plugins/squirrelspell/modules/enc_setup.mod.php

   1 <?php
   2
   3    /**
   4     **  ENC_SETUP.MOD.PHP -- Squirrelspell module
   5     **
   6     **  Copyright (c) 1999-2001 The SquirrelMail development team
   7     **  Licensed under the GNU GPL. For full terms see the file COPYING.
   8     **
   9     **  This module shows the user a nice invitation to encrypt or decypt
  10     **  his/her personal dictionary and explains the caveats of such a decision.
  11     **
  12     **  $Id$
  13     **/
  14
  15     // Something for our friends with E_ALL for error_reporting:
  16     global $SQSPELL_CRYPTO;
  17
  18     $words=sqspell_getWords();
  19     if ($SQSPELL_CRYPTO){
  20         // Current format is encrypted.
  21         $msg =
  22         _("<p>Your personal dictionary is <strong>currently encrypted</strong>. This helps protect your privacy in case the web-mail system gets compromized and your personal dictionary ends up stolen. It is currently encrypted with the password you use to access your mailbox, making it hard for anyone to see what is stored in your personal dictionary.</p> <p><strong>ATTENTION:</strong> If you forget your password, your personal dictionary will become unaccessible, since it can no longer be decrypted. If you change your mailbox password, SquirrelSpell will recognize it and prompt you for your old password in order to re-encrypt the dictionary with a new key.</p>") .
  23             '<form method="post" onsubmit="return checkMe()">'.
  24             '<input type="hidden" name="MOD" value="crypto">'.
  25             '<p align="center"><input type="checkbox" name="action" value="decrypt"> '.
  26             _("Please decrypt my personal dictionary and store it in a clear-text format." ) .
  27             '</p>'.
  28             '<p align="center"><input type="submit" value=" ' .
  29             _("Change crypto settings") .
  30             ' "></p>'.
  31             '</form>';
  32     } else {
  33         // current format is clear text.
  34         $msg =
  35         _("<p>Your personal dictionary is <strong>currently not encrypted</strong>. You may wish to encrypt your personal dictionary to protect your privacy in case the webmail system gets compromized and your personal dictionary file gets stolen. When encrypted, the file's contents look garbled and are hard to decrypt without knowing the correct key (which is your mailbox password).</p> <strong>ATTENTION:</strong> If you decide to encrypt your personal dictionary, you must remember that it gets &quot;hashed&quot; with your mailbox password. If you forget your mailbox password and the administrator changes it to a new value, your personal dictionary will become useless and will have to be created anew. However, if you or your system administrator change your mailbox password but you still have the old password at hand, you will be able to enter the old key to re-encrypt the dictionary with the new value.</p>").
  36             '<form method="post" onsubmit="return checkMe()">'.
  37             '<input type="hidden" name="MOD" value="crypto">'.
  38             '<p align="center"><input type="checkbox" name="action" value="encrypt"> '.
  39             _("Please encrypt my personal dictionary and store it in an encrypted format.") .
  40             '</p>'.
  41             '<p align="center"><input type="submit" value=" '.
  42             _("Change crypto settings") . ' "></p>'.
  43             '</form>';
  44     }
  45     sqspell_makePage(_("Personal Dictionary Crypto Settings"), "crypto_settings.js", $msg);
  46
  47 ?>