kienan
/
AlternC
mirror of https://github.com/kienanstewart/AlternC.git
1
0
Fork 0
Code Issues Releases Wiki Activity

Permettre les mots de passe vide pour les comptes FTP 

* closed #1284
 * CRYPT de mysql ne gere pas la chaine vide, on passe par la fonction PHP
  * microtime car autrement il utilse le sel le plus fort et ne gere pas pas un pass DESS et donc un crypt de 34 caractères
  * strrev car seul les 2 premiers caractéres du sel sont pris en compte , donc pour choper les microseconde
This commit is contained in:
Camille Lafitte 2011-11-29 10:32:22 +00:00
parent 33c89722da
commit ca6311c3d3
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
bureau/class/m_ftp.php
View File

@ -204,8 +204,8 @@ class m_ftp {
return false; // The error has been raised by checkPolicy()
}
}
$db->query("UPDATE ftpusers SET name='".$prefixe.$login."', password='', encrypted_password=ENCRYPT('$pass'), homedir='/var/alternc/html/$l/$lo/$dir', uid='$cuid' WHERE id='$id';");
$encrypted_password = crypt($pass,strrev(microtime(true)));
$db->query("UPDATE ftpusers SET name='".$prefixe.$login."', password='', encrypted_password='$encrypted_password', homedir='/var/alternc/html/$l/$lo/$dir', uid='$cuid' WHERE id='$id';");
} else {
$db->query("UPDATE ftpusers SET name='".$prefixe.$login."', homedir='/var/alternc/html/$l/$lo/$dir', uid='$cuid' WHERE id='$id';");
}
@ -281,7 +281,8 @@ class m_ftp {
}
if ($quota->cancreate("ftp")) {
$db->query("INSERT INTO ftpusers (name,password, encrypted_password,homedir,uid) VALUES ('".$prefixe.$login."', '', ENCRYPT('$pass'), '/var/alternc/html/$l/$lo/$dir', '$cuid')");
$encrypted_password = crypt($pass,strrev(microtime(true)));
$db->query("INSERT INTO ftpusers (name,password, encrypted_password,homedir,uid) VALUES ('".$prefixe.$login."', '', '$encrypted_password', '/var/alternc/html/$l/$lo/$dir', '$cuid')");
return true;
} else {
$err->raise("ftp",5);