Added a much better fix for the IE/SSL problem. No security hazards

[squirrelmail.git] / src / redirect.php

diff --git a/src/redirect.php b/src/redirect.php
index 18d96199b2b7a1eb47c525f47e3025e4b9f01c52..868d05759578f42a8740e47c685ce4cd6caeda50 100644 (file)
--- a/src/redirect.php
+++ b/src/redirect.php
@@ -14,6 +14,7 @@
 
    if (!isset($strings_php))
       include ("../functions/strings.php");
+include("../config/config.php");
 
    // Before starting the session, the base URI must be known.
    // Assuming that this file is in the src/ subdirectory (or
@@ -57,8 +58,11 @@
       session_register("onetimepad");
       // verify that username and password are correct
       if ($force_username_lowercase)
-          username = strtolower($login_username);
+          $login_username = strtolower($login_username);
       $imapConnection = sqimap_login($login_username, $key, $imapServerAddress, $imapPort, 0);
+         if (!$imapConnection) {
+               exit;
+         }
       sqimap_logout($imapConnection);
 
       setcookie("username", $login_username, 0, $base_uri);