Hello LOEWENTHAL, > Hi there everyone,
Please avoid using another posters post to start a new query. Threaded mail clients make a mess of it, along with your mail being twice the size it needed to be due to the TNEF attachments. Also please avoid posting using HTML/RTF formats, and more specifically Microsoft's proprietary TNEF format (aka winmail.dat). Not everybody uses outlook. > I would like to know of any security precautions that should be > implemented for SQ, such as exploitable directory permissions etc., > I ask as I've installed SQ on our future webmail server and would > like to make sure that its secure enough afore I let the world > access. SquirrelMail is an imap client, it talks to the imap server. The only directory SquirrelMail needs write permissions to is the preference directory. If you don't feel comfortable granting that, you can use a database to store the users preferences in. Apart from that, there isn't much else to it. We try to make the code as secure as possible, working with people that report problems to ensure they are resolved (such as the recent XSS issues which were fixed in 1.4.3a). Apart from that, you're going to have to be more specific about which security concerns you have so we can address them directly. -- Jonathan Angliss <[EMAIL PROTECTED]> Posting Guidelines: http://www.squirrelmail.org/wiki/?MailingListPostingGuidelines ------------------------------------------------------- This SF.Net email is sponsored by: YOU BE THE JUDGE. Be one of 170 Project Admins to receive an Apple iPod Mini FREE for your judgement on who ports your project to Linux PPC the best. Sponsored by IBM. Deadline: Sept. 24. Go here: http://sf.net/ppc_contest.php -- squirrelmail-users mailing list Posting Guidelines: http://squirrelmail.org/wiki/wiki.php?MailingListPostingGuidelines List Address: [EMAIL PROTECTED] List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
