| passwords [message #1062] |
Mon, 20 August 2007 15:11  |
interop
Messages: 45
Registered: October 2006
|
Member |
|
|
I'm having a couple problems but related to the same thing.
1. The interface allows you to include the characters deemed invalid by encryption_class (', ", \) when you change your password.
2. I changed a test user's password to testtest\ and testtest' but then couldn't log in due to the sql error produced by: user_password='testtest\' and user_password='testtest''
3. If you change Encrypt Passwords from no to yes in the menu control, the post update record fails when it encounters a password with one of the invalid characters (', ", \) but doesn't return the error to the screen. All passwords processed before the password with the invalid character are encrypted and the rest are not.
version 1.27.0, php5, mysql5
[Updated on: Mon, 20 August 2007 15:32] Report message to a moderator |
|
|
|
Radicore Forum
Search
Help
Members
Register
Login
Home
