Menu
▾
▴
Re: [SM-PLUGINS] vacation_local "Bad Password"
|
From: Paul L. <pa...@sq...> - 2005-08-23 12:33:06
|
greg wm wrote:
> hi folks,
>
> apparently vacation_local is somehow sensitive to $ in the user's password.
>
> if a user's password is set to 242aba$@%
> attempting to enter the vacation_local plugin gets:
>
> *ERROR:* An error occurred uploading the file: Bad password
>
> if the user's password is set to 242aba%@% ($ changed to %)
> it then works fine.
>
> we're not using ldap, simple /etc/passwd & /etc/shadow setup.
> RPMs:
> kernel-2.6.9-11.EL
> httpd-2.0.52-12.1.ent.centos4
> php-4.3.9-3.8
> squirrelmail-1.4.3a-12.EL4.centos4
> courier-imap-4.0.3-1
> source:
> vacation-1.2.6.1.tar.gz
> vacation_local-2.0-1.4.tar.gz
>
> this is of course easy to workaround. change the password. but if
> anybody happens to come up with a fix of course i would rather be able
> to tell my users my server is clever enough that they can keep their
> favourite password and still use the squirrelmail vacation feature too..
What backend are you using?? If SUID, try opening
squirrelmail_vacation>proxy.c and look for this line, about 200 lines
down from the top:
|| strstr(argv[SRC], "$") != NULL || strstr(argv[DEST], "$") !=
NULL
Try commenting it out....
|