Welcome to Geeklog, Anonymous Sunday, December 22 2024 @ 06:39 pm EST

News

External links In Blocks?

  • Tuesday, May 07 2002 @ 05:03 pm EDT
  • Contributed by: Anonymous
  • Views: 5,120
Announcements hey guys

is there any way to add links to external sites in the a block?

if not possible how can I add one to the menu under the date?

thanks for any help.
if you want to email me instructions my email is thelastd@rcn.com

Checking *Admin account passwords

  • Saturday, May 04 2002 @ 04:33 pm EDT
  • Contributed by: Anonymous
  • Views: 5,783
Security

For those who may not realize it, there are several Admin accounts that have default passwords (StoryAdmin, etc), and only the main "Admin" account is checked in the getBent() PHP block. By default, all *Admin accounts have the "password" password, and an intelligent person could figure that out, and exploit your system.

If you would like to see if you are vulnerable to this sort of attack, run this query in mySQL, or add it to getBent() like I did:

select count(*) as count from gl_users where username like '%Admin' and passwd=md5('password')

That will tell you if any of your *Admin accounts are vulnerable. Notice the slight differences from the query in getBent():

select count(*) as count from users where username='Admin' and passwd='" . md5('password') . "'

Page navigation