OK -- I have something!!! Some of the computers are NOT setting the SQMSESSID cookie to the right value. Instead of generating a random string, it sets it to "deleted" AND writes a "sess_deleted" file in /tmp
User "A" logs in, gets cookie SQMSESSID value=deleted and writes the file sess_deleted with all of their prefs. User "B" logs in, gets cookie SQMSESSID value=deleted and writes the file sess_deleted with all of their prefs. User "A" clicks on something and now assumes the identity of user "B". Because user "A"'s cookie has the value of the deleted which matches /tmp/sess_deleted User "C" logs in, gets cookie SQMSESSID value=deleted and writes the file sess_deleted with all of their prefs. Now user "A" and user "B" both have the identity of user "C". User "A" logs out, the file /tmp/sess_deleted gets deleted, and users "B" and "C" get kicked out. I don't know what to do about it yet. But at least I know what the problem is. It seems to be more common withs Macs. For now I made a sym link in /tmp to /dev/null : sess_deleted -> /dev/null So I have a handfull of people that can't log in, but no one will assume the wrong identity. If anyone knows a fix, please let me know. -- Thanks. -- Kris > -----Begin original post > >>I am running squirrelmail 1.4.2 on Redhat Linux ES 2.1 > > We are seeing problems where mail sent by one user appears to come > from a different user. This is NOT the case where several users > share one machine. Here are the first Sendmail "Received:" headers from > three separate messages, sent by three different users. > > Received: from 10.226.65.27 > (SquirrelMail authenticated user someuser.lastname) > by mailhost.sendit.nodak.edu with HTTP; > Mon, 17 Nov 2003 15:08:09 -0600 (CST) > Message-ID: <49165.10.226.65.27.1069103289.squirrel <at> > mailhost.sendit.nodak.edu> > > Received: from 10.226.65.13 > (SquirrelMail authenticated user someuser.lastname) > by mailhost.sendit.nodak.edu with HTTP; > Mon, 17 Nov 2003 15:09:22 -0600 (CST) > Message-ID: <49167.10.226.65.13.1069103362.squirrel <at> > mailhost.sendit.nodak.edu> > > Received: from 10.226.65.16 > (SquirrelMail authenticated user someuser.lastname) > by mailhost.sendit.nodak.edu with HTTP; > Mon, 17 Nov 2003 15:09:56 -0600 (CST) > Message-ID: <49249.10.226.65.16.1069103396.squirrel <at> > mailhost.sendit.nodak.edu> > > > The messages all appears to come from ``someuser.lastname'' (the name has > been > changed to protect the innocent). In this case, someuser.lastname had > logged > in a couple hours earlier, from a different computer in a different part > of > the state. > > Is anyone else seeing anything like this? Any suggestions for particular > things > we should look at, to debug this problem further? > > -- Kris Ottem EduTech [EMAIL PROTECTED] North Dakota State University [EMAIL PROTECTED] Fargo, ND USA voice: 701-231-9465 "Strange women lying in ponds distributing swords is fax: 701-231-8541 no basis for a system of government."- Monty Python ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click -- squirrelmail-users mailing list List Address: [EMAIL PROTECTED] List Archives: http://sourceforge.net/mailarchive/forum.php?forum_id=2995 List Info: https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
