Permalink
Comparing changes
Choose two branches to see what’s changed or to start a new pull request.
If you need to, you can also or
learn more about diff comparisons.
Open a pull request
Create a new pull request by comparing changes across two branches. If you need to, you can also .
Learn more about diff comparisons here.
...
- 4 commits
- 1 file changed
- 2 contributors
Commits on Jan 18, 2020
-
nixos/roundcube: do not write passwords to the store nor run php as root
If the database is local, use postgres peer authentication. Otherwise, use a password file. Leave database initialisation to postgresql.ensure*. Leave /var/lib/roundcube creation to systemd. Run php upgrade script as unpriviledged user.
-
nixos/roundcube: don't use the default and insecure des_key
The php installer creates a random one, but we bypass it, so we have to create one ourselves. This should be backward compatible as encryption is used for session cookies only: users at the time of the upgrade will be logged out but nothing more. https://github.com/roundcube/roundcubemail/blob/259b7fa0650fea9320b38cb17c4e80497acae7a3/config/config.inc.php.sample#L73
-
nixos/roundcube: provide path to mime.types file
fixes this warning: WARNING: Mimetype to file extension mapping doesn't work properly!
Commits on Jan 22, 2020
-
Merge pull request #77532 from symphorien/roundcube
nixos/roundcube: security improvements
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff 88235d99a484...2d9e51adc37c