Download Squirrelmail 1.4.17

Spread the love

Squirrelmail is a program written in PHP to enable web-based e-mail. It is used by various ISPs to provide webmail functionalities. The program has support for the imap and smtp protocols and all screens are built in html 4.0, without the need for javascript. The developers have released version 1.4.17 with the following announcement and list of changes since the previous entry in the Meuktracker:

SquirrelMail 1.4.17 Released

The SquirrelMail team is happy to announce the release of version 1.4.17. The most notable change is a security fix that prevents certain specially-crafted hyperlinks within messages from executing cross-site scripting attacks. For other details, see the ReleaseNotes file included in this release. We advise all users of SquirrelMail software to upgrade.

Version 1.4.17:

  • Allow control over white space wrapping or auto-generated SquirrelMail option widgets.
  • Fix matching of alternate identities when replying.
  • Fix HTTPS detection under Windows IIS that was incorrectly setting cookies to be transmitted only over a secure connections when none existed (#2318118).

Version 1.4.16:

  • Added support for Latvian.
  • Add submit button type option widget
  • Allow address book lookups by fields other than nickname/alias
  • Include hooks in databased-based preference backend that have long been in the file-based preference backend
  • Removed the Address Take (abook_take) plugin; please see the Add Address (third party) plugin.
  • Allow a different server address for the POP server to be configured when using POP before SMTP.
  • Update the left_main_after_each_folder hook to work on the trash folder as well as all other folders.
  • Fix HTML validity issue with IE conditional construct (#1985916).
  • Backported sqsetcookie() from 1.5.2, so cookies won’t be transmitted under non-SSL connections if the session is started under an SSL (https) connection (CVE-2008-3663). Also limits cookies to HTTPOnly, a feature of IE and Firefox to counter cross site scripting attacks.

Version 1.4.15:

  • Fix saving of Read Recipes to Sent folder.
  • Converted Romanian (ro_RO) to UTF-8.
  • Converted Slovak (sk_SK) to UTF-8.
  • Converted Swedish (sv_SE) to UTF-8.
  • Added support for Macedonian.
  • Don’t allow invalid plugin names in conf.pl –install-plugin.
  • Fix warning in Printer Friendly due to missing include (#1849101).
  • Let configtest.php use optional PEAR dynamic extension loading, patch by Walter Huijbers (#1833123).
  • Fix for IMAP servers that were having problems saving sent messages.
  • Fix broken
You might also like
Exit mobile version