fb385ed0a Moving sm_print_r back to globals.php; tired of it not being available when developing - that's what it's for, more than being available for actual code use as a string function in a file that's not included high enough. Also new directory parsing fxn. 2006-09-28 14:17:15 +00:00
Thijs Kinkhorst
d12db33c3f kibibyte is with a capital K 2006-09-10 08:30:13 +00:00
Thijs Kinkhorst
37722cf3a4 kilo has a small 'k'. 2006-09-09 18:51:06 +00:00
Thijs Kinkhorst
125af3afaf drop very old and very obsolete function 2006-08-07 18:47:59 +00:00
Thijs Kinkhorst
e703e30bdd Make the base for the SquirrelMail URL configurable. Adds a new variable 
config_base_location to config.php and a new option to conf.pl. This is
to prevent problems in installs where our heuristic doesn't work
correctly (#1521299, #1460675, #1110064, #1000850, #1113791)

I believe this is one of the most commonly reported issues in current
stable. That's why I've created the code to be minimally invasive: it only
allows to set the proto+host+port part, because this means all changes
can remain within get_location().

I want to backport this bugfix to stable so I appreciate any feedback
on it. And also of course if you think that this is the wrong way to
solve it :)
 2006-07-17 14:42:06 +00:00
tokul
59ae6f3ac2 removing trailing ?> from function scripts 2006-07-15 12:01:32 +00:00
Fredrik Jervfors
339f867fb5 Using IEC standard prefixes. 2006-06-15 16:35:26 +00:00
Thijs Kinkhorst
7392b8753d Take X-Forwarded-Host HTTP header in consideration when constructing 
base_uri for redirects; reduces problems with transparent proxies
(#1488590). Also test strcasecmp on literally '0' with respect to
#1047883 although I don't think it's absolutely necessary, it's safest.
 2006-05-18 15:09:30 +00:00
Thijs Kinkhorst
5641a73844 Correct references trimming: array_walk can't in all PHP versions use 
a callback function that is a member function. Moving the function out
of the class seems the best solution.
 2006-05-03 13:37:53 +00:00
stekkel
d971de24d8 Fix for compose in new. Now use the constant SM_BASE_URI. 
TODO, move this function to the same place as makeInternalLink.
 2006-04-06 11:09:04 +00:00
stekkel
0a70f643f2 Centralized init 2006-04-05 00:22:11 +00:00