Am 21.04.2012 18:36, schrieb Thomas Bruederli:
On Thu, Apr 19, 2012 at 00:52, Michael Heydekamp listu...@freexp.de wrote:
Done, see http://trac.roundcube.net/ticket/1488445.
But that doesn't help me in the short run (and I need help in the short
run).
I think it does. The bug has just
Am 21.04.2012 23:50, schrieb Reindl Harald:
Am 21.04.2012 23:29, schrieb Michael Heydekamp:
But this still doesn't explain why other web pages of the same domain can't
be loaded during this period.
normally this happens only as plong a php-script
has a session open - the same client with
Am 21.04.2012 14:54, schrieb A.L.E.C:
I created the ticket http://trac.roundcube.net/ticket/1488449
I wasn't able to understand the background of this thread entirely and the
context between a User-Agent header and aborted sessions somewhat escapes
me, but: As I'm using IE8 and am suffering
Am 22.04.2012 16:36, schrieb Michael Heydekamp:
Am 21.04.2012 23:50, schrieb Reindl Harald:
Am 21.04.2012 23:29, schrieb Michael Heydekamp:
But this still doesn't explain why other web pages of the same domain can't
be loaded during this period.
normally this happens only as plong a
Am 22.04.2012 16:48, schrieb Michael Heydekamp:
Am 21.04.2012 14:54, schrieb A.L.E.C:
I created the ticket http://trac.roundcube.net/ticket/1488449
I wasn't able to understand the background of this thread entirely and the
context between a User-Agent header and aborted sessions
this
Am 22.04.2012 16:52, schrieb Reindl Harald:
Am 22.04.2012 16:36, schrieb Michael Heydekamp:
Am 21.04.2012 23:50, schrieb Reindl Harald:
normally this happens only as plong a php-script
has a session open - the same client with the
same session-id can not make another request until
Am 22.04.2012 18:58, schrieb Michael Heydekamp:
Am 22.04.2012 16:52, schrieb Reindl Harald:
Am 22.04.2012 16:36, schrieb Michael Heydekamp:
Am 21.04.2012 23:50, schrieb Reindl Harald:
normally this happens only as plong a php-script
has a session open - the same client with the
same
Am 22.04.2012 20:46, schrieb Michael Heydekamp:
Am 22.04.2012 20:15, schrieb Reindl Harald:
Am 22.04.2012 20:00, schrieb Michael Heydekamp:
Thanks for all the in-depth explanations.
no problem, it's my job and sometimes i like
to help others understand partly, sometimes not :-)
So if the
Am 22.04.2012 20:46, schrieb Michael Heydekamp:
Am 22.04.2012 20:15, schrieb Reindl Harald:
For now it's just an assumption that the problems I'm seeing are related to
the User-Agent header.
And if you're saying...
as far as i understand someone has to patch the html-editor
shipped with
Am 22.04.2012 20:54, schrieb Reindl Harald:
Am 22.04.2012 20:46, schrieb Michael Heydekamp:
Also here I should note again that we have the compose_newwindow plugin
3.00 installed and activated. No idea, if this might be part of the issue.
if you have the option to disable this it would be a
Am 22.04.2012 21:38, schrieb Michael Heydekamp:
protecting sessions from hijacking by remember the user-agent
at start and abort each request with the same session ID and
a different user-agent is common sense and some implementations
are also including the client IP
Didn't know that.
Am 22.04.2012 21:49, schrieb Reindl Harald:
Am 22.04.2012 21:38, schrieb Michael Heydekamp:
Didn't know that. But how can a different user on a different machine have
the same session ID (if not by random)? Is there any way to a) get hold of
the ID of any other user's session, and b) to take
Am 22.04.2012 22:06, schrieb Michael Heydekamp:
Am 22.04.2012 21:49, schrieb Reindl Harald:
Am 22.04.2012 21:38, schrieb Michael Heydekamp:
Didn't know that. But how can a different user on a different machine have
the same session ID (if not by random)? Is there any way to a) get hold of
Am 22.04.2012 20:54, schrieb Reindl Harald:
protecting sessions from hijacking by remember the user-agent
at start and abort each request with the same session ID and
a different user-agent is common sense and some implementations
are also including the client IP
but - using the client IP
Addition to the post below: With Squirrel, such scenarios are not a problem
at all. It just continues to do it's job.
Can we have the same with RC - pleeeze?
--
Michael Heydekamp
Co-Admin freexp.de
Düsseldorf/Germany
Am 23.04.2012 01:15, schrieb Michael Heydekamp:
Am 22.04.2012 20:54, schrieb
We have show_additional_headers 1.0 installed and activated, but due to
some reason it does for instance not show the headers Content-Type and
Content-Transfer-Encoding. It shows User-Agent, Mailer, X-Newsreader
and the like, though.
Is this deliberate? The string content does not even exist in
16 matches
Mail list logo