Comment 1 for bug 321304

Hi,

thanks for your bug report!

On Sun, Jan 25, 2009 at 11:44:16PM -0000, J. Bruce Fields wrote:
> It would be more user-friendly to provide a default configuration that
> is compatible with the default configuration of squirrelmail. Also,
> change_back_to_http_after_login = 0 seems the more conservative default.

As you correctly quoted from README.gz this is default behaviour for
SquirrelMail 1.5.2 and above. That is as a matter of fact the
development branch of SquirrelMail aud thus part of Debian's
experimental tree. It is not to be included in Debian's distribution
(for a stable release) until it reaches a more stable state (and changes
its release number to 1.6 or even 2.0).

> I'm on intrepid, with squirrelmail 2:1.4.15-3ubuntu0.1 and squirrelmail-
> secure-login 1.4-1.

Right, Debian and Ubuntu ship with SquirrelMail 1.4.x and here the
standard configuration makes sense (at least under some circumstances).

It might be true that most users find it reasonable to have
change_back_to_http_after_login set to 0 but I don't think it's that a
big deal to simply change it. :)
Since Debian is in hard freeze for its next release I'm not going to
change default configuration now. I'll talk to upstream when a new
version comes up about changing it there.

Hauke