Alessandro Vesely writes:
Gordon Messmer wrote:JP wrote:Sam, if someone else were to write an acceptable patch that updated SQWebmail to handle larger cookies, would you be willing to accept it into the main trunk?While making that argument, consider that allowing greater input means that you may increase the likelihood of a buffer overflow occurring in one of the external tools that sqwebmail uses.> > I'd personally work on keeping siteminder's data out of sqwebmail.The modification required is minor enough that it can be done for the site that needs it.An option to avoid cookie pollution may make sense in siteminder. (Too many cooks spoil the broth.) However, why shouldn't webmail just discard unwanted cookies, rather than storing them in the environment?
All cookies get stuffed into a single header. The header needs to be parsed first, but this can't be done at this early stage of the game.
pgp6guOKosBOM.pgp
Description: PGP signature
