2009.12.14 23:38 Mark T. Dame rašė: > Paul Lesniewski wrote: >>> >>> Unfortunately, telling user's that they must logout is not viable >>> solution. >>> They won't do it consistently. >> >> Tell users they must log out (or close the browser). > > As I said, telling the users that they must logout is not going to work > because they won't do it. SquirrelMail can detect active session, warn user about it and refuse login until user destroys session. >>> Additionally, this problem seems to have >>> started when we upgrade from 1.4.4 to 1.4.19. I can't be positive of >>> that, >>> but we never received complaints about it until after the upgrade. >> >> It's been an "issue" since before that. The only real solution is >> non-cookie based sessions. > > Is there a way to do cookieless sessions with SM? If you modify all http redirects and meta urls and change the way passwords are stored, then yes. -- Tomas ------------------------------------------------------------------------------ Return on Information: Google Enterprise Search pays you back Get the facts. http://p.sf.net/sfu/google-dev2dev ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
