Nick Bright-2 wrote: > > My attempted suggestion was merely "hey, could this particular method be > broken by changing part X". Your answer is obviously "No, it can't", so > lets just leave it at that. > There are two ways to submit form information in HTML. POST and GET. GET is not allowed in SquirrelMail 1.4.10+ and in your setup. POST is safer than GET. POST leaves less traces in proxy logs and it is harder to execute without interaction from end user. If machine is trojaned, proprietary tags used in login form won't protect user from keyloggers and sniffers. -- Tomas -- View this message in context: http://www.nabble.com/Spam-Sent-From-WebMail-tf4383950.html#a13141356 Sent from the squirrelmail-users mailing list archive at Nabble.com. ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ -- squirrelmail-users mailing list Posting Guidelines: http://www.squirrelmail.org/wiki/MailingListPostingGuidelines List Address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List Archives: http://news.gmane.org/thread.php?group=gmane.mail.squirrelmail.user List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
