[Pkg-roundcube-maintainers] Bug#549428: roundcube-core: problem loging in with lighttpd and roundcube 0.3 - suhosin.session.encrypt Off

Vincent Bernat bernat at debian.org
Sat Oct 3 10:35:33 UTC 2009


severity 549428 wishlist
thanks

OoO Pendant  le temps  de midi  du samedi 03  octobre 2009,  vers 12:22,
Antoine Pardigon <antoine.pardigon at m4x.org> disait :

> since upgrading to roundcube 0.3, I had to log in on every action.
> (error no server, lots of 404 in the access logs).

> It is due to lighttpd not taking into account the .htaccess file, where
> one option is now a requirement :

> suhosin.session.encrypt must be set to Off.

> I solved this poorly setting this option off everywhere (in the php
> settings), as I cannot find how to do it specifically for the roundcube
> server; but this could be mentionned in the NEWS file.

I have added a note in lighttpd.conf. Yes, this could be put in NEWS instead.
-- 
I AM NOT LICENSED TO DO ANYTHING
I AM NOT LICENSED TO DO ANYTHING
I AM NOT LICENSED TO DO ANYTHING
-+- Bart Simpson on chalkboard in episode 4F08
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-roundcube-maintainers/attachments/20091003/145bdaaa/attachment.pgp>


More information about the Pkg-roundcube-maintainers mailing list