Am Donnerstag, 1. September 2005 17:54 schrieb Ola Lundqvist: > Hello
Hello, > > If I use INBOX. (with trailing dot) it does not loop and then get > > killed. Only when using INBOX without the dot. > > However, using "INBOX." and "" (nothing) does not make any difference > > in the folder display. In both cases, the folders are all subfolders > > of INBOX. > > That is how it should be. The problem is with courier and not in IMP. I > think I have a patch that you can apply in courier if you like. Yes. Could you also please reassign this bug report to Courier? Nevertheless, I think this is still at least partly an IMP bug. No user input should allow IMP to enter a state which kills the running apache process. And this input from the IMP login form is not only non-validated, it also comes from a not (yet) authenticated user, so *anybody* can make my apache processes crash using invalid and thus perhaps even create an effective DoS. Suggestion: limit maximum recursion depth (I guess 5 would be a sane default) in building the folder tree, and eliminate duplicates before displaying it. -- Dipl.-Ing. Jens Benecke http://www.hitchhikers.de - Europas kostenlose Mitfahrzentrale seit 1998 http://www.rb-hosting.de - Webhosting mit Extras - PHP ab €9 - SSH ab €19 http://www.spamfreemail.de - 100% saubere Postfächer, garantiert!
