(even with suhosin.perdir set), so just force it in roundcubemail.conf
and remove the program/include/iniset.php patch.
- adjust permissions so the web-based installer can be used as pointed
out by aja, this used to be dangerous but is now controlled by the main
config file and defaults to 'off'.
- bump, adjust MESSAGE
- allow the upgrade script to work without disabling session.encrypt on the
whole server
- note in UPGRADING that virtusertable moved to a plugin, found the hard
way by ajacoutot
- in the mysql schema update script, uncomment a workaround for mysql bug
46293 which affects the in-tree mysql
- bump
to allow attachments to be downloaded by https, but doesn't seem necessary
now and has caused caching problems for IE users (including displaying a
logged-out user's inbox). Reported by Ibrahim Khalifa, discussed with
ajacoutot.
last stable release.
- add an explicit note about AllowOverride, you get some strange problems
if this is set incorrectly which robert@ ran into.
ok ajacoutot@
SECURITY update to 0.2-alpha, "Replace our crappy html sanitization
with the dom-based washtml script" from their commit log gives you
some idea ... http://secunia.com/advisories/30734/ (advisory pointed
out by viq, thanks!). Lots of other bugs fixed too. Based on a diff
from Bruno Bigras.
N.B. Upgrading users need to read /var/www/roundcubemail/UPGRADING
with the dom-based washtml script" from their commit log gives you
some idea ... http://secunia.com/advisories/30734/ (advisory pointed
out by viq, thanks!). Lots of other bugs fixed too. Based on a diff
from Bruno Bigras.
N.B. Upgrading users need to read /var/www/roundcubemail/UPGRADING
