summaryrefslogtreecommitdiff
path: root/roundcubemail/config
diff options
context:
space:
mode:
authorthomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>2007-03-27 09:34:30 +0000
committerthomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>2007-03-27 09:34:30 +0000
commit2bb5905d9d29823c3cf184034423149609ba345c (patch)
tree67e62a5516e2700381c83eaf6a38b2efda5e3946 /roundcubemail/config
parentaa87da0d37b0cde40301afdc83ef7c4ef9069779 (diff)
New session authentication, should fix bugs #1483951 and #1484299; testing required
git-svn-id: https://svn.roundcube.net/trunk@521 208e9e7b-5314-0410-a742-e7e81cd9613c
Diffstat (limited to 'roundcubemail/config')
-rw-r--r--roundcubemail/config/main.inc.php.dist6
1 files changed, 5 insertions, 1 deletions
diff --git a/roundcubemail/config/main.inc.php.dist b/roundcubemail/config/main.inc.php.dist
index 490c62365..c2c9d3947 100644
--- a/roundcubemail/config/main.inc.php.dist
+++ b/roundcubemail/config/main.inc.php.dist
@@ -97,7 +97,11 @@ $rcmail_config['log_dir'] = 'logs/';
$rcmail_config['session_lifetime'] = 10;
// check client IP in session athorization
-$rcmail_config['ip_check'] = TRUE;
+$rcmail_config['ip_check'] = false;
+
+// Use an additional frequently changing cookie to athenticate user sessions.
+// There have been problems reported with this feature.
+$rcmail_config['double_auth'] = false;
// this key is used to encrypt the users imap password which is stored
// in the session record (and the client cookie if remember password is enabled).