openbsd-ports

Author	SHA1	Message	Date
sthen	166e8a22f8	update to roundcube-1.1.1 http://trac.roundcube.net/wiki/Changelog there's a minor schema update for non-sqlite dbs, /var/www/roundcubemail/bin/update.sh applies it	2015-03-19 11:21:11 +00:00
sthen	12e75bb25f	missing run deps for roundcubemail (a.k.a. commit from correct directory), problems reported by ajacoutot	2015-02-10 11:36:06 +00:00
sthen	2edbca5bb7	update to roundcube 1.1.0, allows searches across multiple folders, better support for screen readers and more. Note: IE7/8 no longer supported by default but can be added with the "legacy_browser" plugin. There is new experimental anti-CSRF code (per-session tokens in URLs making it harder for an attacker to generate a valid URL), this is not enabled by default (requires rewrite support from the web server), for more info see http://trac.roundcube.net/wiki/Howto_Config/Secure_URLs	2015-02-10 11:05:33 +00:00
sthen	eb1d8004e8	update to roundcube 1.0.5, security (XSS) and bug fixes XSS: http://trac.roundcube.net/ticket/1490227 changelog: http://trac.roundcube.net/wiki/Changelog	2015-01-25 14:22:08 +00:00
sthen	12008ac62f	update to Roundcube 1.0.4, includes a fix for possible CSRF attacks (address book, also ACL and managesieve plugins) amongst other changes. http://trac.roundcube.net/wiki/Changelog	2014-12-18 22:07:39 +00:00
sthen	174f98ce56	bump REVISION for php version switch	2014-11-06 17:13:39 +00:00
sthen	4e3ec6dc3a	update to Roundcube 1.0.3	2014-09-29 23:23:52 +00:00
sthen	7aee737e78	update to roundcube 1.0.2	2014-07-21 07:58:28 +00:00
sthen	b3313d7c58	Adjust previous; ^(?!installer) is PCRE syntax to match a string not starting with "installer". Since I don't think this is possible with the implementation for apache-httpd-openbsd just comment out the rule for now, kirby@ agrees.	2014-06-29 09:50:53 +00:00
kirby	d38a8ce8c4	fix RewriteRule regular expression ok sthen@ (maintainer)	2014-06-29 09:06:07 +00:00
sthen	d05c9fe881	add a dependency on php-zip, pointed out by aja@	2014-06-13 16:59:20 +00:00
sthen	ba0c05aebd	bump ports which may have been installed when /var/www/modules.sample didn't exist, to force an update to make sure that their config samples get installed	2014-05-30 13:20:13 +00:00
sthen	90e147b4f1	bugfix update to roundcubemail-1.0.1	2014-05-11 13:29:52 +00:00
sthen	f116ef25d9	zap spurious quote; Daniel LEVAI	2014-05-02 07:46:11 +00:00
sthen	5170f2c501	default db needs to be set in config.inc.php as well; pointed out by aja@	2014-04-30 09:16:06 +00:00
sthen	d59c8e66d5	change default db config to sqlite, to avoid either an annoying-to-debug error with basic installation or a forced (often unnecessary dep) on pdo_mysql	2014-04-29 19:38:40 +00:00
sthen	5ec01e2f6e	remove X bit from various files that shouldn't have it, and fix shebang line in composer.phar,	2014-04-29 08:53:27 +00:00
sthen	6778e48820	update to roundcube 1.0 WARNING! config files have been rearranged, if upgrading an existing system you will need to migrate your settings from old config files (db.inc.php and main.inc.php) to the new file (config.inc.php).	2014-04-20 19:59:54 +00:00
ajacoutot	f6edaa0300	Comment php_value date.timezone since this is the default now. Not removed because the warning about keeping the same TZ with the DB server still stands. ok sthen@ (maintainer)	2014-03-21 07:32:30 +00:00
sthen	aa00fbfa31	set explicit modes in PLIST for files that should not be world-readable (don't want any risk of httpd running these scripts)	2014-01-24 22:54:20 +00:00
sthen	bf10b8d564	Security update to Roundcube 0.9.5 "We just published new releases which fix a recently reported vulnerability that allows an attacker to overwrite configuration settings using user preferences. This can result in random file access, manipulated SQL queries and even code execution. The latter one only affects versions 0.8.6 and older."	2013-10-21 21:25:39 +00:00
sthen	7f3ef206d5	update to roundcube 0.9.4	2013-09-06 20:36:20 +00:00
sthen	e0fa8698e5	update to Roundcube 0.9.3; optimised UI for touchscreen devices and various assorted fixes.	2013-08-21 21:45:43 +00:00
robert	d4adb08ecd	remove dependency on pecl-fileinfo	2013-08-10 15:05:15 +00:00
jasper	ea2ad64f08	use ${VARBASE} instead of hardcoding /var	2013-07-05 07:38:47 +00:00
sthen	c162f6c5bc	update to roundcubemail 0.9.2	2013-06-16 20:40:19 +00:00
sthen	d7705ad4be	@sample the composer.json-dist file, to make it simpler for people wanting to use the plugins.roundcube.net plugin repository.	2013-05-24 21:29:51 +00:00
sthen	9d51f2101c	update to roundcube 0.9.1	2013-05-24 15:30:05 +00:00
jasper	256c0ea000	modules.sample/ always lives in /var/www, so no need for ${PREFIX} here. as discussed with aja@	2013-05-05 19:24:13 +00:00
sthen	36d7f71dfa	backport some Roundcube fixes from release-0.9 tree in git - Fix list page reset when viewing a message in Larry skin - Fix unintentional messages list jumps on click in Internet Explorer - Fix handling untagged responses in IMAP FETCH - "could not load message" error - Escape user input values when used in eval() in ldap - Fix various text wrapping and quoting issues - Fix possible collision in generated thumbnail cache key	2013-05-03 10:23:12 +00:00
sthen	6e2e171cbc	Update to Roundcube 0.9. Note that database access is now done via PDO, and that for users of SQLite this requires a change to sqlite3 - see the package readme for update instructions.	2013-04-16 13:37:22 +00:00
sthen	59d96f7120	SECURITY update to Roundcube 0.8.6, local file inclusion via preferences vulnerability. http://lists.roundcube.net/pipermail/dev/2013-March/022328.html	2013-03-27 22:38:12 +00:00
espie	0662a4e9d6	PERMIT_* / REGRESS->TEST sweep	2013-03-11 11:20:26 +00:00
sthen	abcbbf6f92	bugfix update to Roundcube 0.8.5, rolling in previous patches	2013-01-26 14:36:16 +00:00
sthen	05b926bb34	add fixes from Roundcube upstream git: - Workaround IE<=8 bug where Content-Disposition:inline was ignored - Fix XSS vulnerability in vbscript: and data:text links handling - Fix cache (in)validation after setting \Deleted flag	2013-01-03 20:05:15 +00:00
sthen	9bc7907818	update to roundcube 0.8.4, rolling in previously patched bug in compose screen. also fixes an XSS vulnerability in handling of text/enriched messages.	2012-11-14 21:26:15 +00:00
sthen	160605830d	Patch to fix a bug (compose screen randomly reloading) introduced in the recent Roundcube 0.8.3 release.	2012-11-14 11:42:26 +00:00
sthen	1e8b467cc0	Bugfix update to roundcubemail 0.8.3	2012-11-12 20:20:12 +00:00
sthen	86137a1ac1	update to Roundcube 0.8.2	2012-10-07 11:15:44 +00:00
sthen	523e27e78b	bugfix update to roundcube 0.8.1	2012-08-18 21:34:56 +00:00
sthen	0ca27f6cac	update to Roundcube 0.8.0 - note that there is a new default UI 'larry', for now you can revert to the old one by changing the option in the config file to 'classic' - thanks Daniel, Vijay and william@ for testing.	2012-08-10 15:25:48 +00:00
sthen	039663a06c	In the sample roundcubemail.conf apache config file, don't bother to force PHP variables which are already set that way by default. Suggested by aja@	2012-03-14 16:20:47 +00:00
sthen	096d5da24e	Update to roundcubemail 0.7.2; various fixes	2012-03-12 16:20:51 +00:00
sthen	b6a1238c3f	- move MESSAGE to README - add details about running under alternative web servers	2012-01-19 13:53:48 +00:00
sthen	0fa6b43613	use MODPHP_VSPEC for either\|or dependencies on php5 extension modules	2012-01-11 22:17:21 +00:00
sthen	1e43185cb4	bugfix update to roundcube 0.7.1	2012-01-11 02:35:49 +00:00
sthen	fe4ec7779a	- fix dropdown list in install.php for updates, from upstream - upstream has the sql fixes too; mention the commit in a comment	2011-12-14 21:56:56 +00:00
sthen	be318a6517	bleh, sqlite.update.sql has the same bug as I just fixed in sqlite.initial.sql	2011-12-14 21:44:09 +00:00
sthen	b2b2910d06	fix sqlite db creation script	2011-12-14 21:30:14 +00:00
sthen	2ed6f0740c	update to Roundcube 0.7 - lots of bugfixes and improvements including rewritten message caching	2011-12-14 15:24:45 +00:00

1 2

94 Commits