Some bugfixes, security issues + minor improvements

git-svn-id: https://svn.roundcube.net/trunk@668 208e9e7b-5314-0410-a742-e7e81cd9613c
author: thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c> 2007-08-10 08:27:40 +0000
committer: thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c> 2007-08-10 08:27:40 +0000
commit: 77f0464b4757385011a1cf5bce2ab20a30a73a52 (patch)
tree: 712853f6dcd80a851b094417d76d1d9db3afde6c /roundcubemail/program/include/main.inc
parent: 881fdfae9ca7810e065a2965304729d561071c29 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/roundcubemail/program/include/main.inc b/roundcubemail/program/include/main.inc
index aa1de9754..4b8aa68d5 100644
--- a/roundcubemail/program/include/main.inc
+++ b/roundcubemail/program/include/main.inc
@@ -234,6 +234,9 @@ function rcmail_authenticate_session()
   // check session filetime
   if (!empty($CONFIG['session_lifetime']) && isset($SESS_CHANGED) && $SESS_CHANGED + $CONFIG['session_lifetime']*60 < time())
     $valid = false;
+    
+  if (!$valid)
+    write_log('timeouts', $_SESSION + array('SESS_CLIENT_IP' => $SESS_CLIENT_IP, 'SESS_CHANGED' => $SESS_CHANGED, 'COOKIE' => $_COOKIE));
 
   return $valid;
   }
author	thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>	2007-08-10 08:27:40 +0000
committer	thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>	2007-08-10 08:27:40 +0000
commit	77f0464b4757385011a1cf5bce2ab20a30a73a52 (patch)
tree	712853f6dcd80a851b094417d76d1d9db3afde6c /roundcubemail/program/include/main.inc
parent	881fdfae9ca7810e065a2965304729d561071c29 (diff)