* Jozsef Kadlecsik <kad...@blackhole.kfki.hu>: > I dunno. We had the newest squirrelmail (1.4.22) and still two times user > sessions were hijacked and used for spamming. The users could not recall > what they exactly did, unfortunately.
Only thing one can do against this is two-factor auth (assuming nobody can circumvent the authorization) -- Ralf Hildebrandt Geschäftsbereich IT | Abteilung Netzwerk Charité - Universitätsmedizin Berlin Campus Benjamin Franklin Hindenburgdamm 30 | D-12203 Berlin Tel. +49 30 450 570 155 | Fax: +49 30 450 570 962 ralf.hildebra...@charite.de | http://www.charite.de