Radicore Forum: Bug Reports » login fails after upgrade to ver 1.42

Home » RADICORE development » Bug Reports » login fails after upgrade to ver 1.42 (if passwords stored as plain text (workround details outlined))

Show: Today's Messages :: Polls :: Message Navigator
E-mail to friend

Re: login fails after upgrade to ver 1.42 [message #1928 is a reply to message #1927]

Mon, 29 December 2008 06:22

AJM
Messages: 2355
Registered: April 2006
Location: Surrey, UK

Senior Member

There was no file in the 1.42 upgrade which reset the value of PSWD_ENCRYPT in the MNU_CONTROL table. You may have reloaded the whole of 'radicore\menu\sql\mysql\menu-data.sql', but this would be a mistake as this is only supposed to be used for new installations, not upgrades.

You could have solved this problem with a single SQL update by changing the value of PSWD_ENCRYPT instead of going through each user one at a time.

It is generally considered bad practice to store plain text passwords in your database, so what is your reason for doing so? This is far more of a security weakness than exposing encrypted passwords when logging sql queries.

Tony Marston
http://www.tonymarston.net
http://www.radicore.org

Report message to a moderator

[Message index]

		login fails after upgrade to ver 1.42 By: David Lee on Sun, 28 December 2008 16:25
		Re: login fails after upgrade to ver 1.42 By: AJM on Mon, 29 December 2008 06:22
		Re: login fails after upgrade to ver 1.42 By: David Lee on Mon, 29 December 2008 15:56
		Re: login fails after upgrade to ver 1.42 By: AJM on Tue, 30 December 2008 05:08

Previous Topic:	Problem extending sql_from
Next Topic:	Problem in implementing FAQ 81

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Mon Aug 05 09:21:47 EDT 2024

Total time taken to generate the page: 0.00861 seconds