From 3d9798da1f9d130abffad3cb429ac3be677791c5 Mon Sep 17 00:00:00 2001
From: Aleksander Machniak <alec@alec.pl>
Date: Mon, 28 Sep 2015 02:57:58 -0400
Subject: [PATCH] Make brute force attacks harder by re-generating security token on every failed login (#1490549)

---
 program/include/rcmail_output.php |    1 +
 1 files changed, 1 insertions(+), 0 deletions(-)

diff --git a/program/include/rcmail_output.php b/program/include/rcmail_output.php
index 0f7aaf9..76ff4e7 100644
--- a/program/include/rcmail_output.php
+++ b/program/include/rcmail_output.php
@@ -28,6 +28,7 @@
 abstract class rcmail_output extends rcube_output
 {
     const JS_OBJECT_NAME = 'rcmail';
+    const BLANK_GIF      = 'R0lGODlhDwAPAIAAAMDAwAAAACH5BAEAAAAALAAAAAAPAA8AQAINhI+py+0Po5y02otnAQA7';
 
     public $type = 'html';
     public $ajax_call = false;

--
Gitblit v1.9.1