[prev in list] [next in list] [prev in thread] [next in thread]
List: squirrelmail-cvs
Subject: [SM-CVS] CVS: squirrelmail/functions abook_ldap_server.php,1.35,1.36
From: Tomas Kuliavas <tokul () users ! sourceforge ! net>
Date: 2005-08-21 15:19:05
Message-ID: E1E6rbF-0004jH-TZ () sc8-pr-cvs1 ! sourceforge ! net
[Download RAW message or body]
Update of /cvsroot/squirrelmail/squirrelmail/functions
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv18063
Modified Files:
abook_ldap_server.php
Log Message:
don't allow use of starttls on ldap socket connection
Index: abook_ldap_server.php
===================================================================
RCS file: /cvsroot/squirrelmail/squirrelmail/functions/abook_ldap_server.php,v
retrieving revision 1.35
retrieving revision 1.36
diff -u -w -r1.35 -r1.36
--- abook_ldap_server.php 1 Aug 2005 08:07:13 -0000 1.35
+++ abook_ldap_server.php 21 Aug 2005 15:19:03 -0000 1.36
@@ -246,16 +246,17 @@
* http://www.php.net/ldap-start-tls
* Check if v3 or newer protocol is used,
* check if ldap_start_tls function is available.
- * Silently ignore setting, if requirements are not satisfied
+ * Silently ignore setting, if these requirements are not satisfied.
+ * Break with error message if somebody tries to start TLS on
+ * ldaps or socket connection.
*/
if($this->starttls &&
!empty($this->protocol) && $this->protocol >= 3 &&
function_exists('ldap_start_tls') ) {
- // make sure that $this->host is not ldaps:// URL.
- if (preg_match("/^ldaps:\/\/.+/i",$this->server)) {
- return $this->set_error("you can't enable starttls on ldaps connection.");
+ // make sure that $this->server is not ldaps:// or ldapi:// URL.
+ if (preg_match("/^ldap[si]:\/\/.+/i",$this->server)) {
+ return $this->set_error("you can't enable starttls on ldaps and ldapi connections.");
}
- // TODO: starttls and ldapi:// tests are needed
// try starting tls
if (! @ldap_start_tls($this->linkid)) {
-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
--
squirrelmail-cvs mailing list
List Address: squirrelmail-cvs@lists.sourceforge.net
List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-cvs
http://squirrelmail.org/cvs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic