session security improvements (SECURITY)

Version 1.51

Bugfix
Finished

Don't allow login/login-as if session is already logged in and referer is bad. Don't allow logout if referer is a user controlled url within DA.

Interested to try DirectAdmin? Get a 30-day Free Trial!