Hello Darek, On Monday, December 02, 2002, Darek Milewski wrote... > Hey guys, I noticed strange behavior from SM 1.2.9.
> We have a few virtual mail servers handling mail for a bunch of > different domains. To allow customer access, we created a proxy that > does an nslookup and redirects the request to a specific server. > So a customer goes to a central page, inserts login info, we redirect to > the relevant host with > http://hostname.net/mail/src/redirect.php?..=..&...=... . Are you giving them a form to use? Like the SM login? Just customised for your hosting preferences? > I edited redirect.php to allow global variables. > Here is the strange behavior: > - When logging in directly (IE: http://hostname.net/mail) I can see all > the plugins that I chose. > - When going through the proxy, I see all but the last 2 plugins. Which > plugins, and how many varies. > The only thing I changed under redirect.php was to take out 2 references > to $_POST['..'] for username and pass, and instead used > if (isset($login_username)) etc. For a start, this is a little bit of a security issue, and it also will break your code if you turn off register_globals in your php.ini file. For example, put http://host/webmail/src/redirect.php?login_username=bob and it should return an error saying the user doesn't exist, but will attempt a login as bob, but I am guessing this is the kind of thing you are after yes? It will mean that the username and password are passable via URL, which is a scary idea (use your drop down list in IE, and see what pages you went to for example). And another point is when you turn off register_globals, that variable login_username won't exist any more, so will fail the login straight away. > Anyone with some knowledge of the code have any idea why this would > result in missing plugins under options.php? I am looking at the code > now, but do not see anything that would be related. Is it always random plugins? Or is it the same ones? You might want to try doing a print_r($squirrelmail_plugin_hooks); on the loading of redirect.php so you can see which plugins have been loaded, and with what hooks. -- Jonathan Angliss ([EMAIL PROTECTED]) ------------------------------------------------------- This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en -- squirrelmail-users mailing list List Address: [EMAIL PROTECTED] List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
