Show
Ignore:
Timestamp:
09/03/05 22:42:52 (7 years ago)
Author:
alexx
Message:
  • Auth: Remove MySQL PASSWORD hashing method to hash password, replace by MD5 hashing, add code to make a smooth transition between hashing method
  • XML engine: Fix a trivial recent bug in dotnode-xml.php
  • Robots: fix a bug in crontab script robots/launch_robots.sh (add cd dirname $0)
  • CSS: Add max_width to image in blog (work on Mozilla/*, Opera but not good on Safari (no proportional resizing), of course, that doesn't work on IE)
  • DB: changing DB structure !!! 
    ALTER TABLE `user` ADD `passwd_md5` CHAR( 32 ) NOT NULL AFTER `passwd` ;
ALTER TABLE `user` CHANGE `passwd` `passwd` VARCHAR( 42 ) NULL ;
ALTER TABLE `dntp_translator` ADD `passwd_md5` CHAR( 32 ) NOT NULL AFTER `passwd` ;
ALTER TABLE `dntp_translator` CHANGE `passwd` `passwd` VARCHAR( 42 ) NULL ;
Files:
1 modified

Legend:

Unmodified
Added
Removed

  • trunk/dotnode-dotpage.php

    r19 r33  
    7575                if (!isset($_SERVER['PHP_AUTH_USER']) || 
    7676                    $_SERVER['PHP_AUTH_USER'] != $user['info']['login'] || 
    77                     !$db->getRow('SELECT login, status FROM user WHERE login=? AND passwd=PASSWORD(?)',array($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) ) 
     77                    !$db->getRow('SELECT login, status FROM user WHERE login=? AND passwd_md5=?',array($_SERVER['PHP_AUTH_USER'], md5($_SERVER['PHP_AUTH_PW'])) ) 
    7878                ) 
    7979                {