Cookie and password change undefined offset in blowfish.php
This commit is contained in:
Marc Delisle
@@ -7,6 +7,7 @@ $Source$
|
|||||||
|
|
||||||
2004-04-21 Marc Delisle <lem9@users.sourceforge.net>
|
2004-04-21 Marc Delisle <lem9@users.sourceforge.net>
|
||||||
### 2.6.0-alpha1 released
|
### 2.6.0-alpha1 released
|
||||||
|
* (after the release) user_password.php: undefined offset in blowfish.php
|
||||||
|
|
||||||
2004-04-20 Alexander M. Turek <me@derrabus.de>
|
2004-04-20 Alexander M. Turek <me@derrabus.de>
|
||||||
* Documentation.html, README:
|
* Documentation.html, README:
|
||||||
|
|||||||
@@ -53,8 +53,16 @@ if (isset($nopass)) {
|
|||||||
$result = @PMA_DBI_try_query($local_query) or PMA_mysqlDie(PMA_DBI_getError(), $sql_query, FALSE, $err_url);
|
$result = @PMA_DBI_try_query($local_query) or PMA_mysqlDie(PMA_DBI_getError(), $sql_query, FALSE, $err_url);
|
||||||
|
|
||||||
// Changes password cookie if required
|
// Changes password cookie if required
|
||||||
|
// Duration = till the browser is closed for password (we don't want this to be saved)
|
||||||
if ($cfg['Server']['auth_type'] == 'cookie') {
|
if ($cfg['Server']['auth_type'] == 'cookie') {
|
||||||
setcookie('pma_cookie_password', base64_encode(PMA_blowfish_encrypt($pma_pw,$GLOBALS['cfg']['blowfish_secret'])), 0, $cookie_path, '', $is_https);
|
|
||||||
|
setcookie('pma_cookie_password',
|
||||||
|
PMA_blowfish_encrypt($pma_pw,
|
||||||
|
$GLOBALS['cfg']['blowfish_secret'] . $GLOBALS['current_time']),
|
||||||
|
0,
|
||||||
|
$GLOBALS['cookie_path'], '',
|
||||||
|
$GLOBALS['is_https']);
|
||||||
|
|
||||||
} // end if
|
} // end if
|
||||||
// For http auth. mode, the "back" link will also enforce new
|
// For http auth. mode, the "back" link will also enforce new
|
||||||
// authentication
|
// authentication
|
||||||
|
|||||||
Reference in New Issue
Block a user