wilde: server/kolab-webadmin/kolab-webadmin/www/admin/administrator admin.php.in, 1.2, 1.3
cvs at kolab.org
cvs at kolab.org
Wed Jan 10 17:00:00 CET 2007
Author: wilde
Update of /kolabrepository/server/kolab-webadmin/kolab-webadmin/www/admin/administrator
In directory doto:/tmp/cvs-serv5426/kolab-webadmin/kolab-webadmin/www/admin/administrator
Modified Files:
admin.php.in
Log Message:
Create SSHA (instead of plain SHA1) password hashes. (fixes kolab/issue1013)
Index: admin.php.in
===================================================================
RCS file: /kolabrepository/server/kolab-webadmin/kolab-webadmin/www/admin/administrator/admin.php.in,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -d -r1.2 -r1.3
--- admin.php.in 9 Mar 2006 21:27:22 -0000 1.2
+++ admin.php.in 10 Jan 2007 15:59:58 -0000 1.3
@@ -23,6 +23,7 @@
require_once('@kolab_php_module_prefix at admin/include/locale.php');
require_once('@kolab_php_module_prefix at admin/include/authenticate.php');
require_once('@kolab_php_module_prefix at admin/include/form.class.php');
+require_once('@kolab_php_module_prefix at admin/include/passwd.php');
/**** Functions ***/
function comment( $s ) {
@@ -205,8 +206,7 @@
$ldap_object['sn'] = trim($_POST['lastname']);
$ldap_object['cn'] = trim($_POST['firstname']).' '.$ldap_object['sn'];
if( !empty( $_POST['password_0'] ) ) {
- $ldap_object['userPassword'] = '{sha}'.base64_encode( pack('H*',
- sha1( $_POST['password_0'])));
+ $ldap_object['userPassword'] = ssha( $_POST['password_0'], gensalt());
}
if( $action == 'firstsave' ) $ldap_object['uid'] = trim( strtolower( $_POST['uid'] ) );
More information about the commits
mailing list