[Pmwiki-users] Re: Password never accepted

Michael Harris michaelharris
Sat Dec 18 08:57:06 CST 2004 

Apologies, but I need to ask a followup.

Where would I find (or where should I create) the local.php that I would add 
the dummy crypt function to...... in the server's PHP stuff..... or within 
the PmWiki directory?  And will it likely require a restart of PHP and/or 
Apache?

FYI, I confirmed from browsing Novell forums that the absence of the crypt 
function from their implementation is deliberate (security sited as reason) 
and a long standing frustration for some.  I gather that there may be a 
third party who is providing alternate PHP (v 4 and 5?) implementations for 
use on Netware.... but using them is not an option for me.

Thank you very much.  I'm looking forward to rolling this out.

----- Original Message ----- 
From: "Patrick R. Michaud" <pmichaud at pobox.com>
To: "Michael Harris" <michaelharris at insightbb.com>
Cc: "Pmwiki-users" <Pmwiki-users at pmichaud.com>
Sent: Saturday, December 18, 2004 9:13 AM
Subject: Re: [Pmwiki-users] Re: Password never accepted


> On Fri, Dec 17, 2004 at 10:02:46PM -0600, Michael Harris wrote:
>> Howdy,
>>
>> Hmmm.... problem is that crypt doesn't appear to be supported on my 
>> server
>> (Novell Netware 6.5 with Novell's port of Apache and PHP), so I've had to
>> remove or comment out references to it in pmwiki.php and config.php. 
>> This
>> is a single server, single PmWiki situation.
>>
>> I wouldn't be suprised but what my removal/commenting out of crypt usage 
>> is
>> incomplete and incorrect.  I'll have to study the code.  But as far as I
>> know, use of crypt, in any way, is not an option in my situation.
>
> If crypt doesn't appear at all in your PHP implementation, then instead
> of removing/commenting out the crypt usage, just add your own "dummy"
> crypt function in local.php:
>
>  function crypt($str, $salt) { return bin2hex($str); }
>
> Passwords will work again, although they'll just be encoded and not
> "encrypted" (i.e., someone looking at the encoded string could deduce
> the original password -- but this is not normally a problem anyway).
>
> Pm

More information about the pmwiki-users mailing list