ClearOS Bug Tracker

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0001822ClearOSapp-zarafa-community - Zarafapublic2014-06-25 16:392020-09-03 03:09
Assigned To 
StatusclosedResolutionwon't fix 
PlatformOSOS Version
Product Version 
Target VersionFixed in Version 
Summary0001822: Zarafa: force https use for all data & related security enhancements
Description1- Zarafa webapp and webaccess should not be accessible in http, but only in https
visiting [^] or [^] should redirect to https

RequireSSL & php_flag session.cookie_secure and some other great tips here: [^]

2- It should be possible to deactivate any calls to different domains.

On, [^] Firefox reports "Firefox has blocked content that isn't secure" as per [^]

Ex.: When clicking on "Feedback?", a script from [^] is loaded. [^] [^]
a) There should be an option in [^] to turn it off
b) It should be in https instead of http

Related: [^]
TagsNo tags attached.
Attached Files

- Relationships

-  Notes
NickH (developer)
2020-09-03 03:09

Zarafa issue and Zarafa is dead.

- Issue History
Date Modified Username Field Change
2014-06-25 16:39 marclaporte New Issue
2014-06-26 09:52 user2 Status new => confirmed
2020-09-03 03:09 NickH Note Added: 0014531
2020-09-03 03:09 NickH Status confirmed => closed
2020-09-03 03:09 NickH Resolution open => won't fix