From cf2da2f9aacd1b13ad9019f44a3f1edd824cd015 Mon Sep 17 00:00:00 2001
From: thomascube <thomas@roundcube.net>
Date: Fri, 28 Jan 2011 16:44:22 +0000
Subject: Improve session validity check with changing auth cookies; reduce
 writes to DB; better phpdoc

---
 config/main.inc.php.dist | 10 +++-------
 1 file changed, 3 insertions(+), 7 deletions(-)

(limited to 'config')

diff --git a/config/main.inc.php.dist b/config/main.inc.php.dist
index 86b80d4f2..cf111dbcc 100644
--- a/config/main.inc.php.dist
+++ b/config/main.inc.php.dist
@@ -206,13 +206,12 @@ $rcmail_config['skin_include_php'] = false;
 // must be greater than 'keep_alive'/60
 $rcmail_config['session_lifetime'] = 10;
 
+// session domain: .example.org
+$rcmail_config['session_domain'] = '';
+
 // check client IP in session athorization
 $rcmail_config['ip_check'] = false;
 
-// Use an additional frequently changing cookie to athenticate user sessions.
-// There have been problems reported with this feature.
-$rcmail_config['double_auth'] = false;
-
 // this key is used to encrypt the users imap password which is stored
 // in the session record (and the client cookie if remember password is enabled).
 // please provide a string of exactly 24 chars.
@@ -292,9 +291,6 @@ $rcmail_config['line_length'] = 72;
 // send plaintext messages as format=flowed
 $rcmail_config['send_format_flowed'] = true;
 
-// session domain: .example.org
-$rcmail_config['session_domain'] = '';
-
 // don't allow these settings to be overriden by the user
 $rcmail_config['dont_override'] = array();
 
-- 
cgit v1.2.3