From: Paul L. <pa...@sq...> - 2005-08-23 12:33:06
|
greg wm wrote: > hi folks, > > apparently vacation_local is somehow sensitive to $ in the user's password. > > if a user's password is set to 242aba$@% > attempting to enter the vacation_local plugin gets: > > *ERROR:* An error occurred uploading the file: Bad password > > if the user's password is set to 242aba%@% ($ changed to %) > it then works fine. > > we're not using ldap, simple /etc/passwd & /etc/shadow setup. > RPMs: > kernel-2.6.9-11.EL > httpd-2.0.52-12.1.ent.centos4 > php-4.3.9-3.8 > squirrelmail-1.4.3a-12.EL4.centos4 > courier-imap-4.0.3-1 > source: > vacation-1.2.6.1.tar.gz > vacation_local-2.0-1.4.tar.gz > > this is of course easy to workaround. change the password. but if > anybody happens to come up with a fix of course i would rather be able > to tell my users my server is clever enough that they can keep their > favourite password and still use the squirrelmail vacation feature too.. What backend are you using?? If SUID, try opening squirrelmail_vacation>proxy.c and look for this line, about 200 lines down from the top: || strstr(argv[SRC], "$") != NULL || strstr(argv[DEST], "$") != NULL Try commenting it out.... |