Tag: security
-
IMP 7 – The first release in years, the first CVE in a day – and a fix
The life of a security-conscious open source project can be summed up quite nicely by the last two days of the Horde project. On 2026-06-30, the Horde team announced the General Availability (GA) release of Horde 6 and IMP 7.0.0, marking the first stable release of the next major generation of the Horde webmail and…
-
JWT Authentication: Building a Hybrid Model That Actually Works
Part 2 of 4: Architectural Evolution in Horde 6 In part 1 of the evolution series: The jQuery Problem I discussed frontend concerns – How to move off a dead mobile-only framework towards a mobile-first responsive design and not get caught in the next framework I don’t need. This time we move towards authentication concerns.…
-
PEAR down – Taking Horde to Composer
Since Horde 4, the Horde ecosystem heavily relied on the PEAR infrastructure. Sadly, this infrastructure is in bad health. It’s time to add alternatives. Everybody has noticed the recent PEAR break-in. A security breach has been found on the http://pear.php.net webserver, with a tainted go-pear.phar discovered. The PEAR website itself has been disabled until a…