From 750a11888491741bf071468dc5a222b0d8b45225 Mon Sep 17 00:00:00 2001
From: Roland Gruber <post@rolandgruber.de>
Date: Sun, 12 Jan 2014 11:08:43 +0000
Subject: [PATCH] make session encryption optional

---
 lam/docs/manual-sources/howto.xml             |  12 ++++++++++--
 .../manual-sources/images/configGeneral1.png  | Bin 15650 -> 18180 bytes
 lam/help/help.inc                             |   2 ++
 lam/lib/config.inc                            |   8 +++++++-
 lam/templates/config/mainmanage.php           |  12 ++++++++++++
 lam/templates/login.php                       |   9 +++++----
 6 files changed, 36 insertions(+), 7 deletions(-)

diff --git a/lam/docs/manual-sources/howto.xml b/lam/docs/manual-sources/howto.xml
index c99d087b..8a349be0 100644
--- a/lam/docs/manual-sources/howto.xml
+++ b/lam/docs/manual-sources/howto.xml
@@ -996,6 +996,13 @@ Have fun!
         or with the "*" wildcard (e.g. 123.123.123.*). Users which try to
         access LAM via an untrusted IP only get blank pages.</para>
 
+        <para id="sessionEncryption">Session encryption will encrypt sensitive
+        data like passwords in your session files. This is only available when
+        PHP <ulink url="http://php.net/mcrypt">MCrypt</ulink> is active. This
+        adds extra security but also costs performance. If you manage a large
+        directory you might want to disable this and take other actions to
+        secure your LAM server.</para>
+
         <screenshot>
           <mediaobject>
             <imageobject>
@@ -8885,8 +8892,9 @@ objectclass: top
         <para><emphasis role="bold">Disable session
         encryption</emphasis></para>
 
-        <para>LAM encrypts sensitive data in your session files. You can
-        prevent this by disabling the PHP MCrypt module (if installed).</para>
+        <para>LAM encrypts sensitive data in your session files. You can <link
+        linkend="sessionEncryption">disable</link> it to reduce CPU
+        load.</para>
       </section>
     </section>
   </appendix>
diff --git a/lam/docs/manual-sources/images/configGeneral1.png b/lam/docs/manual-sources/images/configGeneral1.png
index 4e3aa8e50c3dbcce4833c5de9365d97ddbef49d7..46cf276fe500ae81c9532934bf7c335615173099 100644
GIT binary patch
literal 18180
zcmeIa1yo(#mM(aJ1PBBVb_fzYNRS}G2{|DlxVr~E!QCMV7A&|04;I|r-5r9vyF0v<
z|K56aZ&kgns(#~*?$M+7fU`MlTYImy=KSV2zq$Qoq~2kmLD3)(2!_~um>dLx*a(3j
z7@#78|Cri#If50Ejfj{6Dk|#qqVxjz`pELVstp8!{R8~kA!J)whe99}5HZ+m1;-z|
zvrZaMPVZ3;&I<{9f@UZ>F*0J75I&QBi#kuxGhEX&&M<7Sh&J(6i#17)LL*yrOG#Oa
zr8PBO3;ITZ2zI3GC_cZrBU0xMHb80eK0S3kSYW%39q6q^8Fbt2H8PATE@r=)sP@il
zcX#vyZGk*4X0<~A>%j{O;XmIkP_e;hBMIUIusZO8{MlCfOc;Fr*EcC?BZ$y4Cb8Q^
zMLW1;+sRmNh->%V$)?LqjFdCzJP-_Q^o<w1S=VN9AeJkL&nfgrV>t}~7h)xm5D*Bm
zx%r9}-BB=Nae3fjWwY+8LdVEWcD~kUYMnSmo7hYMc9h7k4;KFP`+@|AR9s9hLVLd4
zju_`Qu2PZPVYm9{_ca#rp9s1G4%f_14R@apA8p59*%~iBCEz~9n|&RCmb84TZ9U@g
zly`5B_-?7^%jvq(#xfyx8>*}MOr;nsHkK!_u|tTpT4Yi=|D)|LSMS^*k1s8=^NH(A
zM#c%tK720OMT5w6^Qqbrr+|K36Jg&@LBbarLwO!UONuYd^N_x1zp`2iypu!z00seT
z<P{n=7nc&Obh*Oq;lp#3ll^{EYxCKg`1rDW;cgPDxf*+B`D_Kv>Ig2&!Hb9p`I%e+
z7pxGH`v&!jJweBVgLQ4(2JOO`&b~I=puQf)!lH7n!A$XWV@h62R&PJdr~DsaY?{1^
z8!z=%Tu|;`DQRe29q4u?*7^EkBq`|kxncwb)i|G4%Vl3(?;l%*3ob&#9mpIVj*LKS
z3bY5va7m0L#6bVjDrh65S|pjnPIhaP>T0LCtuW(3AMRN;@9+rW3|-j;tP}_CiXB3O
z4DZf+PK@$2kC(d|+^JIW8M&cVRfo%3EY(TXC(%_`LDk2oxwO7xE4G`sZ(%5yPiaz-
zP~`ml;6u@g?qB?*lBU|2k0y$Cec<_jIzNZ03@(w0;vF5ud>aS0);DsxAMfH)#<99z
zw4g-uHOvgfgn<T1WYxC|udL#`a(iq><<;2w&Schd8#bN4^zWQJy=-nqxk{Lw)!du8
z^7V^*<tyNLP*}?}J1lpU#BhpCU|go=)v0_Q79VN9YH3;MvD$w%;;^^k!ezF;GqbX{
z>oLRMjE+t|Q|H#+*Qe_7#-ibPXxIS$5b^bNxvrbDgPX;XvAQ}*3nvK~l5AB>PxPJf
z9DiZ0hPeS=Zv5)X@YdaJY9RbM0zzNDR^43fTcg?Bt-ty|<%$<^aczx%e_GmHLntxP
z{^OdFyqLw~uOHHX4OS&D2<`VlgEG497$SdlC-4XgYH>!bEG|N!P#GCZkFl*jZ*MHM
z^2gcV$^14t$m?S`ZA?3Y7kPLp3|-G=J-wC#b0-~NzpjT-N2+acTi3MjzG@*-#DzdS
zAB`z{9$*C;J`g0~x?5XbK5a%P^?RS^Zi|-oHUOJ)s?fbC^@i6$MJv7Y#zBb{hsJC^
zJk0tV&V?g)z`|5j#WV(q2jlbSw-@0S3>Nv#IOwE4x_<OR4TV`*F?XcMhnIxt{#oMd
z-_}|D-ZK&O-F!0bPEtSLk)lq;qZ=4kvGJBva8!+zq0gNm!d;Sv&9kUzfsxr3Ekq>$
zFU=$3GbF;naB&NRK?lpGSt+3e(;@MvccoUaCw!k$VbDfR^TC<{^_g6(d+ty_(OMqw
zn#85Drn<_rgM%m-$5CFkJ>~$h5bI|@etr%A&c3uh^|XwkhA(91bG4E%Ha7fsGPtrQ
z=tz}eYQ7G1shxgYoZ}k0c=%dSlbgy#SgGx#noGxee}Xh;1~nL8c)toDhl}@1h90LL
zUS9QjMV&1zcEha|^-1@{-0;E1L`K|t_#D3s6G2rKk2H~xYs*#JOs<wd4U;PW^z3X~
zSC`ey?}>)1Bcyz{%>nHSi~Cv?CbY*VnpJxBhXyx=2gezb0!+*_ZEfkW(aTl(Jyb6l
zde_ai&hA@ovx_S2dF7{1cXoEou21%UO-FgfF@8#I7N-g#KfhAec3;>qo=<&y(0(fJ
z_nsOT`r;9=(qFgW*alz51XIs9M+kWvo}P9zVPxd5vXRsb7PC)=wy0B5PJNn*xLNCb
zE*bAU(<^AQRSoX*mr~oM<4gN{cUdtpVw|@2Gfq3^`@;_vgyH4;i&8U|&gb9QbOpeU
zJ_70psoByfaCnXbU63<;1rE+G<bLUtufoJ@d0;FnTU1h_-%wxRdfnHN@d7x(WM>2C
zr~%BuS?sO@!dsVUMAr_7zyElM)^B?V*yvM$6EAeB#{6js#Ml-4&v#Gm2dH4RfPwJG
zZ92a31fP(({|7duWTQJ~L`G)!Yj-l&-pjm*j<1foFDxy!wYNrvZyM-RvD+~NXNmnx
zI7UJ>c55L;{O<0qF9|*TJ+-t^8nmoC%N#1HYBIS<wO&&@)7*{b0S1-~j+Aap?<IPb
zySqEsU7A^dNSXqBrq1R1wQkd8K!t=RIt0Q2yRbB2f9U-dob6>-hD}L{=}w8sh#@0m
zc1VHtZ8Q=D5`=~LwTu4AH)O}1*GUpe=3BTB)9gancTI|q{&74x31*xbFHjmE3*aFv
z?M#kxnW=G<=Al3M+#RHxuQ6F|x1Fz9^FdskMXNSTX!~SygoNwUE2pEMa@n88b0@b8
z8s-YLg?w~vNr4w+vzV*(xV!ZAn<|5!H=&SUTwMw39zrqh*1bgy&sDek=suO8!?Z9N
zd^SYAva-V&xPJZAu3?vtM%Gc<(s>NCvfBLVVC2YUMi+|wz`OQhY=?aNK+_lJg8%XZ
zujqNsH2%2r_7#zjY|a=yROsfQg;p{ySG6R=`d&6obhg3czJuK3=6FD;;bJKuPrc%W
zX0-x$MPZ@k$;J>^P_W4O9S?LA6h>p%^uK-kmRRT*Wsqcv0g(=pXu6qKTgUf(>Qai6
zo7m~jrE=XRyu0PU#g;H>_uSs<u-^bJW33G0X|+Wm97uZpTIRd<R@;~2VK`mzzT?5d
zV&=;=flE`KT-x<6<y0B^ZF}#sIp-kzo!>ZwgoN1GGEU>2p;UOdxKpJj`X(mCP$;j%
z-puLt#P%93Ev^0joZH30BG+F_i!YYPYNRqQ9^SSN3Iyt}s{Z4{>Jssnu7S6C3eUgP
zQa_u+eFtxE@k+pFEDSf!%(G{=3xcerVIsEnYoc@n``g);5~4nkk_sl5@Zi&J6P=w=
zO=7XMg6}SlowbClZ3$Y^naxv`pAd@OsQWrdi}4sF%Q`d)=Zv{?+0^?gt24$g#N-!E
zPFC2GMloxz6Jpa~Uw&i01(Q5mhO7cvbRjK%u&m(DE+9Z1u6)h~yu?{wg%I%iIfXt9
z0o*cTk<(-I)%6V0x<ssQSGKo!1mol5R}LYs>~~ZK5(Q4L&vzzY($IKM&@#wp2UhRk
zHLlnvmDSr%Tg&`xyTz6Cta<C{yQ0N5%S6owe;r_m>n%5(^JQ$7@^CzSJR|=}qr~WI
z&x7-G)!L7CR#wl?hi7ML?)Oy9d9C`m92}y5<l+$y>|<e`g-HKyEW-*4ny%FK*ND2?
zqziu+l3<=JYt+>2`0m~H_U1eEqk;2{q03_yf(^qw?FRk*efVfM2?;k7F_c7E_x0X)
zq@1p7*B#yayNHugs^j|GkE0vs1sY-l-8bSM7-RSr$zk1(Kg~8bFNsNE=c<+cvY4;0
zj^^Rv!4FoyxV~Or8MUmWSuF@3C^OBwk35>_Qj30|BN8wDTNJq@-C8t7Fa9?gdH04R
zG@<KfL&0;u&N(&93O}`LQzf!;PP=r7VJhg<tw{8!7wX$fXRZZv7R*}3R~LsKwj~5C
zssc>qNeZT$J2M|ovQh$~bJwPJcXz)9h(APZT6irmG7?N=JgQn{I^xHTtfnfKm;2Kq
znCPY>MZa1#!2OE-)$b(T7=+uJ90mM$_(TV*gd?O+cl3PEB75+)-7dWn5`ylazZmC)
zX<QY_kaT~});N&!Sby9a&8{Y>(l9qM$)4{R9xiSt(WoC}6Y-#E8%`J3-XKbuN6@E8
zmZfLH`8bO=`62d3ubYuzuJT>SFnvSJ5jnl)r!tr=@0*&{2b%TF^{VvU9-aFO<Pe2y
zOhg#KOPeO|?)Xc2c&lfFNw2lGZl*qaAI{{KmTqH8s#&5O5PM0BiV{rJTesa*h)Tl8
zt|DVg>L-FKbBkr^sHl3Hnu6oahg$_%3WT{C>9eBF84k|QC@B455-=^TJ^VE#<yx-~
zjzxu8t5_cAd$R$AEO(ddNqM=swn350BCGFZX*7MZevqLm>k3naYEqQq!UMYh+<{wT
zF5d^ElC0$SWOx}E2Vq(@d9zk=rA%*NQIy@C!0BWm+1U_hdV9b9_|fs>$BPbfNnYoZ
z{fcG5I9>xL921VIqhed}o^K9(8?%gS%~fty6??sj$MRNIU7z=jlqRxT>iTR-)s(Vb
zUCp(a@>h?cUz<B>3WRDs<uwnH8HU)_21RxeTceoOm2y>Z$jSHj?vh%UmzQmBuTBdK
zI~+2)dwWj~*|x&)Uc6C|!h!@n><LrqnQ=R)^nUg&NaoVzw^rYnd)=1^DEeN~EAdxZ
z$THkp3#eanTu5%wF`8S{*Vg71GmwztSJ#zq5d@f+O5dIL3%$6}Tf}<gLvpVfX(21i
z#;vKKz=S(?P09pDMa&2GmqFFzZ*s<t7@o7SS+#w`fAr{4Vqzk`;oEob_UG!<8w|h`
zPT;j;x9%HDNBPn0DVh=+P%Y8+q$jKL2XoX=3wyQphbApO?{D?uh6+&hP|r%1*dG|S
zIjh-kAcM+;(N@9!2?Fbxfq_iva(3I}vu^{GF+AKL-0<cL?(zI-Ej2YIfOGq2-fGrh
zEKjL_ZTmD;E1#!iw7#-6=b7_qlvv2zaVgG>UA0O==?=aW_5C};3)|e_goM7;p3U<;
z{G+LYt#1YSxS{W3O5Lz}iYM|7q<);31gR6EdDkMg78~?%0f%P2`T+|oq}%3QAW@Og
zKw=quBI>UNxI|#I>!?Hn7s`4f$DAXO8%I_?<s90|n3Ux{WFvU|i0M6ba>Gk+zWZlE
zQ8?&+*OXDGwhGl#$LM<ynRH%MY;AWoO={e;jnj-gH{<Cuf#V~zH4pAD@to#6g-c7g
z+V}Jgo*Q^{{nU3?NE3;Lu5&-C0)CD+%|sF+L+#pwNbRrf6QdojGXzON;8W<PUVDgN
zFJ$Hl>!`o;YIlFit>J1HX{l_9+UD+d6_m)anFp=Vy8QWwj)^Id4=*Kt;pSvSdUA3S
z+y};pyqsKfpPjY!hxhMaIiDCy{8@U7^gD2Iai5ZsI_<IxFLN?g|15;Tjo!{g=cS7>
zeCM`P;86+BXR8nv$PmxYW_-wsC!spIJYAEo{@ZlN*H=QN@8#-33Y=NJytK^i7h$AT
z$T8QNu3C<}Bz3A^uq@JbMZx|r$QDeawj}pQ?QA;ir|k0v=!<fljd)T820F^>M0HwR
z6J=@V;pq}Y2nslw*h_fupuo!b0v~asmqeC6YH;jnRoVO1k1TVJf#r!5DGycA@d@*L
zV3fOIMeng7c5AVYF-k41tdHkkM@Yv;Mn<v`en#ZL9>=wxy!gyamp4Hc`YQqr&iEWh
zT|<o)8|_`Kf*=Q)bo9e4aa3$tDgtx>7Y2Wdg=f~z-d>+2@;i0MBmx}PFNJxki6uM>
zeJacKDwXLzg@URe&<}BTl!)_@3^_K1M24bx!57~bxS`R}%BxscOg&JihhNq5xYqQ<
z&AmNH#o1^DR8+-oZxDA#<N4>ir(>WHC{)=cC`Ul55n+_-0cv<rIf4ByuKk_JUXi{k
zzB%RdCulh}qF?+TAbNSl%c!cT5IIUj2PL%R2slHFtd*#7zm^@87B>rA10;=xik<P%
zfM$ni6TZdp2Nky{5`oqKB{h@Z%o>}T8kW%Yd}6rdl-vjNVCVb$RxhtP0T&ow&FHQC
zJev4}$%i6QS+ONklLXvfAz3b{*qnSWTxF8+1a>w3;9zoh6}s>)_#T>0#uGFH(=9t`
z>4KOSl0*S<7CweQXN~f>lM4G@U_0?-5v7tmOwEw`^*bxfeYe|GiwF{^WQ3qMu_xqw
z?gTeF`UOIx4Jfe}R!-MYQkIaSd8$<TG+T9&M%3X~#%vuU>u(aYSY~ss3&~AqXJ>Xb
z)}Eq^i!Hvyo10BdudUNRn5v>+{rdhq1|TQ)V<ul%5$PAzDv_MAu=hXvd-bEq3#VPA
zcr9QlWk37F&>COv3F%WjK$Oi>F16i^E7JD?L-x#H+|+Vw`N<nKXD*y)0*xiTb8~|H
z{6G9S;;JvHU%~_Avo-kjSud-yA{h+6M^m?|FB$hazA7xyduWflTRJ9XSNsf;{0%{b
zK7Urt+GhU;kBiBWw05FEwDb13CXzsz+OE;dbr;97vf@X<o6z_Kw*bGmOS@V(z7W5B
zjV{1-dEC1t`W2U0TwXb>M8%z6A`(`NlWCa=-5BTZJ;E_9yGp1G5vZMVcB;@Wu~)ZK
z*C=<@+^|V_NU2?v?lF8OfZR=y`g7N%HR_Ji-(&k=@A>mgKR=uc%lRt*Zc@{C*)q5|
z!$|zgMCj<0dXuL6dFHjChYDuPpFT0MYJlM_nBy!wt5TNWM(^rZ8%&LbrHr0!>DX1g
zuRZ;F8g79O$;!`f_LKg7(0+h`>wginh_r+^PO?#@qg$Jnc6)k~_V9Au<z(Xq1p9tj
z^0wDh&*}U(ejhdv`|#XN2*FO)L-APZv0uad;pJ5|H7g$zDjnTD0K4MajBKtb?k;t5
zVA)q0WqlDMIp3$PG)ut!>B4N?f|2uAZV*Y-<Dj6IGRQc9pZX_gCk2}!##Rb%kyO|N
zq-xU|UU_KKr|ciHS-)w^n|;}N6Ge^KH}~Oal*JVUGt8;u^>LBDW|ErEJ!7-JKvIT`
zm2ziZ8QL=8fPnRV^S2<VWSM@Va{d&@QjnLDk{l!BW;_-0z10R0j@{O1;x&iI&4o~%
zOWRW+_c*`cr#zR#;-Roo$F42iqT8Qx;zsMVY40#JYd>;U{A%S??+7L~G&940vci2|
zLp)|?waH?GgyiOLEPTJm5IH4G4Etzdp{$|7fQ^cbwH2Fa|MO_dbO!>F*4Fi>*iP(J
z>Rus~*D5+_7vPN&y=;rP7v9v%p-CMfo?@okI5Ioz6Op}p!%vBsj0vFe@7wEVLPGn=
z6hf3}Xh+A#$8)#WDO<coA3yTE`fW8L8TWgA6(4&DJ%QKq9Yyf{>A=0)0j9%)rT5)p
zd#EtADLX(~R)(VnHUdl)pnh|-YD*aX&WNLBx-{23;O<UPH0m{sQMuOxK3b}jrya|)
zea)aR6GRGG*z9?Mt>$0$c2&ZiZB<ZboHV^eRY8V2<k1MSqgcW0_}(i?wWw#5;y4B?
zfEgb3;w7s2Gv%n>Nm;*n@XEfN3(#eG#U-#K#~5#=9)?H;O4A|Ai~fY0lM@nlRi{j;
zUDYT7yDbgX*g$j|Xi)iIES+95a#7{fVv?fZbagkoUzS5b4Ep-n>Rk0pmwxHCHX8K$
zBvsueC?BM8q@(!f7`p>GzqziT9+ko!S-G-Jnf5+Kdi!S=KLPPdG^Av6eiP5mt}45|
z8-psQH|J4I(Ts>+v@4yC%PT63R__40^Y(39f4`((R#uh@H7+hr3o9vAOT*>adT{6>
z?8#Ws?!-KkQ;NK=2cbz+lJ>&#vZAgcv%1ergZ9eWngk5cy^D(Wkp`B{%_1$$BC{Hr
zQ|0@r27*~dNDzL5K8;ZWh71+a*1}eHCULc>&vmV6_-@g?SsZ~I^8+~SJR}<#TqZ>j
z!zD3k-B!9!j(}Rc#X5<K3KPSdAI7lD)dB1jm{DCHSJ_oB3;fkZL=Y>_q!M_k^CzMB
zW5Ir@sZ(b2MbRXX*D$>Hh9djfGXUW~f4;U^d$BcTMl>O4vZS7)WD(WXT~chFDS02J
zJUJFQM9E}0vX)?4#>+>i9L=z^^XY}QRD(l7VKpX1N3FjcDvc7U)T4&2-}JrlGYs*H
zPrmY)eAt+{2p~E=Rq1!>Id$Wsr-(6M=+LkM1*|^2Zz1iNCUVVZ5%Rm(PC4?;gZ}`{
z@K4-{WMY0uXZWSBPWdg^w4<1b8}eEGXJuvUgitpN#Z{~SOaF$u#<CDc{bXUCMRKCq
z{5J)Q1?TIEPId;=OiA2Edz9IBtPW)lCob+v4{=DZuTboN<s(62W(qgLnsM_I@U67V
zqoCQsbEC4WI+E4xGl-`#FVg>tFIf!?LM-;HSJ#6rq-IT;O%qA)ujjE~Cw;a15}K%<
z{*h0Fs43Osm*}(=|1<c);CzIE09iEo0ny=F3!;A_zF`_XqxRFfn9zb>R9*V};OAWL
zZ|D;Sl%e)rDnC&?dB2ogKy+wxX?BVaAF4~K6$nr&KF1$dlA|oIER~>m66~1mYOFxY
zZ;k}91w2<{?&Dy3lBcp!_cGr@l|^A*=B9yh53;a8Hb%!sW0y1kta6M*SfH8c{~a{h
zKe2T=PbgHzpBMmaBCIdRCQKj69zOafZ4`tmr3+U7^}Nyly=>F}f7Jhe#_s=H&rpZ`
zrC~3t-6Mz$!2b{(c5U~|^lWj6r<#c8pYiyIS6(m~NvLXk{@Ak}9Z=4RT(hz0Kbj%N
zwf{;vJAPnD`iDKjx{Y2~0?%?N;>n6p1egdcazPHeXON6m(=u2qYi>3=!k-gMP|**@
z`yCx0Ro)9D^s3kyy->+JTb34lM(HK2|7!}8JpLyGI~%|(<PaD%O&_HaUzlvvTIYg=
zhCZexiS(CMVtWjyVJ;~Y4nsEn_%-9j0`cn7(#B3}XCy<AXlHR?b`Jt8f{*S)#2^^c
zJ7<V-Ah@bekxqKlYDPX_&y%@Wk^eIi{ZAyJ<MYp<z%Rr<p#Ux3!hBbZ`NYeRaR(a6
z+Q<JT*IOJ%hzv=K74v-cx7Z;g|8vE*>ZA|fg9|Pf-bhFcLhR?*vbN_h2dv*enP!WL
zWGq!<_J?it^4nh`)YPs2JQjVTCVnu3;aM$<qEA8OCB0fer_IblnszPF*C%jG`oI&~
zH?^d|KsZ1o;r_xj{R8m|&7;GpS86ZGFn4lQyb@r1W@X{o@CU5qb}#+H##R(Aeua-g
zrBh@C`})StG4Bd3n}BEeH6aO!iT$r)V(P?GB*3YhGdvbuDEV~B+u%tLl7^o)lK{0a
zkuO6(|CFb#{RPL)rFo{b_Mn}V7|-e+@!rxnFZj>Z_H&kK7w!PSB0r-#@RwHEUmI%g
zN*}8U7YgseKiNO@WC(Gk{%6KE9iH@$Apx&LTj9TG0rEkhIat*#I_p#V?}Ch;gJ6>7
z=%i?kfl9KcPe0vILJBXxntfzdXE1ugQ0||1kP;Z2ITR~#bshKFZzu1eLqJwpf#IsI
zy1X))4(--0d;jUS!_KW+keZYJvJcH0{pHGb9vi~8R@-WA%fk|4dC?#z?FpyJBfE)_
zkVKxkX^`34uNSi0-5$3H*~H!5FqVd)6SR}_Rz9cO{t5yGU-G_mj}R0ErxktUPc!Wp
z;w!}`(n7KP&O5gGZ2z9l)k(IA4B`c6;NzXrmKIX`?ot0Pq(8}{sPQ0pg8pz~jN4-F
z#%d^)R_fI_noe#r?(1=Z(7cE)mW*1x#UK}3rl6yM=l5R2ZA#*>%$KF=QiH40OYz>R
zH@=AS6X-gaTeQMNL`X#&nJizv+!Ff`4>r_%INd0@14-kna~DM>f;z6siMHcwy96V5
zuC}SE?&)b8y_wF-<7fe`uB9=6Yre!M-p>ZEC!!aZmqUg2PLWXHl_E`ZbNQ8(3KZCn
z$wpra?4nLo{`)YY%&T9KYb#fy%%qhB32?PaO2gdm9^WkwvbFGOrT;XWHlMGTgsl%G
zsK>{=+CFA^y#EBE05UlL9g^}?5Sfy`v%vbkxA!RtNly1}eZ6FrKf<lHWS#5oQd<tp
z_GDuo3?Fv(AMyCahsMogV?1>0<%`Wq`7!t7StfaE4eU1K=g_`1c+<#mJ|BlkN)InF
zu_`jJ@?=(cXz1#KPKPA7iC$8)vW{a%PN~VVkFs91>t)+|0O9S4{R}Mh{l}HhkVakA
zVbj<etoP@U=bl<<ikB`bfS>FaqXa-)*H71vM#CEcOs3l>J}Me*(<w6aABi%$?Ppsr
ztO`6Dba-%>wT><hkZ>M(hX@K3GUbre%OuRz>Am<decm@gPI|Mvae`I91m%R9IjL5^
z*p7%!C)v<2NDGEhj!VMJa^<qwYnK((8mva<Zc&B{H2K^?Rzj;TPy-EO8&{RpqaaZf
z_^oGBk63^y?K=I*4vkXQM$Jdj^djs>e%E1Llfo6yyLkviKW0r3TTn0&@QXn~DT{;4
z9T-?9cSnKJ^V1dgox|Go<7G)g9yGkwq&Taqv&*7yi3kV?pacY4Yg@zRZUYbJ2dGmU
z8x1cnAA-z%yKR1cC?3&<x`M*a&dgUokehm&s&>a;7ssVpbv3ct6ZNfaDb59{(Sv8&
zl%G^VEl-AC$M2cmd*Ks@44DjSz%bssbc<vg3Xn$TpQ(itpzF{|95V&}PH{Wmxs`vR
z43fDTi=WX+v9Kn{X0;O!&V0WhpOu!B43$a8-@R2*0(|}?i}-}?H}e6`smV!=`XBE5
zTDsnmrKkaurB0b@dHwxeV|6vsMEC7ecGKeGJ!oiq1F<z(@Cx0(I{&5n%t0&X^v7cB
z*xZ|mR_15V5X$aiQ6GG+m}j%krGY50{^#`Jsi0r+hka?12Hh5mU@7K?OM9`UE$=bA
zcp~nj#-_9@pcgPcs!0QBKy)-GSz1PEzoblc-M{!wd<)Eke`QG9o@gvr7PWv(i0f_I
z4PvVFk5}Or+gN{VC}3BoD~@Y{O67FZ^6JEUcX|n9{}p63957L?nh{t5Jyp3nR717D
zyLl;LD|;980y8z*Yul9MP(|~t4+y;v<dx1Y?he%5_lQU;WSLCpxz)P5yMs0fTm)_p
z(+L6_*Ei?We<d!c5<%>8B$^~NcTbYPnvhUn`@<50sR`u91>~ONd!(B@{lp>OPN1qD
zSN#EEGh~_MEh{H?wJgmjTFcfs>OD$GjpSKvz^oe`#PZvE*m)Nx`$KkNc^Ga{Te<;a
zie;<#>Z>z|Oa;{3^Wf7|z2>x1jYA$6fE9x=|8YEk!7UuYUn^HN^r>GPB3x%(Hc>gH
zTx*368GSYarW-&vLD2t5x`p9@O#>0m!;eBOM*qqr`_ibagjrM`aZ~^xc~-`n0W}Lj
z-FQukBWoEp7&jVBGC`q8mgaUUa;%mWLe%#Osdcg>+ia@Tm?_5$6*`)~IDt||A<tS;
z{>orY71Ljj54ptJTPcSo^nF5X#|t5yit`_~bABT5M`Y_5zy$oq8DUPSWKfBzt5!SS
z7SXIUciyxT;Jft1@6T}R;F_LyrhO7$rZ{h|k_imWtQaB#j2_bp5thlNKRyck>L~s+
zj~ENZUMaUxDm9^es%w-JF(w4C@%kNZ*iTlXoez_9Pp15r`2h2Ku^H&Z+5gJ|&0CH;
zujcm2xo~c{$E|2t9bM%AyoP7Ne-$BoeB(5ZC9JQEf}ppa|3$x}m6vx4{Q)8!T?bZ1
zLqegReo#puFm?Y76v_s!T)jY+6|10}+?_)?Pst_-urf5O5j92^J(@n2<kEHn569e;
zvqzCof(ZRw#rCN_MXHNQHw+cr$AHWL^|0r<n*HSAwBYUOMpRxg?%tQ;_e=A<wJsmJ
zv$xLjn~gTml1dm^v{uVc6jfL`Pu0BNrAJ5i)WyFAiSoiD+Q1o30BEizn1MV^b9Nd?
z=cc*m?`B$gB>uuS(yPwB*Aplheg8eKZE=6U1bD!uCAq!yni}!D*%Hov_I8lp(9`3c
zWvRTF41Au}UOT`^n?Jd>w-**}x3qM5+thS-_=v>zHkw)6LEzRHn1-1Sd8P2Qd!DlH
z_N{VuTa}rdg8B&i)q}d)V~fY+7g94FkrOhSG&3lG%eftqrVSzEo4vT@EUfgZ%QtT#
zVE&x&<LUX{wfuzc?A0!tW-2M^E~7<rrzTbE?X~>yNO14<S-5Q4e1kQO0ON7N-+0Fy
zje(NOZKUx3MuL-`)vgY*mW)ZZemfvU=-XN!9`BL~??o4Iu{R&7Hc(KQh8htc>+BKe
zvUP-*S5({&(D`&`xx091r@<e))K3GvQH7t8N&4vVNnWk{tZihFqWRk-k(3BE6qB(@
z{BdxLpm!SL&o?`{QAp-$(1Z|Xdl(1{%+;?LSSp=*@>hE%cBgBiTqZNjLXrpvf&(8H
zSmU+tK&cM8dS9)ruLEbooQG&(nDl9CH0`L~@~<xKjwJ~rCP_$(yI;o(^;Qz(_;w?}
z1UNkRBJU@r=#<@6@6bip-acIZNYEJm>kAdO*|bl3Ch6tz;M&H9J)ixKOZG7w0JVu%
zJw!kl33QD3(7!>3CQ?5jEd!{bS{1+#xU5H{`m@yKj{D0`Yd0xHRs&@_&Bcm=Gx_;p
zk&J5%oTh3y;|0AxPV3AEvkrf0%rt6|s8|Z$E6cNJ*Ek+B;E)PjRVd{I1wQ7^5J8GR
z{)c=ovi-{B&8e4IA(Kg2?<~sC>uwie7VlqwZez`KojO!bzlpV#wG}tN8Incvzs}!&
z0=DLb)E^8Yk|vtQ%pzV<8lf=RK+vXK75NpPr2fvZ3-G7*1&Nw7vzl(Vd`en{)gOQo
zs>;$_doPc#Wc@}#L!)@%I+k-hStui=yA5Nf%<G}I$l~AN%w;$JF(HfU?b%oEz}&%3
za_iM3b??N1&H^ln{J$qm{fMGed<?{T<O-uzQd0NBh$DS)Ze7MjXpN9&e-Vj1fVhsm
z_O!IKuz7h+eI6R&_qT*@wpA3Ht1G`ju{BBj{SUcEk3ap5kUU+9B>CM<m*noUcCw$C
zXby{rbI$92h@pV{5BNk{f6j~j<-N^K!_kuHp55xhjt~;E;hR<Bq<WxE3r%luHT&po
zcl5^H-rY^d`tKYd;}bL@JwGB`?AwIr5zoca3|j9qP}1Z6N_)a3)tCU!9?<iuqqQHT
zzC}f&<g$UZXfL%b$EQIsxm~s0k95jmU`}Y&x~*NZs~R1RHqb+Vw|X}{-2muK*LyWb
z%cct%qRUE3s$6+)=jxiL%-Y7s*A~b-R;=4%Uq<_c#AvLV=H&c*tJ0g%$2VqbXD^li
zUcn58=l@k~`n-_IWmj#jRV-<1Do0}`rY_(5^}hu}Y=a{)n#*mq9&Uq!j{{yjXBwJP
z#W^>CXNRJ#NRldIj{k)BGRuT)%9;KF0x;4Cek=_!FK{2ZoH&n+3znK)CptMjJZ^}W
zU1qvE|IB+^fChK>n7Y6qaksHGz3i(H$5m!ofp!Fu0;TQJHu)+cw%bx`Y^%0MR`IX%
z%%G5s-xETG@<FFyVBsImy8$IDU9?hKht$2!)mH{(bxoQ_J?nk3HSbMHdxO>s%xh-a
z&_#;0libtjB%Q@4v{skeckJw@6aEI5s*efBPB{!G9NG4@$vHTHOTMh8Cnt!uQEd`U
zbt;OqgZXvN9?CjbIyCf7ycOj5H8UEC7~{_iSa4`%ZthHsc@c==;;OMduM{(MGV<-6
zWtvMdu>D|^((iE5pKp_8M|^7-=D_5NqtOq@WtP;W@vLgZQG2QUk1z%@$_IZ`^U1X-
zDtsIs@?P<ScUfeFAM*=lJXCKgEryOF6whjJi0&GHe7VI$`PiOjj-)1Pqdfbo)K8W$
z)w?&ZMYV`=9#&_wnc^l3QV7RXh50H=Xd-$(s+@vr>{^jvc{(ege4z*MWkL1Je=0d&
zWS4?Kjul=QS<K5aJo%7E;Lz;(3*=JYQ|n=I7ez*<WHKs00<2Es<H(*#64mtb@^Vbf
zU;=_yzaJ}(7;~`4GBIY34orxecCox!C_n@I&DN)t7X4XXJ428_ZZ<D3FDR%lp@yNp
zX9)`(?C|`_2RNLc7$=Z2^nIyX)V|y+Z(Zje0t-$+GTpP?%|6d~k)o?h<TJJsQ;p^h
zn2ulp;W`mdV{BT9L{lKsBhyul0trEWi!Bl8w}=*BaPz`%zCwm%H0mw;M`<9QmpVjq
zU$z!w6>Ay@o-QClSl>Kuu|x@n1j+`$-Eb%%kX}5*2cwJtt$7;FCfOj~UkUymRTQTB
z!iEizA*s7Q8Iu&J##L61?oZ&ug1(ZWz>X<o$nt)p{qXGmqk#X@^FH+880WsxRenW0
zS_zeETay-Tqn58!;AnBaaF6Bs@qDo#Tn1ZJHtS2uxvX}w2Y#U~OPKD&gZuaHYf^T#
zM~6iX9*?sper>gUeT3&&_9oKQs`)SOECS4I8Oy<I`Ao9QW4~-T0@>LB8WHO*oN_PW
z3r*DK+2N%Jfp=UbljD{pJ~AZcNlTVu$ez!1jr4qr2U#qa*;Vp{&&lpY5`3n_XyErD
z-qk5NtNqPa0he>DAoU9K>!ThZUW|zD5e<eiv#?B*Nx1LVmBLM6w(DmJ1%?B}g08T8
z1f=<Rc1{|aw-f6tUE$&LE(Q0VUTGbHlNA;oZu?nIzprEO8%>f5ALG0UnG+z2GN4}z
zFMZjGJrFbX5H-*X;z^e-Ll0ELRi>v~ex2_%m#^%$>7-ogsHtI;q1Z#(9tkQS(ggST
z;NioJOru`y!oi`TXQ^*|H>8H(6M2j*(PHUJFx!QNl;N<jFTR+kTa)2_d$Tp?g&Vq-
zGORdmx4RWA4L8FP=d|i-YKC*2GsOnm=q$CuuxJ+TOZTSc%F2rAitX<%+iMl`?m%z`
zn1b?*OH~ePWXuoyv5WUprRU^zCWVj1Td`XP)4t$n3X1V@aQ~E?8OxM2tcz#WZ63{*
z4-XG7DJhwqnW?tlodUX#?%CntVf(!qpqY3JtFNzjyE=J<>CRtxa&fra)z#J3)+U$D
z!NGA-HlbBgQL%2Ao|(D-yNHUBQJgaL>sO9?8{x7)%y8LHq2Mq-4UHf3NnDcW)<-L1
z%xa~Bbu&?=y9tk$)yquZ!t&J0oLz1%fL2q~c4J|0ZEbh=7KoBr>JKP;ifbHp<G9SW
z;>zGv5UZt?Y(KyEd&@(+(-qn~qh0OoK7OCSd=|Rfpfc~<9xsT$+55S%VVr;a1#9kp
zH98&06Q+uF>b)Q8>%K-3yor5Asi&HXWRqA?s6#~AUW+Mx542xjP_Tf4pueXFG$vAp
z{?mMYox5*oY3bLmU!T44v81BQ*QmlJCl>-rpyXtV{Fbh8I$tbuGF)6aEv<To{kcd+
zWvN(pZ$E1r8=&pf)7O9V=1rNJnW5pD(EZKviNhc@Acm8p>}l`YC9}r1_$u~uHR?=P
ze~pb~2s#J*?0IPQ_r+HM!NF+VV|4gsONfy5NCNL$az5vqHbO0ao4s89aM~eR*&6#@
zpci%B9v?{JwX+t!N6@I4t8=cqo{Ip9$n`kia`V{?F}!#A0xyr-X9^mI=A$43o)mgS
zqA4;8=dS{zg{pcbpT<vo_PY~6Y{HfeC<@v8#u(j`^da3YxmwO{m+D<GH6;)wtgLY8
zG<yF0`LnQ)^;QtTIHFgU$$QcqOiU7aN<iFrJL@pNsy64ePD(j!%%N9Q3FaA4+_F_H
zto6lTpY4)Bp&wv?=<xFLLf$edELAgOHmCLmLqYlj{S)VF#|A!=;pzR>O=z25QD}g}
zw{LTWx@jUQzhi4l9165xqdCe2D=P_2O--?}+=(9b_!DL;o!r{4o8Bcx{R#Z1=f$gs
zMMZC}&$r*ftgBpmGJ>MyOf>h$OJ46Yy`!o-RIpp$&w-yG9aTH*Yk9ZFb6adB6;h-w
zEGz&8nbio$K2GFos;a6Q7#OUsu7Xc!kWakba(fW>yz8;QeX?#=n*}-W09(jCVcyA8
zA$N0glJfHMRFssJ(a|q7j}8ylG6eVqYHRt!!yOC_4Bo;-v1LEPV6Lt=`wjPV8K=ir
z+))R|r^m;qRH-#iPWzJXA?Vm%UI?2L1-_f4a}dlHR!*$oYX`yWeVuO6b8HMoM#d_Q
z7q=FlnOImV%FD-h1MZ|uIG}k->beByXW8>X@oV)KGnGRF0|WE(^FXiF-rnBbZ3<+V
zGfe2{=%Mcw7JbJz+<k!ChDf~0Q=0Fssxm%I&FW-m&#*$qB)aGsPA6p1iinQZu64B9
zEH?Opj4|976dZhK*B7U(z1yGQhK>55p#Es9z~BGs%dB8L&-TuwjdhiVmX`ZkuTY{^
zqQ>>Xgtm5(UR(O8_|XyA;(m8?shZ@Gul}o97^8)y4@*A$U7a719<dLnVW?00{QP~h
zH#$CaAW3L{e}6zy`FD0;V4$a`Ct8WCt1B=pCpGEm=}s;#HX}e$7Ze!yY3x^IW@ctW
zLV^taDD%eJn*H`T^X)^D<$>=_AmMPpu{r1V5Ya0jpa)16+S)Pm@@+bTL*Kr|a=$Q<
zb$74N$=M!EDZ(M;-B`2VdQ#_p>$6u-p9*(69aAo+F@uwk<-<3pGY2vx<A?J#OG-;W
zO%}J^-<=EP-vSFjF5r9uaOg;Wdbkn^E|lH2^E>a{m}tNN2~tZ!f7Yyv|D)5bF?d%P
z4Q#a7KpgZ}tc3mMaC!otLwj4><{1qq=h*zbHU;+2%uG5On!4kDzFv<I;S=x>!EwMD
zrxAm?o@!u~fkNHNrmnU&m`nglObirVKr8QbaiBZ<8EEikK^y#Vs5CS+_h+g~Jnr31
zzY4tpUfa>xmWn<oX*%s)2$_Jh!sL9<2;60u>z3f%yADYb?yZVa_(Zv8&98zyRQM$O
zr?VXfBgL%N196+-jky-nJd=?OD=VuSV5#ceT%4S$6c{j2QDa_NrA9|b=MQAdX9AV^
zs&!RJ$iVL+eF1)chFofD>W?d(p$+$U*FeMX-`UY&G@2z_?bVnj8U(cKBLFA(cTP{&
z*sS+gi!-ZLnCFd|;^E<eRxhuvjsZvf(x{(5Xx1F^CnMGy&gPq;eMN89F_9AJNv(&D
zj!>3hd$~EPR8d=3hcRF2+#AEDSPm)+RJci@&~8%qtlq9J{~ENk?uXOmW;q^{g?G8_
zi0{Cu7TBl;%o;9ar{w9|OA`~8*~<O`d?BpPgg6j)Odmyu2JDu<t|_1QZX!Mw<nG!=
zX*g^jxA1SeQ9KZlogG7h1gUf{zR7rjkcfI7i;I95c+!d>LXlmg=jkizjP#0C*>Qpm
z>lGrxDOx70gvCwk>z{QdKte~R&&l)WpwaLd3e-eSP;^DmLh;w7zCV0}=Ka|viq}(@
zJywFDY^CN2AkjRDtsU@;RwJ-OBO~!0wpV#&1B|%FxuXn77E~8R6(Z%bnVvsCJS|$R
z;rf#ge@Pt~X7O^n#;Lou7I!v{>hjm@m|NM|$v~A(0LT!oZ0pMhbWBnTLm)A9*)+=&
z60om5+sRrBKvMAURDHUS!R4J8qDw0F>G9DFkZNrap{T%4_``M<Y0Hb31WNJ#9l({o
z)I&3daX^D4XnVS!pB|TmsvY%UU*!A&li)OFpZ+Z0$r>SE!a8s`TwmX2J^$N&@kPs@
z9nidor>3R=qFkl`2zQFkC5Av)R<^5uB?7)V2{w+FL4+}=ajkTc9R|pT`d<X&8=91<
zJ$3PP23{cqA3qY*aPY=Tm~V+d8tKuz**Q<EGc%PXqG<!)eyOoyj{)^Pj-URG;13k5
zKuiw~7Fz;OP8Jp@s^n<Om?o0E*DXIEnx0R5M$$M?`I~GH!a)GM`{Lpv?B|fe4M!)d
z1d?kE9*0U<<v1Y%BAGlx1nlbxWYCY5fB@E7tmyg~<_X#*57d$ar2ql5BZm1gGd+01
zwi=h+<0Xm&p4`Hu-9e8h!u_>34$t?_P@Jj#d#<0iD;)BKisv8MCkq<x;^N{=b#)J0
zu!Lf&pT6{h=sJU{)v*<#c`dqp&7PeR3)`v47W@o^Mt*+p*AW0yFVIH4&{UhBb`}B1
zYHx23%yfc)wv7CAuU~DCSOUEqMQQf=2QwWex<?=fxqALaD+|_d-n_@Erk77RULR<<
z+RAy4H3kf2P@-C%JKdf>APcqTb|-RYGvLzy0TY;?fOFAGm+NqBybOvDXS<TRR?+eW
zOs>g_(i{GT8+@*5bZZ7AT8#}VQGPTT-JvmSDY>~443Tlw-+XfH5fC$3q2FnQ=$suZ
z4K>88-1zp(Qua5dd@%z^_zZtnmk9yMJJ4&_;hkH7A}`Al0;WJATTA&8L#=t&>tm4g
z)2!4X_`7~jY+i6StbCtTz~0$;3Wsu7h~#LYsih}+BrR=PF$Ni8qc{3`)1!v<ip3P(
z{Pht)D*Uz^gTVX(TM4jOVnTx3#$d|z`M!&bO9+&+yRT1j!Up(9@HBzDG&eT~)^+!H
zQJT4ciHQlH!(MN9HzlRE_Pn6m)dLiiZGs;>Hip*L)~2SvMAKAj9oZZ%ni?-7&`ABV
znxT&^LMPl6W#r_Ff&CsG9W5>{PEJm4Y;2sXbFnD_)kP6MegII$%*R)AcYEys+R;sV
zbFm!aakZHVBBHIiWq_&Pk-MGDx$HYRJ3|}D%(=G-5MfARm4@5FKOcblxMYfk%lW>I
zKk6%YK*&@Jf(*z#V4ka^0h4ezWAhru;XboH>k_;G{m1GK6s#>(r#B7zJfoZ$;h<KM
z6$3Kxv`#wFj{VaT@V;OW*;`p%E{6yKTy_pBq8fl-%FoaDxH;^&I^E8ch)vxF&d&pr
zjQ{uaG#?9##n>-Jk(5HW>oZsc5V(K;&ib(vdyo0PJCgD6@DLy*bTqUj0*MbFwm@tG
ze8odV1RQ3~YFp4F$o)SRHb5Nl6%C$c6;OL7K7X{@)6&wSudffFu$tNwfJXff{Q$J1
zrJ=zf;R5wqh9H6f$PrZU93CI%Sfh|WeF}i~(TvT2l}&+0)zZpJYdVV7cD9Y<w6QQy
zn>konEoA`x;b@W_5M8>Qkx7ZyxL+lqUnMb6QZ-jSQdVC7@nd@C1aN8BC#0PB*9J&e
z4)>qhT_W#o?f3Y9XG;H>Jvv;VaE$)Rm;mPT!Ol974-->m&3k^{n?_u5*gX@PfgcgN
zso>QQHj=QOdz<6yiaF;1zfn^=0Bb8O<^@eh>1TVuSlV<T<FTgZ?&<0>Y4k)86BE<b
z)rFPncLaMOp_G5R+_-N9*ttxt4m?VSdADdd@k_(UIN1sekz0pI)Ql0jmHq$oIrYVJ
z`#vUaE@o<BP5Eol7?^jz-VNfOJ2*HPH0A(hQ%J~<FHR@4>7;(B7&wvg+4Ebk_%$>L
zaf7m@w9wGdGL;YnwY+iy?l3?aB)95?n)8}Jg5E$N$RU5;3!vNPQ_!G#<Uw9Ln`1=i
z;GnF1-+^-VwfWtmr-5pjTAw7SgRohgsh?4IFdVqduB`kBilR>^a+Pwhp7K|JJlsJ8
zHb;V(|I|&Cf+mF-rv;a-l@&HCC@78i9EUWH<ml^mMQQ1%F~=1PMr{WG7@$fhB);D1
zIOA>;i4qMHQ>(&!7H?c1Qosz#EkH!Yq)}N2x?fOG5McajeWXA6`m61NQx~Y?k!n1b
zSy*_u0Xv8~6`h=%L`B<yjfWSJwU}DrBZEmZTx`&Jd;QkjydP$}*o?1v{ZAz3Rnm0r
z4<Qe4lKSt_4g*7nhosa%Vfn8j%V)w*1<o7-)<1(XCk6>5&sbfejOr5H1fjZO1N-Bq
z5g{5%AKiNa#MiCZZ%#UPz7s6>lQcv!Xj|ir)#bA04H*M=W}>++TyalTSJ9`3btXk*
z9a_-|Z#ePx^}W8n27ws^AKx`-G7<{rN;|!A+0<l-(e%{RxC#S~7<Jfqo_Z3nIqA__
zye?;-933m)pKRdK7Mv1!=CDHRfPfQ3!X*+)iII_fW>?YG_Uh{KUp$@y1&C3<22@b5
z_>OWU!vi1+Km(lh409%=PTK@AH|uek&1Ea)l-O9mP5nm9#&hYp_rv>+0}?}?;S6rA
zdiQz~g#LGYj$sBwQJDRhCOmhay&j$_{{DK%!r0s0*$G}Rv5?{RH(b7+@fR*vuA+EH
z|HS&TC5D%=py_}BWB<J!&E_j!-g@9`mODc3H_}4F!on)s0ixEbvQBT8vrA1&16kH4
z)?NT9!QXbft`qvg%y-q;6wvQD7LT8xGTk7hP1|j7-kjc5pZ!~Q)8mCh;>})G@X+mN
z5v_=>ZoDOOjC=_dK?_jbBe$)yXZ<)|)`8gQs2>UFtrZfHA;<a`0?Vt?`Lu5Liw#K6
ziS>Tp+9X<VE>adaBuv#&rvg(AB9(NxSm2E#B0xwBF;@bWhZSbi_G`Vwu@bc5UHw0J
zN`O%ZhFrNyDmXfN!XJ;WG6k7)T-6D~r=rt=`?N1f=pGccp?Qm>%cW;zaG6a-z(L8+
zb-CHJRFa^kmKM<U0IOAOJVc2EhfkGe%h2=NtOW{F{F%IE$C@DsWf$Ac&mWJBG&EXY
zUE^gm+|yG^#9e^bNq~y_7n-k<w_o0zB3zAJvG9b3F0S|QWScWi<lkk(N0a`zy%qK5
z0CKI_L&@X2q+GgGH=EQJx^!rRzgRe})jT1ynnD1YbOLW=ObmT=59q-5VAAcy#ilaf
zuU`Y7@*JJdduW3fMBrRrTm(WnKiq%z>(+AFEdz0|*<9@;2qE`os$3bf+X#Z55D?gd
z;?s)@M@GgR;4W;a*!;5$dZPXSeqi`~Fi2FQFfcGy6MvZsXG$f2aZCurBl9W&r=!m@
z04g|Ns=%K`4i>`}&rO<ITNE3;tjoVYZy@*Eh<BPFTjWJZuK&AUR`0gG)HW8xd7;Y2
z<kwsZpG=0_k5-+t3mEX|q;f;}@Pv24tZ8m;UKhzB6PG1@>IGhdA>B?Mw|63h$1j{?
z@7tFmxbUR?WoAEl8BLU5B-$z{mIZDRzJ~$9faHt;J+?wEva|!i%mYs1%x4p4x!JRA
zNvPNdDl*9qrdy{swfubQ>KWyPcu0-%Ev9AGPCPh|9>jIqzy)6IJ-=9u)&>MCe>>~r
zJtPF_pYK98Fi9zAW@kb1^Pf^{q5xeL|H`Ghz{-IL3@%~eHy{F$Zf$EDn)DB4RD=c%
z1}62O{Bbh)s2sROGtH^ruCcjSsIYaAu_+dWh|rZxRn0*-u^=YUb$WY{J7mmJMuhAI
z$PpbMCL%fdC%FEtqu#<)6yaT<exP3b&&yL{o;h$^DM>xT0i*@76E~{<=u&LZX^_FB
z+K+|;i=ZrqbU9TyxutFW76-FGFJLiz&p<P8IPP#9;p9YfB^|PoJ|1G9n~>?z|4^Np
z(&w2rIZ1ZJdE8&baQJB0A)J;HH?|s^Rl0JV97GfU#|r50$g#^sHpu-pYrs_?VsE8j
J`64=>{|9}xe7pbv

literal 15650
zcmeIZby(Ez+cr3WDAFY$ASg<Aj<mwi(%mK9-JuAAfJloph;#`<r*w<N5JQ7>ckj*j
z_w4TTZanXA-`!*PpFNIYJ}|?4=FaOnuk$?bFeL>k987Xd2n2#7BMno5Ku{YY5EKOr
zRPf5ZJgyvYL30t4QNzH%m|jqv2Y)_vl-72EKyc;3PYTNHNs1-}@)RNid#&b~vOVLW
zrMf!(VDIuRs>}pND2*ItsJa?bN7E+NO|AUXn1D@jakhiqnDs}UYK?F=L|r^no?WWj
zd`sP@3JkXP*4bx4%MAgP@|+(W_a59^zN~GiQAp!XyTs?66SCm+^71<Rx!p$*mFE8*
zG$iA~>txOQ&C$t8BjQ^MbKbo5-HRJy_TU0(`a%Jo1KF4FgUdWtEeg1t{rBJMg+dwP
z&(r18mXzy*;YB3@*PrKxu9XW}84y%BWSR8OkCuNZrU~4dufATHN>wJ6WXB>!gFuwr
z!g}2{)8%i>XD+spu6oF8ZA13KKGnf=XrrFsN?F~#HrL$2puT#+Y_<pk5;oANj18u_
z{gBl96QbeCJim>rdY=GYIass(`2dH<^oidwc>^Q-1jjdf`UXu3tF*?y?Xyl=>*v9D
zL?UU%WLX>+;|6E6&}&4Pi#>0UKm&i-o?f<DgWoiV*wE!EHNkMB&%=n{BVDD%%9GU&
zT^`$f?Sq+_jixPv!XcubUo4x<?;7%r#qBgL2nSU_rr0k?_qfS@yUO^o(Ep;N10I$h
zaJja|9E{*nC4@j;1vAbepC(S@D=*(X&(B}Kp4}eYAfytl>mCsBX0g^<%k|hnj#ySg
z?b}bNIrx}19PGz4+vvL@t{3;0EFM4BE)1Cc={hNpHsiKV9upVGl-SeHGE%FmOC#Ve
z^eOc76H#%PzCbm%4&70ZV$`i0pP(R=nR)g1Laca*0!#VdKjf5L3v&Ux);v?;q^5Ll
zQd)VbUV3iD${6PU_%YXb>8R9wPlOiCvD){80USSXkLOvz;Tk@p_6uv2XOqkPA+15R
zhZ=;#pSKIude1`rHr)hfVsdP-hNh~HyRcSIiH1An>pk6}?){fZ>rlj%P_tw90vSr7
zoRQnZRKe<JS*Bfs_`~I<%CL4gF$t+hdMMlVwP1Dcc?H2=8@`QSYdJkC_3l=Q(e9?(
z->5^^{^Z!`ExivmhVj^M{Vs~oO`WwJ$bA9U<EQrJm6gZ5c80T_M@K|vKaanEAMKDE
z|8RR!Z>)D+p(w?wE07$TV$%?vkf7{o4234<MzIq`XS*0lN^1BUq{PP`<>&;b9W9FM
zlp?S?3_=o-MHAEX*VlfZ*z`Ov)<>4V!M_O#3X1qRPmT#Qu(B>q#xj?b3<e95-wr3*
zjN21o1`m8gKiL^O9+9DDB6dFHCEfXTC1-yz9@$LJv)4DIIoW-UQ<0)ao||jYITv<t
zTzt6O>_KtQm8+kr<gN=pkGF=8zpia>`;_wXSNnER=;^1DvZgrQ?$p*yj8rtIy$K$4
z_-zfB#LE5AbQE1Qvi`<iHG7yu|LfBFy0VGP&JOPe;#6K<{?_a;t+FygGIHZ_@O_#K
zr;chDb4B|Z0fuJ_`$eUsr<<Z776Vsf#hVha@o|k{idy|8_Y`B#_<LZ#MT3ocb_O^5
zkS6G{eR_0cIVbWp6caOzIu`>YPYNdJarJ$$xi7NOX6)3U|A0QrkKkig){XgxH27xa
z@>H$jB-nVX%gg?}rmu&0B0A}@$wHoGEiYI0_uG0qeQJZwvC(G@rbghY;77w~(yot}
z^HiIkT$o}JNEp`Wm<&kjlQpu)zTk4Am231CfmOOr)@^Me9h!Ap|24~MO|`~HdCy=x
z%hzElHghF2A^5{zzBD0=@>M(WmAk)0<%~BWgV7qjqvp-!Zx>BzFrVB!_AqPrLGy9m
ze*HQ!bS;P=)^3~PKy>|GD00RIKf2Iogy4DZ?{Fe=Dq(Lin0_5uI<XAQZu)dd)|zlM
zHB<*~`ycIEw%Yod39B^U<`euFa@&qv{$~SAFwG%3uEQU?G~bGfin52nwss6m7rUM(
zu$_NP=FJF*iliWcTF%o)hwAI6c11p^bLmn<7NrRbe7xpC3=DMi^ceTAoi^X@xRm$}
zY*6b|dWzE!T%LQ`P1Sq|c+8v-pjwzvA0N*nD3};3&^Q@FfrlRkdm>oLRCl$LT6lTl
z)i*mkKBzEUuc;|+Xl{MCXJ{2oyBcn<J<<hVPN3gA+npkigqf6g`^tb&{V3meD7>gr
zr*g|}{SREhq3V3|OhFEDKwWEh-5|8G9=pJ*%QpkRY}vyTDOB&f9&W=*D8Yh23J4BY
zB@%Y8X_#}5j`~wlglI4yuA8pw7#wI+<6hF>I!Rf)Z1i?7HxdS4B3WQ+pSSXuC3e!6
z%V{|jZ??jfmHpi7*f$L3yLFZX)`Eq_$0om7otk-OIZ|{8WH0^p_$uVrsdEXF=;5I{
zqs(oQ9$bcoKr_S}ThwOMaSDF<%Gx<XA=l?*xp&HK`VnSrN8vBUt9I}hVmht3QX4tE
zOG_;;<YrGFf?o{iyK(ORCUpi$1hN;51kVuPXVANg;s5(@C3gQohpenvnU>K0$g#**
zW5P->HZxn<dP_agEzU-&TZRpR<n@1{U}0fb^to!sp{7p1kAs$@V&&zU$^833=S^;3
z-+-W(z>mXZ6h6MQa1fB`=3fQ}cj(E1EPb-S&zSqWC0&WZ_hd^(QpdXgxGSL;>}Dob
z-{Q)$(aL^sGv<u!_K$e7dgiA)!hC$=X$G?^hPW-vvV8<1ZyuGy+)}Vo9tp@LqA6{w
zWg{JrHwJ#lqcQ33TEnLnpW_5G#-FqF>C|CDh;C|_riqF@zcQVaA-G_tsvYo@%4c@Y
z7kon%u2zsS>7<nquwzTjStjathbk+v6&0iKLh!DfFS^7s%iiz}VhC&N|GKS-9=E$J
zh}$=-Y1Q0m<cOC3j@U$hpNLC_eqV(8U5)>BUFQDQWCaD(J|Zlv91gdeYr0<UiQV4b
z4huD#H0w(U{`ip_`*7B0*Y9FI7rX6>J!ix94EI5NxXM8PLyx+|x4d~c(^Ki{`N!VE
zVIAnFF%xcGws^OujSM{UbP}`Zc^GEy{%vcV>4@S@zrzbBvz^p6muQesxh+_k3L_JH
zEE;r*8K-fYoOdOUyc?DKjyDll^!Eq<4kSx`ru4cvTHo7q%v5@5+KF8vEF>f(AmDwv
zGgI%rEdUbsY@<(Kl`|wfnP?}jFs7eedX^2Hy!c1S$4Udc{GbS@YKzqm7<M@qjLE4i
z`p;jvDVx_W%<pzdMPWKQmVrc~pn#jMNYQM(#MXx7pJQ=xvRm94w!KI^#KOd^=>#G7
zg@%YpzG7^~j<Rw<venxUX~+)-rMKQEgdS1me9pIQ`r=d~zP4IM+jZNsO?Dql*u&z7
znnJ}TSDbW>KBR>_6u<my*ru<SJnCpu=YqIF$I=uOctCE~`gY%(iF49nVb)M5@N}YO
z3T`tEx3MraU0PdvX*X3FPRj1Q9UUDVODA8TUZ_#51E-V!M*R43k4sPo=hpLAW_w-g
zld1F?XgUx7xVSdiqZ)cx$?^%yKG#j+$oQ;QJba2><(0sAzWu)cPdus`mRSOYudh%5
z=5$JGYG0$Pi;IlEdwlZjPq)(KWVv5KYnz->AOVj%O!UC<aFfbxEWXM<hPrfq$CFaz
z9<eO5J@<a_puXP8LM7I8)+=`eBp2@fsq*Isd+EAZJf|Mp*c6mpt(Fq@f$zp>iJw@#
z^yXn=J2}b<=9ct-d3>^6^Wb!lbXLr%BRT&&19xLMtkgMg?N=}s3d+z>LTFT!!)P7>
z^a(ybKDEQ5rL?i~Dm#xY^7~$T-XW<$0m&-#mDx{vo#Ec}0d-Dm*3CS8Gsbm27X4Z&
z(%rnUZUs8u1R41T*JK4I7JbH7a3%9v<HH|j04caQ`DI&_5{L%diFoY%G#*zpPX74e
z2wqj??CyT$xICZ!i_c}--MwmZvQ{k9aXygBsXTXphurqU%ww(W2JBt%XcK>M<F;62
zJYEn#cYb-vfjzQ2v!i3j*u)udy3OO`GySF2PmSsLbk5J-hMBz~c<~cdRmRE+-mp_@
z<al|q9gIafm?oU;la!v$p4eAw6)cvi#xzhm+vL{AYcoz}P@-M&!*4SonDmu>VDEEQ
zsk5gNMP=qO6^x9!uA;$%ohr_Jv=)|n#NIS@#HDyqKXeseMEz;+(Kd4tdj$Ck)^nzI
zMGHVJxe8lW(^Xz?m!m(Y&gxeA3PYLsPD&b0AyC;N4B@3EYRBzlKDNi4&az8%4g+Zw
zqmFE8J(59ZXAe$Js*si0+4?Ff1;!dPb)}xiM%z<6uov;Nq1|n51D5vxOq*K7U?|IQ
zj$ES1_0b6El((0c6YKc+cx~;_M=xh*XIooaS!C!l0b(4S4~I0FTwY(9enzixA0{o^
z%Jv&orDqo6G4QI6(JJk38vCt=i5w8FYlnmuwG*d*KthyudJhENynFS#KwYU&<F%n5
z|9*c`_!7M@|9QnQ?EA?2;o)LYQA8=<)>uU!JmB*S5q|-X+1{<K6f-#sQiNrTU!BX5
zw?_8)ZgL&$;FE_GoA39GwaNP(j~spwqKVLB#xX%D1zatMvm}@`OKc~~GBbyVhITt6
zDYmEJ&$E)D4j1R=`;)|^Pd<g*50niylPR@GGrL0k!Vj(-y{KWnksrOqmmyCLywvO?
z?CgOsy$?gSaFlXkD7O`_XMZHcPX7TQ4<S*y^N7E{TTHB~u(0r_l1F4(q8w#SHaLmq
ztlnfa?|V8)lMj0P``z8$Uu1#QTwa6R6;;;T_hqW}h(f4S2sO_+%r<yUSJ`bMN>5Mx
zt={G+ri+N)oIQtL?JY%#;!+8H9U2eKtN9%WM))9aN##qf+0S?wwj4{_&+isJbK+U!
ze-_aqG`d0!u{jyki_)2IHc;aPi3nb^l=}zcL{dHC0;2||oILUb6g8ksGF!X6uF+oV
z#GS4Zrh!7)d3pV2uhjMHaTcb~Q0up5UCJ^t=8eU&7F-Z-vs))P#j9;+3f2BH$DcRb
zKP=T8N(>0DsyfiEUQ|)}BMUd|cx0$YYf^4$*#0cRY!_L3y5F8ed%{K%9-gL%Pe#@~
z^Q)EPH4Fqd|BEB5bP+#P!+8ZW&)vpTohn;?%ikHVgYLuaXX*lOZ*rzuvmE`=)TjnA
z_2qqv4Tdm72{>L5f6<aA-3`Mvpi51Q#t6F<XVD#bt=cwt7Gn-!a4|dayRLW09Y}88
zNKI=aBBTPS49Bl|E~cZRM%z>pFNxD7Gf|NOt~0VeFs|#b-wJoos<yoPP#S`p+|E%6
zf?kqj5NGyBUrxU!scjPMwuZ4{@%Gu{E9MjdGuys#zfcDHO}<<BC+4Oa*%}*8SAoX#
zbi^-o!zY6Ne;;|Xdmn}@l81#Ff6Z6TRY(<xzg0j{dnP{hw}{_bv-<DhJ9LfG3X%fK
zCofL8%5NmvuU8FPKUBN0YS6rL`?b9CcrJ_A*KKnl7EkB<H|w?b{IiSW&FRU>ctcX;
zA;-B;`eLGCHNNuUe8Mh{rMmwyByRk}@nElS!M3?POrZGhWhNntI2H|~rUc9t%BjdQ
z?vVD?YJmyGfOLpTKPqf?w&_$S)@5Jl4Hgl`z4(m_bP5UzW@ctNO_aSDiA*a(#_Qya
zm@v44dyKxtdbK6tLuon{!}>zv@MGg_0&)nGG_QAw`pS!F3~nwi$|q0y;ECB%xP~=*
z&~#cqU*D9}tv)ze;GY<oNw}$M8+&(EYSp;)C>Mnd4WA%Xk%2JSy`LIMH}?k}Rqc5<
z4#{{;bk{x+A`C>B>^0JBLWhSPKW)PjMN>r1Nz;EDnVJFsVzWAbCb=|4%Z9DAf4{1q
zVuFjEUydw2P73B<g8q_#Fk|r<RO{;-x{WD*j=wsKlNESsO!1le48$ZJHV@vtQbGnv
zJ`Q2@Ub3z&_Di&P*w+ew6dwEzh1bs3@sKjF!FpoddO|%*+y^p-;~cayIT5N;eel!u
z5df~VZC=sf@?V15lH9Vg{{EDp2U$Dq!fJ)Q2_@()sNYq>(haw%b}QZ7o#rcibw2MI
z7lhIlEa}Y`wV)?K9^ur!D=pM?;IkuFs+#Wa@7FFjsaMHo@=^{&#OV~*dL7yie52AA
z5adF288W$EDzH_oTr@72Xfx=;pHX~-aQ+ig*|R>4JbNYxQS$G73B9`MG6W^qOV9a4
zQ0P#QKhC5tlw%N5_J8B9Om|&nKdqS)aZ3#~S)PB#kfWmB{5t3c?S8^$b}@vhxTvV;
ztmb9FZ5>nO_*C!Flk9kFbA_6b#utUJ?Iy-=ie!rsn=&kHHHqydg62MF)SF<Ha51Lc
z;wlmJo?V6T+Ejg};(fb4WoK4D*_$Es`FVS%@C%v`_wxp~wzl5Ce;+EH%Y0(fpW>LS
z7yowr)qy+XZ%bY`;qS-Ra!=ky)C&vJ!z`J{6eqXT-qE6|*_b6!fB<Sx>uoyLyIXSO
zatI=ndBW)CvEh&b0A>A>J99ZU-EAME!ty?QY|<;ngsz=zdrGc(?VDf|2>YH*^yTta
zkEb{!)YkAhom%o;_nn7)<RT^}_T^b%255~6u4_9}Rb4}cD48~BHm1*<kTY4SU|;-_
z#1(oMu)^Y_v^GXw<oT$L&cWI-glp50uwitANXg=7cb)o6_AW3~D}j^$G^+5YpkmSe
zO2Y4}YrZr0ns)xg*?PxGR&g1>dXle`z5CeqkVW-i8eO|X14l_d-ppRB*?6@q^ZL6=
z4|oO`%h<fftPcT#(@dmb>^I88LBZ6fbN9yt00S<%j-t~D`0UWMajXs+(q*aUW(!t2
z$iQ@~cH97H^ThWP{+rj_JamC0SSue~JiEAK@cc$$w5Qpf-N59+cmY=FvU(GA30<$m
zbN?48d-E8^^YZPll2l_RGi3kcSP@F$$k3WL$|AOR$qaQ6NL;M&@F$HM+mcVpHri6b
z401B7ChNVzb)Hi4Fn6wniZ|AaIn%Bx#_O^u1;Jc>I0C8mOF#6pMX;Y`ML)l9H&G)8
zW?5}jzIhAx$@pAn=Tv8>x93_*vqB1OmixAj<J`<pYCW>hBGF})jbM0vgjB%YRssef
z85Q9l#MD&p<m7%^bPzzM{dU%U<8zWx<TSC9qs5zzZ}*E9z4Z<ceL<~HvvF$gQC!sm
zI`h`TA~`jcnHci{?ivB9Pu<$MtR4i?3j<s2^(QUkffp94DphO#n5mID0C^1lu3<QW
zxiT71Q^{ASNmJ#7#a8S|^94F<f<holRMFE1QKE}T4&4|(J~=75?n<Zsr2A6j=3QeW
zD|CC!GBGYr7PdW&?y`gfrsJl0NOZB2LP1J@zLUblbazVdzM~W-S*C^W6`K7qNP>EL
zY1C8L)>C;kRDQlfUJ0*Z|1IQtd%@_00%0J+Q<dN&^fMQUO_2|K+<(IDdW@1|UQl;$
z!%w(qS7=zufJV3vKRW*FVl1G5d-ap_70b;B#z%759Y5akS7CbX8tBWjvBb+_k9Z3g
z4qJvXJZ-rJyje}nrL38My*sN`!u92Dz`;SB9?9_f(YcqChK33^uk?$>Me`)z50yP!
zp?R7^Y=|5Fn6tBWq!)8Vg-Zf!s$Hc?7#8GJl9BeG%_NJ*w{Q;FGgi3B&ZhvPV^LU)
zB)t(C4NZchF#0PAhGgWIFMDU{Uv-(x8Wv);a#SwQs{@YKWVWYx!`XIMSL2hCwzsyV
zVM$4oCgq`_WFb~FOqQ*`#)@^(36zt^2mH10$D8!`!qqok(C2!4dz0A}C}(@GuO|Vb
z59Yc(wXG6w_Y+&e$mqJI<)VaF?;Cv0n2RK?1_HU--KZg6wo0<4C1@k;D`Q#LJ~;i7
z2d_MXWRGz!lFnhoF^vzwTe3RtsvegVlk1SwbcKtuJ%k4{^Ll%f6xpBw50`uYZ&uw?
zrucJNvzt=gUz=lxD^t^Otl6K()qHl}h?JB02A<R4xzI!Lhil5)s_de=2L|Ni<<p@7
z>Ii%Bnv*c<s57%esvNG{)}VIAktSyK$&Ppe{0TF_MWdsm;}H?!82=jA@ZZ$Xla<wR
zx*Js&jWz2jn`3W{R}q2FG6UPi>O2))_qf)NB4E-;YLm%txZlX#z2y*Cdl$?>$c&No
zlbuVKs~Tg;ZR$uooZD@W*pIhe5mX1uGBE&~z=eX?_3KE=J%kanP5Nb$*>)p!Ab{A7
zq?l>%EZ?_}-`b*NPv-+AX?Aw0?YSE|f=ZyMS&3n9-)35<X7%^!9IN_DM|`>QOqSQ7
zrgq;|?IvAKC!qGKY-hT<O7-uW>_zs6kDgV^!A2ZO9UMQXlUJ~k0Z)w1<m7}KsjceC
zX<{m|a(H=lR$Jm2&Ul|K2a)9es5@T_e*~*E8a9z5MKv<!pVWqZ|6-AxB52%L!If@Z
zuT2!KP<Za22W$ELUb<JEfM7<xpD6q|nciH(s1Z_HVG&i*1#@tin?5SW*%NvL$=f0c
z{vq@I$l<*#-MGM{jC*R%T$ap>r%BR&+a)S2;~yg>Eg^YNU-IEW;#1%BmOM!&_kUfr
zT?yC7PMFjpDxa+N5{qW2G`*SU`;l&q0$D);GD<<nJJv%0DC7nSJLy*lqSI|q6h7R`
z^8{>_Qv7Jy$XHq1z&M1Z^XME$C-Ud}O@IUfdxu=@jkJ+ocU)J*g7=-;^zTbD|6@YV
zzxk=NDCrlR+@$}=LpRUyKMf2NmkEI8WfX}2-;t62&2RsA2O%)glE<rK;J+_l{XhJ@
z|D!6}|KE&%Q*Qj<4HS#*c#(Dj8_K`5O03JB`dt=%)c?#32bz)LD$c(|fA#1+V2cxs
zUkbfjB8I4A{I3l1qk^@Chm^UHJTY+l46#ST|MPzY(aL-$r0MPL{ptD)lF+_!3~T2o
z%E3Yji~*&9ihlDHEG{Lk{kr+#9y#;Q-n~LZ0I%tNf``EZa%1-)S9kKOr2Imm?#DM1
zw9&mRDoXH}n3(7Ujd|rh#Ghb@7Fk;v-?$el3Mx<FN)G*;ppUCpBFgle!AI(jyh>lg
z!-Fb_vj14R2@v#gC9pkcK_v@$gz2UdhM9?yA^Xa{j6<?TM|VXRkhg#r2h}UM{Fj9I
zCL<(+N#;NE!Zqr|uOz^}4J=pyFcToNkNGBeKCI%dqUw5mG8BL4avfZjk`XAc&b<a)
z+Qtf@$$U6@Ov%OAOk*Vr+i0Kv9Zt4mi50>mmXtd8B{fxWKUSO9hBr~?a=aL^a9Jz5
z;aW#%!6`QMld0u9Adbm@;P`EazkE@CU^V;`!Az>;Sy7rK3%BvS4CJOqGHTK$@qTI0
z$K=tG*T=JJoKku4c*%Zf@FBsJ?6E4Jpmv>P;6_%z^Zyz9>!jhOTF4t>rIFYokNpqr
zI1zk!i3M#sFgN6mw?^!ppb%U;sk^U+jRk7FKcY-6O>RNxe~Xci`qQmJhn@Fa-R4L*
z$S%!H*1tYbY6GJ70RYqo0iq(_YN0_vsY(p4&dz7PQ)f679`P^3@!&e#S3yI|RmW&^
zYwqiRc*QUOn`!|hZawN&;Ry(Yvi8mk@cj8v#HWktV)Nh0sSlhCB_C(z8o$5HA0s)U
z=Fng`$r3Zvl0P9N^=RI$&$jluFIVhG!M8zKdn>)LO*YP}{qPj7#d2&#I4aDvvAcLO
zxJFSiT)mN1n7mcUk^Kk|Jw#`c)xWToR|~BXR!Py(>Xle&^_>{P&|C7I#i{Qhx+6f~
zW7n#g8s=B}r%+KE_BPn9#$#$pvy@;C;M45LgBN9s#pQf=DR*6=(r?J7qY+Hn)28Fy
z|6?bRU*?(v852udxlc_!1b9vhi&ba#8KhoJx<0ED3H9OM(v3ek`raGIr51jC&ZBB2
zPJQEz_V#QK@v=(0D34E1wVRD|jnCnmRdbPo6=sLdJADkGvb-uDeQWB}h)u<{uw5<K
zIV+MBL(FY!c^gINtL}=`q5jK{RfBQKeDLeh!kX39DWZSF{G_ht5gO`MY6>MTHNTmb
z(dFk*w$y2XmlKb+->;Ss3=d~31KJhHubc;M`9SCwuJQ0k43@P%Bl<M1Dm*8`z--0;
z>j9%lFfV}1GLu=CjIMkMfFI=-U&{JTG@Rq<=gBkUP2&|ur!YvUQ)du}FiaAbx;$9f
z3=$KOed9X?m%F4A7T~q}lP8~SPCIDwA&nN7_rX1Peh<1|gF89wM8#7_!dI&r;->Qy
zGbLS=D|}?6K2t+Og=;4`BXkt<Cn{fcipvwm#z=*Dro^1$Yijtk8!Z1mXnXK&PB42e
za3QB>EPS)DEQ@*P;jQ0H-L@32XaJ4%i1}{Ojg>v1GwJH*D{LZu9~xX~JM2zb!#jIB
zcY)dmx2`3fAsyVjK6&j`?`$YwljxFspWUyGU`;(}`b$*(SStO6Lz|5L)2CS<h;>e0
zt55_`en34lObYnyo)ih?u^|ENyci7=wwvaQiV*r!KH}4tP|6Nw_jHH0dxcLjvb@}5
z`w3dju({;gW9r)$j=sLaapqBnpQJQEJ2^m9B!W%%yG+?4f!FDmyHmXFRL$G=ZpO&u
z240^*l{T-8t0cXdeuHG~^0|74xdyk@i{pT>H9*XIH#VskJ{5WNZN0?Z&VwdKmKL_W
zuwZU3RRD}LX8*ySepygdx$jm~dhAqv0aX@tptf>F4S5#w>^~}qzD*8v)Yo8iignQa
zj#t{bE!aM%@2xBkNhZE5TqcyD2{Dc!cN6gY$1yOvd{C;?&||=7i#%_8Uv_)x>pMi1
zI)k+KJg;P{GjWPP+L&CK5|tvP7EKj&Fmrbw{FzfBSCqMTj!CBptw5M-5Qo8lRND+x
zZh4BtE8;3I0Ih|Xm(S(cE_}Fketv84Q=<AW3yY6*cZJ1R`(sgvQdKVt6bL#OYYXT*
zSPTT{=)7Q^=`6B{2npMOqQd!Hu1o&v>OV@GIEn3!6E4%gznBwminK@KL+xi9Or0gT
z<L})c$HOk#)oIJo4yW=J@!Xm5vHH@ywjp#{xAw`j3%eLGKcLMmD(rl8^esJLUfVe7
zDyDE~`oT)8c4nbf>DZ<O%`<Uq0&%gd@Kcy94yYuSB`kjvm+?N~;oUkSVI|4XVW{8a
zkP7Zkt>ywXtz@>})!Af0y8q(~|7JpqeFCnUq0F{iAYPQrJit!8A3-5#JAD$0L^h0$
z9)YUB4LEL=>;4yd*Pxg*Sj_*bw1O%AqBovGT%0}$Y3me!@1FZ)<Eqi?*R5?IVC6Lv
zzH}tvClZt<+9!jlKGcdSR+i9Of%Hbc+N^q?NRPT^e*3E<lxv@fsonvW9t(u*%CY}t
z1}e5ya%@6&HT>C5)Gt{JR<$wb-&1|vzrTLf;V5t^$zev%BLQRX3lx`fts{k@1<d-3
z0i7dhSy}y`o*H2lYaNfAf^W&}yf)&>1wD2=9IY#jj3*KX`f57?pZnHg6|9r}6FZ70
zerA28%x^S!-FhbyiZ6lvg1Ov3w$WCv*|YT*2Yq5E_2;yc^GYW=sIDF@#W?FXXh1x?
zKV6W!xyHY?4<AOjJL@N!^3v%;=FIYjFNkdZqG@}r<x3XW4;Vk`#tfCj_ug%1^tEZB
zp+1S&_|zeZd$nqa%<>{L;qv6R!{1+G(pFcp$nS{Ie`Gm#VRSWTJgOJ&>m<(5od|$r
z7~n#@++G!`lDH%NnhYf2HUeK@Fgz9MLgn<RvB^F+<7{p-jf4`yc{k%5Z%phK4J>~C
zTG0|DnSgB|__*gIF2;IyTkA9Q$*PfYok$&XQ~7rD)xQrVvVMO)C$oa&Nq6Ini4Ew0
zzS&%L?IyG8W3&_kYSqE0uVI<R*jI&$;JlV(9wr_5$$|!o@nP{(DO#_(!nmDWB1DPr
zAI@~)GdYCBbg@A?x*NHD2NN@<m?{940VNUq<A0(5UjkD=+*8925w8N}LSAp-9kTrk
ze2jZ4`Rz06CZ?u4nN3FbKpE4L;`_+w_H_wRv8z4sF*qbIFMhAP%H|xr7AvVvL{4E2
zzhl1w9t4in9@R)aw#2>_44l%(nM!#|49m{vBNjSx2$guFhRmN@mm>}Uh%zOXr~8_(
z6EYFEaTKw&{!#y$p<%PN{e(pyJ&rVAtzg)aMPEYwJyIzwBAI9M5A7?n)}Jf{Gfh;c
z>tamOqdi0kY?)f#ja1KZAosg*;`@qiZnf%w<{xPC42A~z+Qxwmy+SLcZD`K9Gd~z9
z<cnx33>*qJk2dRVzT^6cRAPFmfC9!&!FTs`C*sKq_m@Arn^%?v0fNlXGipGAWMEU?
z4p#5p7XNLkZaN;D3>O`*aC~iMjI42rw-!`-{1ggNGj8-gUAQ^g8S&6s+XM1jZq5&#
zy1b3GHOe`ERsW}pCTMajBin^v`wBO7Yl;#dUGH^v@i(9@-w!O<o_}}!0B<WQVxrol
z!`Z^33q71fw=N5T(-!AQ-`Zw)d6do-WEM*1-NexL6Wc9`z$Yh0;sFCDaG{V4IzT+1
zVBABcm+ESL_N-0(qYEo&$YWve(WcPuqsmIO%ja;N?H}^Vic+a`S-9JR5tQfev{<Nw
z-H`}x3r}xv!r}eqn~guU+yt~QUie;KBadwm?d|Qh6E%#SoWrxT_IvZK4$a3T1nb8a
zGd{nfsQ6=Y)vBz=tgmXyH8eC5rXBhOdHPlx8CBD}&=ZWq$V|w*MUH-ZNp6LmAAeIg
zL%e@<z-f=H$rS$xg!q?GXti>-WM*cjq=O9zNlkv2H#e6KG?=)!JBZSB>7%P9)4%;m
z+S=N835$S`aB*ct0>;uu#qYd4ny<>w&)?M4^r%rZN7;n!9*`*@rD%-?>GAQ89@oyz
z-8RRbml`&gyY`sSOG(j8!F@b_Wq)K&V5QBX?Mv96t*}_T+=bdqEq4x3q@|@<<>!mu
zHvEv^)EFP<LpUHUsYc^M6Ik>GKx^koSh={lJ+_cND<R$2m*B1<9<zG2Z>r1zojzR^
zMSh$a>|VF{^;U$u$u{g&3&y=shYRZv-ITS72IxJIMokL3^XxS=#^V@O-*RcgV6eAu
zm*-o9u!gP=heYk{>{bU;<zQV=)S|9yN~H#kHQI9lx55Ng@TqL6DErBuW}rlaxo(Uy
z*6N8^3{r*|Q;GWf0<ju%?im9+=(f6U>8v02h;yy)!h33Lc3`IJ1O7GvuY=Jo?TVC?
z)Y_BXzk?JPH<zzpzou7A-Pu=&BBEE6X^$CEwwU$bEZ&6LyLunW(-3079$T$zCnd45
zvBip<f0!POZj&<aPg(f8Aq&eExpM3s%`f!>#EM3-2B}A1H`D^TNH@ra`811k2?v`1
zJ;L9g0va!?{wzMB$dWcB0ce9xM5zL9KrYmtYx2Wl$A9uf*sPa$$0?(=wN);W4am8L
z!#{wV!ehP##r_=h*8k>w6?tH9Z%<cW^5V!_n94<m>8^*<t!S6EVMSX-*U=CB4JzDc
zk-N1dq@)&YChP0#CH5uA%KCaAZyj=i#^IX%A)9gh;U3jok;|=-86WrN>v7%k+ndYD
z?=mnRo4=ZZ?mJUeE+55ykU{O=RG1HhGVt?zU7bZ?Cl}*FjsDh01&6#~THSYk_p0S*
zk+GIR?#ScMyu@^geH9fIk>uRm+{MMkwN}i`h5h|+#4pQDyMVtXF*P+cJ>B69GT7by
zMK)*UC&fyJbCY2_i8ES@&9A|6`}vlewh$a>C9#O(=GxlVBbNLs3p*O`i=+JPSRw*#
zZQc6XS_z5N=ulc#9iF*z(^U{PkTWy2rqf`Jb6fa!{M-U+eq!mFQ(tLvSa(OqO0q+<
zQ?YV(md8*QSqS4f!&&(GR`}s_=IM7XK0cRmam1R4)qPG{THvJXQTlEymOb3P;+*a7
z<Kq)AOB>r0DxIS;IX&&NEqZ(9veX$VE-ns4yd0HvU?-||*VUbV{~k3AX0q1!^O_Hv
z$<8=_eDhWxCF5K7;NZF4u84z!L#&IS`&ya#%v9y*D0uMNAl$Zor`b4=jM`p@;G_yR
z%D_@*x5!QoznQ-tsL{qEW%G~Qlg=F>h@S7bEf)4}sBm8Cm5L$+<{c^_&oZM08gbI#
zsISCOeF;t>A;T}B&k~Ha(rnbfpU(QQ3khAVkK}@)4`}Q&^&Y$RyG?xqG+7@$+)Gu+
zRmmSr6<l3iwXj^J)2Xy{+ClOcYZQ)I52cGzQ&RTBSO5MUFVq|w7?3X<bGDFo-j1Yz
zehv#8UUvntrTO;8hxW>j*u1t`Tb;0z0#d-&mitpI({dtXp)z0f4I7{5UPff|)xr8Q
zBW$$9uf8?tz7z0FzHYXknQAiiq1pId-c}b$5%m6>bA=8ZH%-vNz*$xnn1FsLq+T@C
z8#LaFFakz_p_mxphZ6gU!-{Aue1VC#d)VUG#lkfGK*h)?LnU9Y+22o6GNiH5ZzxR|
z4Gj&)1&{Kj<L!-K(wlJ*7=Qm(`n$3p0+yN-4A!5-{W0_#)L{@Emxf%#_YAzMs-gm9
zUfn8NE3GDv-B|#uu<`IT8Hk?<xMuX8PIJ6+WniUaXCKP5y6v>Tma_XIZAQYFH>CrT
z?h>7R=OM?tk*9k&1?EG;R8T9fLb)>6XLRkIjE^vbdsI;{1+T@g{SB}BL$_tNT0*xz
zv)Lk+vnd{_F5KELwub@76A)q(G7+02BO?^!np$;VWM2rM&rW9d)niYXJF|g7g~+z7
zGFx@An?4W78^VxbBEa}CYP(qcDZjW#ZF(0u=H6xa7%)n&9(v-Md7N=op?+edA3Is9
znA$mGzGFr?J{mJEbr6`@9B+&zu(g`h^r^D`g99K+UJ|K7#_NQE_fSz3Qhg#hJw+rK
zpF!1V&g!v(7lH~@TBlK3UfbufbovVg9z_8hp+*ybxcGkK;Sx?MXR3nc6MG+>kUL_m
zp8%5#uA?8k^9?&EOO2`UoLgV+&dA?F3DxWg`k)tLd}o_!2oLfCp1%{v?`G8VZ}(@|
zbpj=`dj<xM58`wSz87Hp^8p*1gM#Ni3EyR8dlz=<1`NHZ=ko&57*>Qs3}>gIx6CGF
zK<{bxG$Gx)Bh{2pZJ0ajKYx|BT^EC};L!&GaQ45oW8V2VWxte~qzjGZjgj{mL_y5t
zp5jaA5PE2aMdH{GDr15;3HiHRIB|*R45qEI5zQX|NC2$y|I1hm<xO{gKfmYG4F#k)
zTnCt0frCbkY5%ZrW+}C5kPTO|V$?davC-*y1K)R*e955OHCaH^N0^!aEz&C2&sWo~
z!w>wFtziR7C*6u4Qi+3~Bj$5-F*lCABX}TWPoaV3K!%T#RlmNEbAd-@X<=cp?hH6C
z03dwzQknzw<0WnE;vMc@WB*{uK|*o*B@~}LL#Mo=0)z@0n$*Fw>9|)<Tex=&O|jeN
zuUQ{OKm$1=b;My9I7%}ds3-*GMPY{<+6gO%WT8ZJmz-iTviDG*!LPOyCKEAM&}uW)
zIA)c!!NCO;cw!jXDPuN!=EGJHhT^5U^ONi5F~8j1wVMuV2Srhz{Vwl>5{x_Gm#HJ@
zxTgiQyl@4ySI2QFDOa1N&9lt`hA#+<waS0}S$SplVLwDR7dUXT9~##B@EqpNm~2)x
zhMWMQ&u{LDdLOrz_4ag`@@n_BRE@jjTCIN@uIA|v1-3}hq$9X&&flq13Cb9)^Uxd-
z`S*2F64!QGHI8?lTw12<paSj1>dqQcS;J9grt;Ea-Rdg)8SnFhl`$rs`Ii#;PoZi8
z#)Z{2^@z}BBDaImnefCS-b%dx1K!8%E8O<{f~d=bUMSSvu`Ky!<!ZGL5Ug<SH#rf>
z{HA|CX6HIZ0^nVyAt^attm_2m3h1}{ftnpZVJw_<iZKk<1K)T<(&J%bVq(dBcI}JS
zN9}umR)1~ab}=%gvg!teBdcH2Rpjd;e0mnO|M4c3>RpVK^^Y=|S`6yE^{fR_aR|;P
z;qV0KuE#DxFYnakq`Ac^X7I0fXx`YAzq2i+0;mLr;c|k}(r<ZiAd;Sb)PCg{s%H{b
z5y1C)b+%7HKu}v-`|Q~>!mt-YLVCp-c+?^d07xQH#XsT#Z-FDg580BDV&dY!H4&PZ
zkzoYTN5JhhlmPv~gVRk!)Md30fOW&!Qq)489JI8wEG!Wew)6hqu$hrX`%7IeSY*Za
zKS&SFD7?=07Se=$09Lg$H6_Bw=KwdS0mX86^mAopWx!A4Q1Ah#T3%#i<S<*2Uad2*
ztc~O<LT#-<Mg?iARJ(#MeXQ-*uQxYS(G;>+=|u5^U`*NA6p*e;BZ)U-se&Ho;Lr)6
ze%SS!G|ohSYOn^?gpu>65D}(1jsQJ+ea2!L92~i9oW9=FPR9%u%l-_EWwZ4jh^!IF
z9uubDMZ<yA@KRS4NaKeS6BBNm;~+xXbVfXeI?N)0LbrhSl9}12H;$1jiG_xShKtJ?
zV0hTkYI?xb)D%dYiJ_mVMg7-)XBsqmJN1crAFbWq?B2fRdfXU_Y90dp#HQrw#@!gF
z<!-z=UQEGbsdRmD3@{M8VN*XZz@b9y?7MyJ&BPe@e1Oll+F|Z@rg-@H{PwmVNL>IV
z(DV)s4fXWogMqjm%X|YCYYtuX6;!9jcxez%QlUhD+OKz+GvLXzx+iD!nirjsc2!13
zVDiqtoP#W93w=ugsYxg2r;@sC3=A*bulfaN1Ru+zy;8P@>!?SFSNP%vY`eIAW{0-7
z;P92T6ArJaAD0#t1n?I5J8c%IG0`vy&A@FmqovhK4TSB#g>H-$CdR~=Xl3YD+asln
zfc2}yps^P&B_#z0Os^ENd3-THKYzG7M3JyNoc&RWfoJkbx;JL&zZQgY;aGltKA8Bb
zsw#kN7s>D7NWLn4rcyV@8!!N-CMIvj@rj9DPqwt}FMv~fAQ{R&w$U+`J+jVp!mc(J
zau*~18}Zyu{4yd53+#~!b9qggI<LbVxi(W1dzW0g7qmGqUtW341p`(6-MeFbn;IUQ
zVbjS!lfjz&E+;0h!~=YMbhE7>94d?Rtt~yOk2870h=ISb9ls6V?UE_v!#K><#6O?C
z8_;PXC=y^h9jMB)C4zYCGLn>(1ni*5%J_J7b8~YmpXKa!gR?k!SldTDQO`XiPtTgd
zLK{$vprWFNG6)Md?xBP(`me%m5T7F=M%P`%GWUSv8vypdQ(h&wW~jB9f0EAjLk;<M
z&)+VFf^#iEX6LSCCO!bO=jUKF1nd^rtNhMC-dwsPK68Lm4(SM6J46*af(*#;Cy3a~
z)6E->XUZ&m{@DQbn7`yu_9TaVG9mj>6P2aF?eKBPj>B>44UGxeNrxvIfjIWCq01(E
zL>Qyf(p4@F5qYE}TcQg)z_02|kD$1jD*0R6+u>}6XF2ClV~f`FlX6ZY_it`)RDZk~
zw&c+)(VMKYo4z_ftc_Is#?!OB{WpT|PnmHWNChunz8nR#pQ9|v?O6D)HYr)G=2BUD
zSFM0drTHa9m6zjC=5Di%<y?*bJ~(Z47rQBiw-2q@_22NW$3_=VpA_qs2B{=98($wD
z(n5=Lc^qz-Y?4GhjL{L6HMoZ@t)}2G2%`WFgpRXgljm@*QErush2V10R~lel0g-Bh
z>~chZk>wfjD!)AJ;lqalsR}tNAV>@j4Mo{F3}<!Jx~x{}0B|cDaO3Of=r|ndXlrM;
zJKK1PdAzsP(Z6v&S1}#bAmA*_=g*(Hk|Jzur>nMC`Vw7ST-*foO-vR;a40@aONW!N
zmVj`z@GBUM1UdP6sl9XJztSRclbG|=sME*~5yksNqExN&l@8RtOH-U}T;g-Pnx1ug
zateS3zSZMb(_{Cz5jL}A5dtxqjB0LpE@gkWiF)Joa?!#b$7CY=aMto*80Szo?WGe9
zf!{$7J-~@f$i$>|v<J9IkT~gL;SO^mJUnqWp#45DSbGY;OK6_g;ose+OE%ShPjLW*
z5yiS)9R0w1KCtUBY?anX47J+>1qz6F0MmPWdPb0OzSsTXvN{ODF|gj6>gar{uJ-6l
zU=5!}2bE5wWNd8g(&D0t<#Kb~`8B%8*M<h6>>t+@^~cok*EAiIx$0=ok62RpZ#)cr
z%io8Ru;}Q8OyA2RbpBZpD*bGT4M|3ktHwa=TcRRTk<nVu?fzwAp*xG}HIYMtmlqMe
z0?!L<24?R@5wJsy{ep9_@?n2scT<Jy8u|k5=vGbc=%RZ<4=Se>Z#{0WE(n=lhs#v=
zmc}?wIm3eut*ih{^)eHjcm*TOhh>kyH8Wd?{;E`5<}FOX84;$-w=ar6yAwXa#a1Xy
zyHa;;jd4fvIHQpjZfais9jNb-k*UH&4+>CL5-#&@l#N$}iDmAO1tC{u&CXgtIEUxR
zdE#(lXCpTM11fid(*Smkj&e{a0*R!QL!c^Ul7+;}s!5Q`iLeu9T)eV}n6k0q4k|>*
zW{<7Igs6wml*Tx*nTa>P6UM(XS}dezoA8NTcNL&4V0g5ApW_`t*|^4eLJ4Yy3O)u|
zq~!B>SwK+6g<oCyGBY>S<^<j`Y@h23mv7oAX<~ZbN~GgyGO_d>cvqU&mT$fD4c`@c
zbdKX#{eG_`D4av?&h61c383>yjHuinI$GNJ6BOwczrbu%+>E$WGJh|JxvSDp<L>&;
ziyfxWKvHnjHjq$Dmvh#w9kv)litahH@D~4$*Zj|?Zvzw8Dm$TEoS<)j1Wa5z?npz8
t0PXt!=GfB@7x8x*>aA|z>tC&$-gf<{hAgTVB-}MeMnVBrB4+gde*$1d?VA7q

diff --git a/lam/help/help.inc b/lam/help/help.inc
index 0d0957b6..a96d14d9 100644
--- a/lam/help/help.inc
+++ b/lam/help/help.inc
@@ -155,6 +155,8 @@ $helpArray = array (
 					"Text" => _('Please change this setting only if you experience problems in receiving emails from LAM. This defines the line ending of emails.')),
 				"244" => array ("Headline" => _('PHP error reporting'),
 					"Text" => _('Defines if the PHP error reporting setting from php.ini is used or the setting preferred by LAM ("E_ALL & ~E_NOTICE"). If you do not develop LAM modules please use the default. This will prevent displaying messages that are useful only for developers.')),
+				"245" => array ("Headline" => _('Encrypt session'),
+					"Text" => _('Encrypts sensitive data like passwords in your session. This requires the PHP MCrypt extension.')),
 				"250" => array ("Headline" => _("Filter"),
 					"Text" => _("Here you can input simple filter expressions (e.g. 'value' or 'v*'). The filter is case-sensitive.")),
 				"260" => array ("Headline" => _("Additional LDAP filter"),
diff --git a/lam/lib/config.inc b/lam/lib/config.inc
index e84ef2ad..ddcefb0e 100644
--- a/lam/lib/config.inc
+++ b/lam/lib/config.inc
@@ -1400,6 +1400,9 @@ class LAMCfgMain {
 	/** list of hosts which may access LAM */
 	public $allowedHosts;
 	
+	/** session encryption */
+	public $encryptSession;
+	
 	/** minimum length for passwords */
 	public $passwordMinLength = 0;
 	
@@ -1437,7 +1440,8 @@ class LAMCfgMain {
 	private $settings = array("password", "default", "sessionTimeout",
 		"logLevel", "logDestination", "allowedHosts", "passwordMinLength",
 		"passwordMinUpper", "passwordMinLower", "passwordMinNumeric",
-		"passwordMinClasses", "passwordMinSymbol", "mailEOL", 'errorReporting');
+		"passwordMinClasses", "passwordMinSymbol", "mailEOL", 'errorReporting',
+		'encryptSession');
 
 	/**
 	* Loads preferences from config file
@@ -1449,6 +1453,7 @@ class LAMCfgMain {
 		$this->logLevel = LOG_NOTICE;
 		$this->logDestination = "SYSLOG";
 		$this->allowedHosts = "";
+		$this->encryptSession = 'true';
 		$this->reload();
 	}
 
@@ -1516,6 +1521,7 @@ class LAMCfgMain {
 		if (!in_array("logLevel", $saved)) array_push($file_array, "\n\n# log level\n" . "logLevel: " . $this->logLevel);
 		if (!in_array("logDestination", $saved)) array_push($file_array, "\n\n# log destination\n" . "logDestination: " . $this->logDestination);
 		if (!in_array("allowedHosts", $saved)) array_push($file_array, "\n\n# list of hosts which may access LAM\n" . "allowedHosts: " . $this->allowedHosts);
+		if (!in_array("encryptSession", $saved)) array_push($file_array, "\n\n# encrypt session data\n" . "encryptSession: " . $this->encryptSession);
 		if (!in_array("passwordMinLength", $saved)) array_push($file_array, "\n\n# Password: minimum password length\n" . "passwordMinLength: " . $this->passwordMinLength);
 		if (!in_array("passwordMinUpper", $saved)) array_push($file_array, "\n\n# Password: minimum uppercase characters\n" . "passwordMinUpper: " . $this->passwordMinUpper);
 		if (!in_array("passwordMinLower", $saved)) array_push($file_array, "\n\n# Password: minimum lowercase characters\n" . "passwordMinLower: " . $this->passwordMinLower);
diff --git a/lam/templates/config/mainmanage.php b/lam/templates/config/mainmanage.php
index 9441d78b..cf7ae048 100644
--- a/lam/templates/config/mainmanage.php
+++ b/lam/templates/config/mainmanage.php
@@ -104,6 +104,14 @@ if (isset($_POST['submitFormData'])) {
 	}
 	else $allowedHosts = "";
 	$cfg->allowedHosts = $allowedHosts;
+	// set session encryption
+	if (function_exists('mcrypt_create_iv')) {
+		$encryptSession = 'false';
+		if (isset($_POST['encryptSession']) && ($_POST['encryptSession'] == 'on')) {
+			$encryptSession = 'true';
+		}
+		$cfg->encryptSession = $encryptSession;
+	}
 	// set log level
 	$cfg->logLevel = $_POST['logLevel'];
 	// set log destination
@@ -263,6 +271,10 @@ $securityTable = new htmlTable();
 $options = array(5, 10, 20, 30, 60, 90, 120, 240);
 $securityTable->addElement(new htmlTableExtendedSelect('sessionTimeout', $options, array($cfg->sessionTimeout), _("Session timeout"), '238'), true);
 $securityTable->addElement(new htmlTableExtendedInputTextarea('allowedHosts', implode("\n", explode(",", $cfg->allowedHosts)), '30', '7', _("Allowed hosts"), '241'), true);
+$encryptSession = ($cfg->encryptSession === 'true');
+$encryptSessionBox = new htmlTableExtendedInputCheckbox('encryptSession', $encryptSession, _('Encrypt session'), '245');
+$encryptSessionBox->setIsEnabled(function_exists('mcrypt_create_iv'));
+$securityTable->addElement($encryptSessionBox, true);
 // SSL certificate
 $securityTable->addElement(new htmlOutputText(_('SSL certificates')));
 $sslMethod = _('use system certificates');
diff --git a/lam/templates/login.php b/lam/templates/login.php
index 50fa5c4f..7b7b186e 100644
--- a/lam/templates/login.php
+++ b/lam/templates/login.php
@@ -125,14 +125,15 @@ $_SESSION['header'] .= "<meta http-equiv=\"pragma\" content=\"no-cache\">\n		<me
 /**
 * Displays the login window.
 *
-* @param object $config_object current active configuration
+* @param LAMConfig $config_object current active configuration
+* @param LAMCfgMain $cfgMain main configuration
 */
-function display_LoginPage($config_object) {
+function display_LoginPage($config_object, $cfgMain) {
 	logNewMessage(LOG_DEBUG, "Display login page");
 	global $error_message;
 	// generate 256 bit key and initialization vector for user/passwd-encryption
 	// check if we can use /dev/urandom otherwise use rand()
-	if(function_exists('mcrypt_create_iv')) {
+	if(function_exists('mcrypt_create_iv') && ($cfgMain->encryptSession == 'true')) {
 		$key = @mcrypt_create_iv(32, MCRYPT_DEV_URANDOM);
 		if (! $key) {
 			srand((double)microtime()*1234567);
@@ -651,5 +652,5 @@ if(!empty($_POST['checklogin'])) {
 }
 
 //displays the login window
-display_LoginPage($_SESSION["config"]);
+display_LoginPage($_SESSION["config"], $_SESSION["cfgMain"]);
 ?>