[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-cvs] phpgwapi/inc/class.setup.inc.php, 1.15.2.17
|
From: |
nomail |
|
Subject: |
[Phpgroupware-cvs] phpgwapi/inc/class.setup.inc.php, 1.15.2.17 |
|
Date: |
Tue, 27 Jul 2004 12:32:23 +0200 |
Update of /phpgwapi/inc
Modified Files:
Branch: Version-0_9_16-branch
class.setup.inc.php
date: 2004/07/27 10:32:23; author: skwashd; state: Exp; lines: +13 -13
Log Message:
security fix
=====================================================================
Index: phpgwapi/inc/class.setup.inc.php
diff -u phpgwapi/inc/class.setup.inc.php:1.15.2.16
phpgwapi/inc/class.setup.inc.php:1.15.2.17
--- phpgwapi/inc/class.setup.inc.php:1.15.2.16 Fri May 21 03:07:58 2004
+++ phpgwapi/inc/class.setup.inc.php Tue Jul 27 10:32:23 2004
@@ -109,8 +109,8 @@
/* header admin login */
if($FormPW ==
stripslashes($GLOBALS['phpgw_info']['server']['header_admin_password']))
{
-
setcookie('HeaderPW',"$FormPW","$expire");
-
setcookie('ConfigLang',"$ConfigLang","$expire");
+
setcookie('HeaderPW',md5($FormPW),$expire);
+
setcookie('ConfigLang',$ConfigLang,$expire);
return True;
}
else
@@ -125,9 +125,9 @@
/* config login */
if($FormPW ==
stripslashes(@$GLOBALS['phpgw_domain'][$FormDomain]['config_passwd']))
{
-
setcookie('ConfigPW',"$FormPW","$expire");
-
setcookie('ConfigDomain',"$FormDomain","$expire");
-
setcookie('ConfigLang',"$ConfigLang","$expire");
+ setcookie('ConfigPW', md5($FormPW),
$expire);
+ setcookie('ConfigDomain', $FormDomain,
$expire);
+ setcookie('ConfigLang', $ConfigLang,
$expire);
return True;
}
else
@@ -166,11 +166,11 @@
elseif(!empty($ConfigPW) && $auth_type == 'Config')
{
/* Returning after login to config */
- if($ConfigPW ==
stripslashes($GLOBALS['phpgw_domain'][$ConfigDomain]['config_passwd']))
+ if($ConfigPW ==
md5(stripslashes($GLOBALS['phpgw_domain'][$ConfigDomain]['config_passwd'])))
{
-
setcookie('ConfigPW',"$ConfigPW","$expire");
-
setcookie('ConfigDomain',"$ConfigDomain","$expire");
-
setcookie('ConfigLang',"$ConfigLang","$expire");
+ setcookie('ConfigPW', $ConfigPW,
$expire);
+ setcookie('ConfigDomain',
$ConfigDomain, $expire);
+ setcookie('ConfigLang', $ConfigLang,
$expire);
return True;
}
else
@@ -183,10 +183,10 @@
elseif(!empty($HeaderPW) && $auth_type == 'Header')
{
/* Returning after login to header admin */
- if($HeaderPW ==
stripslashes($GLOBALS['phpgw_info']['server']['header_admin_password']))
+ if($HeaderPW ==
md5(stripslashes($GLOBALS['phpgw_info']['server']['header_admin_password'])))
{
-
setcookie('HeaderPW',"$HeaderPW","$expire");
-
setcookie('ConfigLang',"$ConfigLang","$expire");
+ setcookie('HeaderPW', $HeaderPW ,
$expire);
+ setcookie('ConfigLang', $ConfigLang,
$expire);
return True;
}
else
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Phpgroupware-cvs] phpgwapi/inc/class.setup.inc.php, 1.15.2.17,
nomail <=