X-Git-Url: https://vcs.fsf.org/?p=squirrelmail.git;a=blobdiff_plain;f=config%2Fconfig_default.php;h=90e8ede09026bc92b7b5f20db175a7b3fed4e9ea;hp=92d17ed2a71482acbd564aee2fde071cf4e6a3f1;hb=368ab96688336731107a39003577ee60ccf7f82c;hpb=71d3f8829d11c0b3469d0edd24f545ab9e4490d4 diff --git a/config/config_default.php b/config/config_default.php index 92d17ed2..90e8ede0 100644 --- a/config/config_default.php +++ b/config/config_default.php @@ -143,18 +143,23 @@ $smtpServerAddress = 'localhost'; $smtpPort = 25; /** - * SquirrelMail header control + * SquirrelMail header encryption * - * Option can be used to disable Received: headers added by SquirrelMail. - * This can increase user's privacy and solve problems with spam filters - * that increase spam marks for dynamic dialup addresses. + * Encryption key allows to hide SquirrelMail Received: headers + * in outbound messages. Interface uses encryption key to encode + * username, remote address and proxied address, then stores encoded + * information in X-Squirrel-* headers. * - * If admin enables this setting, system should have some logging facility - * or other tools to control users. SquirrelMail's Received: header provides - * information, that can't be forged by webmail user. - * @global bool $skip_SM_header + * Warning: used encryption function is not bulletproof. When used + * with static encryption keys, it provides only minimal security + * measures and information can be decoded quickly. + * + * Encoded information can be decoded with decrypt_headers.php script + * from SquirrelMail contrib/ directory. + * @global string $encode_header_key + * @since 1.5.1 and 1.4.5 */ -$skip_SM_header = false; +$encode_header_key = ''; /** * Path to Sendmail @@ -194,6 +199,7 @@ $imapPort = 143; * macosx * hmailserver * mercury32 + * dovecot * other * * Please note that this changes only some of server settings. @@ -419,21 +425,24 @@ $noselect_fix_enable = false; /** * Path to the data/ directory * + * You need to create this directory yourself (see INSTALL). + * * It is a possible security hole to have a writable directory * under the web server's root directory (ex: /home/httpd/html). - * For this reason, it is possible to put the data directory - * anywhere you would like. The path name can be absolute or - * relative (to the config directory). It doesn't matter. Here - * are two examples: + * The path name can be absolute or relative (to the config directory). + * Here are two examples: * * Absolute: - * $data_dir = '/usr/local/squirrelmail/data/'; + * $data_dir = '/var/local/squirrelmail/data/'; * * Relative (to main SM directory): * $data_dir = SM_PATH . 'data/'; + * (NOT recommended: you need to secure apache to make sure these + * files are not world readable) + * * @global string $data_dir */ -$data_dir = SM_PATH . 'data/'; +$data_dir = '/var/local/squirrelmail/data'; /** * Attachments directory @@ -446,8 +455,9 @@ $data_dir = SM_PATH . 'data/'; * list files in this directory. Confidential data might be laying * around there. * + Since the webserver is not able to list the files in the content - * is also impossible for the webserver to delete files lying around - * there for too long. + * is also impossible for the webserver to delete files lying around + * there for too long. You should have some script that deletes + * left over temp files. * + It should probably be another directory than data_dir. * @global string $attachment_dir */ @@ -525,6 +535,22 @@ $default_use_mdn = true; $edit_identity = true; $edit_name = true; +/** + * SquirrelMail adds username information to every sent email. + * It is done in order to prevent possible sender forging when + * end users are allowed to change their email and name + * information. + * + * You can disable this header, if you think that it violates + * user's privacy or security. Please note, that setting will + * work only when users are not allowed to change their identity. + * + * See SquirrelMail bug tracker #847107 for more details about it. + * @global bool $hide_auth_header + * @since 1.5.1 and 1.4.5 + */ +$hide_auth_header = false; + /** * Server Side Threading Control * @@ -720,6 +746,15 @@ $theme[39]['NAME'] = 'Simple Green'; $theme[40]['PATH'] = SM_PATH . 'themes/wood_theme.php'; $theme[40]['NAME'] = 'Wood'; +$theme[41]['PATH'] = SM_PATH . 'themes/bluesome.php'; +$theme[41]['NAME'] = 'Bluesome'; + +$theme[42]['PATH'] = SM_PATH . 'themes/simple_green2.php'; +$theme[42]['NAME'] = 'Simple Green 2'; + +$theme[43]['PATH'] = SM_PATH . 'themes/simple_purple.php'; +$theme[43]['NAME'] = 'Simple Purple'; + /** * LDAP server(s) * Array of arrays with LDAP server parameters. See @@ -864,19 +899,6 @@ $squirrelmail_default_language = 'en_US'; */ $default_charset = 'iso-8859-1'; -/** - * Available Languages - * - * This option controls number of languages available to end user in - * language selection preferences. You can use space separated list - * of translations installed in locale/ directory or special keys - * 'all' (all languages are available) and 'none' (language selection - * is disabled, interface is set to $squirrelmail_default_language - * @global string $available_languages - * @since 1.5.0 - */ -$available_languages = 'all'; - /** * Alternative Language Names Control * @@ -909,6 +931,29 @@ $aggressive_decoding = false; */ $lossy_encoding = false; +/** + * Controls use of time zone libraries + * + * Possible values: + * + * Use of any other value switches to default SquirrelMail time zone + * handling ($time_zone_type). + * @global integer $time_zone_type + * @since 1.5.1 + */ +$time_zone_type = 0; + /*** Tweaks ***/ /** * Advanced DHTML tree control @@ -920,13 +965,14 @@ $lossy_encoding = false; $advanced_tree = false; /** - * Older listing way control + * Iframe sandbox code control * - * Use older way of folder listing - * @global bool $oldway - * @since 1.5.0 + * Use iframe to render html emails + * (temp option used during debuging of new code) + * @global bool $use_iframe + * @since 1.5.1 */ -$oldway = false; +$use_iframe = false; /** * Message Icons control