From cf2da2f9aacd1b13ad9019f44a3f1edd824cd015 Mon Sep 17 00:00:00 2001
From: thomascube <thomas@roundcube.net>
Date: Fri, 28 Jan 2011 11:44:22 -0500
Subject: [PATCH] Improve session validity check with changing auth cookies; reduce writes to DB; better phpdoc

---
 config/main.inc.php.dist |   10 +++-------
 1 files changed, 3 insertions(+), 7 deletions(-)

diff --git a/config/main.inc.php.dist b/config/main.inc.php.dist
index 86b80d4..cf111db 100644
--- a/config/main.inc.php.dist
+++ b/config/main.inc.php.dist
@@ -206,12 +206,11 @@
 // must be greater than 'keep_alive'/60
 $rcmail_config['session_lifetime'] = 10;
 
+// session domain: .example.org
+$rcmail_config['session_domain'] = '';
+
 // check client IP in session athorization
 $rcmail_config['ip_check'] = false;
-
-// Use an additional frequently changing cookie to athenticate user sessions.
-// There have been problems reported with this feature.
-$rcmail_config['double_auth'] = false;
 
 // this key is used to encrypt the users imap password which is stored
 // in the session record (and the client cookie if remember password is enabled).
@@ -291,9 +290,6 @@
 
 // send plaintext messages as format=flowed
 $rcmail_config['send_format_flowed'] = true;
-
-// session domain: .example.org
-$rcmail_config['session_domain'] = '';
 
 // don't allow these settings to be overriden by the user
 $rcmail_config['dont_override'] = array();

--
Gitblit v1.9.1