summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authoralec <alec@208e9e7b-5314-0410-a742-e7e81cd9613c>2009-11-23 19:25:43 +0000
committeralec <alec@208e9e7b-5314-0410-a742-e7e81cd9613c>2009-11-23 19:25:43 +0000
commita506500e25c4ae84f21f68aa15bc9979c620ba76 (patch)
treea689a096b25b0ce98f3e794c5ab4b997da4da18e
parent5add51b5120008b2f30415ecd303f9ee73bdf7f4 (diff)
- Fix possible messages exposure when using Roundcube behind a proxy (#1486281)
git-svn-id: https://svn.roundcube.net/trunk@3132 208e9e7b-5314-0410-a742-e7e81cd9613c
Diffstat
-rw-r--r--roundcubemail/CHANGELOG1
-rw-r--r--roundcubemail/program/include/rcube_shared.inc2
2 files changed, 2 insertions, 1 deletions
diff --git a/roundcubemail/CHANGELOG b/roundcubemail/CHANGELOG
index 2457c3dc2..734a9c776 100644
--- a/roundcubemail/CHANGELOG
+++ b/roundcubemail/CHANGELOG
@@ -1,6 +1,7 @@
CHANGELOG RoundCube Webmail
===========================
+- Fix possible messages exposure when using Roundcube behind a proxy (#1486281)
- Fix unicode para and line separators in javascript response (#1486310)
- additional_message_headers: allow unsetting headers, support plugin's config file (#1486268)
- Fix displaying of hidden directories in skins list (#1486301)
diff --git a/roundcubemail/program/include/rcube_shared.inc b/roundcubemail/program/include/rcube_shared.inc
index 4119f1287..2cf59af5f 100644
--- a/roundcubemail/program/include/rcube_shared.inc
+++ b/roundcubemail/program/include/rcube_shared.inc
@@ -93,7 +93,7 @@ function send_modified_header($mdate, $etag=null, $skip_check=false)
else
header("Last-Modified: ".gmdate("D, d M Y H:i:s", $mdate)." GMT");
- header("Cache-Control: max-age=0");
+ header("Cache-Control: private, must-revalidate, max-age=0");
header("Expires: ");
header("Pragma: ");
generated by cgit v1.2.3 (git 2.51.0) at 2026-05-16 02:35:40 +0000