[horde] Clients with multiple IP addresses being forcibly logged out

[Arjen de Korte]

Citeren Ole Wolf <wolf at blazingangles.com>:

> My Horde PC has two IP addresses: an IPv4 address and an IPv6  
> address. My client PC also has an IPv4 address and an IPv6 address.
>
> This means that sometimes my client PC will connect to the horde  
> server using my client PC's IPv4 address, and shortly after it will  
> use its IPv6 address. And so Horde logs me out warning me that my IP  
> address has changed. For example:
>
> 2016-08-21T21:04:30+02:00 NOTICE: HORDE User XXXXXX is not  
> authorized (Remote host: 192.168.2.103) [pid 28749 on line 324 of  
> "/usr/share/php/Horde/Registry.php"]
>
> followed shortly after a login by:
>
> 2016-08-21T21:14:05+02:00 NOTICE: HORDE User XXXXXX is not  
> authorized (Remote host: 2001:XXXXXXXXXX:23b0) [pid 27096 on line  
> 324 of "/usr/share/php/Horde/Registry.php"]

Obviously, 'happy eyeballs' (RFC 6555) isn't working for you. Which  
browser is this? Usually, HE should make sure that you have consistent  
IPv4 or IPv6 connections, not both intermingled. Either you have a  
broken HE implementation, or your IPv6 connection is unstable. Note  
that the latter can also be caused by a too short SLAAC interval,  
causing the IPv6 address to change within a session. Currently Horde  
can't cope with that. I already wrote an enhancement request, but this  
is not implented yet (as far as I knowl.

> I realize it's a security feature, but here's the problem:  multiple  
> client IP addresses is a valid setup (e.g., caused by IPv4 aliases,  
> multiple network cards, or multiple IPv6 addresses), so how do I  
> resolve this? Is there a configuration option in Horde that I can't  
> find that allows me to disable the IP address verification?
>
>
>
> Ole Wolf
> Rødhættevej 4 • 9400 Nørresundby
> Telefon: 9632-0108 • Mobil: 2467-5526 • Skype: ole.wolf