phpMyAdmin

Support Requests item #1853338, was opened at 2007-12-18 18:52
Message generated for change (Comment added) made by nijel
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1853338&group_id=23067

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: None
Group: None
Status: Open
Priority: 5
Private: No
Submitted By: Ted Richards (tedrichards)
Assigned to: Nobody/Anonymous (nobody)
Summary: Can't login after failed login

Initial Comment:
Reproduction Steps:
    1. Log in to phpMyAdmin successfully
    2. Log out
    3. Try to log in with an incorrect password (or none)
    4. Try again with a valid user and password

The last login will fail, as will all subsequent attempts. The error is #1045 - Access denied for user: 'XXX@...' (Using password: ...

If you try it with no password in step three, the error message will always say "Using password: NO", even if you enter one in subsequent attempts.

Deleting the phpMyAdmin cookie in the browser corrects the problem, as does closing and reopening the browser.

If you omit steps 1 and 2, it will work OK.

This did not happen in 2.9.2.

Versions:
    phpMyAdmin:              2.11.2.1 and 2.11.3
    PHP:                     4.4.7
    MySQL:                   3.23.47
    Browser:                 Firefox 2.0.0.11
    Authentification Method: cookie

----------------------------------------------------------------------

Comment By: Michal Čihař (nijel)
Date: 2008-11-28 12:13

Message:
Does this still happens with current version?

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-19 22:52

Message:
Logged In: YES 
user_id=1962722
Originator: YES

OK. Here's a cut-and-paste from "View page source", after step 3 and after
step 4. The steps taken were the same as before.
File Added: bad.php.html2.tgz

----------------------------------------------------------------------

Comment By: Sebastian Mendel (cybot_tm)
Date: 2007-12-19 21:55

Message:
Logged In: YES 
user_id=326580
Originator: NO

thanks for your effort - but it seems, when hitting save page, the browser
loads the page again from the webserver

please ttry again, this time with mouse context menu 'VIEW SOURCE' copy
and paste all

according to phpinfo() output their is missing the login form submitted
data:

_REQUEST["lang"]	en-iso-8859-1	
_REQUEST["token"]	a67834da2ddc2a26c206d33bc1451ea1	
_REQUEST["pma_lang"]	en-iso-8859-1	
_REQUEST["pmaCookieVer"]	4	
_REQUEST["pmaUser-1"]	Z+6ygAoNb/4=	
_REQUEST["pma_charset"]	iso-8859-1	
_REQUEST["phpMyAdmin"]	20039efd718ea6bac3e3c185e76d1021	
_REQUEST["pma_fontsize"]	82%	
_REQUEST["pmaPass-1"]	nVaJ8I7Xrlw=	
_REQUEST["db"]	no value	
_REQUEST["table"]	no value	
_REQUEST["sql_query"]	no value	
_REQUEST["js_frame"]	no value

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-19 19:49

Message:
Logged In: YES 
user_id=1962722
Originator: YES

I called the functions you suggested at the beginning of PMA_auth, except
that debug_print_backtrace() is only available in PHP 5, so I used
var_dump(debug_backtrace()) instead.

I saved the resulting page and attached a gzip'd version of it.

What I did was:
1. Log in as papa (password "papa")
2. Log out
3. Try to log in as papa with password "papa1" - it failed.
4. Try to log in as mama with password "mama", which is valid - it
failed.
5. Did a File->Save As

Regarding the blank entry, I did the following:
1. Log in as papa (password "papa")
2. Log out
3. Try to log in as papa with password "papa1" - it failed.
4. Try to log in as mama with password "mama", which is valid - it
failed.
5. Log in with a blank username and password - it succeeded and logged me
in as mama!

Sometimes doing that will just clear the error and redisplay the blank
login form. I can't figure out a pattern to which it does.
File Added: bad.php.html.tgz

----------------------------------------------------------------------

Comment By: Sebastian Mendel (cybot_tm)
Date: 2007-12-19 17:23

Message:
Logged In: YES 
user_id=326580
Originator: NO

so it seems to be a session problem - deleting "phpMyAdmin" results in
starting a completely new session

it would be nice if you could submit the whole output of phpinfo(),
var_dump($GLOBALS) and debug_print_backtrace() called from PMA_auth() in
libraries/auth/cookie.auth.lib.php inside step 4 (4. Try again with a valid
user and password)

info_sebastianmendel_de

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-19 16:00

Message:
Logged In: YES 
user_id=1962722
Originator: YES

All versions were built from source. I have specified the authentification
method as 'cookie' and supplied a Blowfish secret.

The cookie I am talking about deleting is literally "phpMyAdmin", which is
the [default] session name. As far as I can tell, deleting the pmaPass-1
and pmaUser-1 cookies make no difference. The only thing that matters is
deleting the phpMyAdmin cookie.

I have also seen strange results if I resubmit the form with a blank user
and password. Sometimes it fixes things so that I can then log in with a
valid user and password. Sometimes it actually logs me in as the previous
valid user even though the user and password were blank.

----------------------------------------------------------------------

Comment By: Marc Delisle (lem9)
Date: 2007-12-19 14:46

Message:
Logged In: YES 
user_id=210714
Originator: NO

Moved to support.

----------------------------------------------------------------------

Comment By: Sebastian Mendel (cybot_tm)
Date: 2007-12-19 08:38

Message:
Logged In: YES 
user_id=326580
Originator: NO

how did you upgraded your phpMyAdmin installation?
what cookies (their exact names) you are deleting?

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-18 20:46

Message:
Logged In: YES 
user_id=1962722
Originator: YES

The SAPI is CGI/FastCGI.

----------------------------------------------------------------------

Comment By: Marc Delisle (lem9)
Date: 2007-12-18 20:14

Message:
Logged In: YES 
user_id=210714
Originator: NO

SAPI = Server API; this is visible from "show PHP information" on the main
phpMyAdmin page, or if you execute this script:
<?php phpinfo(); ?>

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-18 20:02

Message:
Logged In: YES 
user_id=1962722
Originator: YES

By the way, the error message alsways shows the user and password state
(YES/NO) from the original error, not the ones most recently entered. That
would seem to indicate that it is getting them from the cookies (or
something), and ignoring the form data.

----------------------------------------------------------------------

Comment By: Ted Richards (tedrichards)
Date: 2007-12-18 19:56

Message:
Logged In: YES 
user_id=1962722
Originator: YES

The web server is Apache 1.3.29 (this is on Linux). How do I tell what the
SAPI is?

----------------------------------------------------------------------

Comment By: Marc Delisle (lem9)
Date: 2007-12-18 19:17

Message:
Logged In: YES 
user_id=210714
Originator: NO

Cannot reproduce (but I don't have MySQL 3.23.47 near me to test). Which
web server and SAPI are you using?

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1853338&group_id=23067

Support Requests item #1825203, was opened at 2007-11-03 16:37
Message generated for change (Settings changed) made by nijel
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1825203&group_id=23067

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Documentation / How-To
Group: None
>Status: Pending
Priority: 5
Private: No
Submitted By: svanslyck (svanslyck)
Assigned to: Nobody/Anonymous (nobody)
Summary: More specific upgrading instructions desired

Initial Comment:
The text at 

http://localhost/phpmyadmin/Documentation.html#upgrading

currently says

" Simply copy ./config.inc.php from your previous installation into the newly unpacked one...."

I am really not quite sure what to do. I don't wish to create a "new" installation but to upgrade my current installation.  I *think* what these instructions say is to:

First, Unzip/Unpack the installation file into a temporary location, e.g., C:\PHP\).

Second, Replace the ./config.inc.php file in the unpacked directory (e.g., C:\PHP\) with your current ./config.inc.php file.

Third, Copy all of the files in the temporary location, e.g., C:\PHP\) into your current php directory (e.g. C:\phpMyAdmin\)

Is this accurate and complete?

----------------------------------------------------------------------

Comment By: Marc Delisle (lem9)
Date: 2007-12-03 19:16

Message:
Logged In: YES 
user_id=210714
Originator: NO

On Linux/UNIX we generally use symlinks to have a "generic" name like
phpmyadmin that points to some directory. Therefore we can install many
versions, test them, and point to the one we want for our users.

On Windows, a sysadmin would want to test the new version, this is why a
copy over the old directory is not a good idea (I also agree with
windkiel's idea that there would be older files left).

----------------------------------------------------------------------

Comment By: Jürgen Wind (windkiel)
Date: 2007-11-03 18:45

Message:
Logged In: YES 
user_id=1383652
Originator: NO

>Second, Replace the ./config.inc.php file in the unpacked directory 
>(e.g., C:\PHP\) with your current ./config.inc.php file.
Say "Copy your current ...." because there is no ./config.inc.php in the
distributed packages.

>Is this accurate and complete?
There might be files in the old folder that are not needed any longer.
Better delete the content of your old folder before moving the new files.

You also have to empty all your browser caches to force a reload of the
.js files.

----------------------------------------------------------------------

Comment By: svanslyck (svanslyck)
Date: 2007-11-03 17:08

Message:
Logged In: YES 
user_id=1928688
Originator: YES

See http://wiki.cihar.com/pma/Upgrading#Specific_Steps_-_Windows_Example .
If you disagree with what I wrote there, please fix it. If you agree with
what I wrote there, please consider incorporating my text into official
documentation and README's. Thank you kindly.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1825203&group_id=23067

Support Requests item #1761474, was opened at 2007-07-26 20:54
Message generated for change (Comment added) made by nijel
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1761474&group_id=23067

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Data insertion/extraction/manipulation
Group: None
Status: Open
Priority: 5
Private: No
Submitted By: Micah Anderson (zygut)
Assigned to: Nobody/Anonymous (nobody)
Summary: import encoding problems

Initial Comment:
i'm having trouble importing an export for mysql4 into mysql5, I'm using export/import functions in phpmyadmin, when I import I get a few errors that I can't seem to sort out.

first of all, at the top of the page, I get three of these: Warning: mb_strpos() [function.mb-strpos]: Unknown encoding or conversion
error. in /usr/share/phpmyadmin/libraries/string.lib.php on line 112

second, I get a mysql error that says '#1062 - Duplicate entry 'sp' for key 1' which probably happens from the encoding conversion

it allows me to click "Browse" for the error, but the browse tries to select from a table that doesn't exist

I'm using a stock debian etch's libapache-mod-php5, php5-cli, php5-common, php5-gd, php5-mysql, on a freshly installed machine. I tried the latest phpmyadmin (2.10.3),k but got the same errors.

When I do the import I select UTF8 and mysql compatability mode MYSQL40. If I choose latin1 the import goes fine, but then the character encodings are messed up on the site (for example smart quotes).

The phpmyadmin import process doesn't tell me what lines they are in the dump, if I knew what they were I'd inspect those lines and perhaps correct them.

I cant seem to reliably move a mysql40 database to mysql50 and preserve the character encoding, everything I've tried fails.


----------------------------------------------------------------------

Comment By: Michal Čihař (nijel)
Date: 2008-11-28 12:05

Message:
Does this still happen with current phpMyAdmin version?

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=1761474&group_id=23067

Support Requests item #2141147, was opened at 2008-10-01 23:26
Message generated for change (Comment added) made by nijel
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=2141147&group_id=23067

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Installation issues
Group: None
Status: Open
Priority: 5
Private: No
Submitted By: Ky Hote (kyhotenow)
Assigned to: Nobody/Anonymous (nobody)
Summary: default login and password unknown

Initial Comment:
I installed phpadmin in cookie authentication mode. When I got the the login page, I was asked for the username and password, which I hadn't set up, so I didn't know what to put there and couldn't go any further... can you help?

----------------------------------------------------------------------

Comment By: Michal Čihař (nijel)
Date: 2008-11-28 12:02

Message:
Previous reply says it all.

----------------------------------------------------------------------

Comment By: Isaac Bennetch (ibennetch)
Date: 2008-10-07 22:05

Message:
There's not a specific "phpMyAdmin" password; it's the _MySQL_ account,
which by default is username "root" with no password unless you set
something different when installing MySQL. If you've forgotten it, you can
reset it as described here: http://wiki.cihar.com/pma/FAQ_1.12

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=2141147&group_id=23067

Support Requests item #2109622, was opened at 2008-09-14 01:10
Message generated for change (Comment added) made by sf-robot
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=2109622&group_id=23067

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Installation issues
Group: None
>Status: Closed
Priority: 5
Private: No
Submitted By: Daniel Norton (danorton)
Assigned to: Nobody/Anonymous (nobody)
Summary: Can't setup.php 3.00-rc1

Initial Comment:
I load up https://myhost/phpmyadmin/scripts/setup.php in my browser and none of the buttons do anything except create the config.inc.php file. After the file is created nothing else has any apparent effect, and doesn't change the mod time on config.inc.php. If I remove config.inc.php, pushing a button re-creates it. 
 
https://myhost/phpmyadmin comes up as expected, but of course complains that it can't access the database and offers a link to the setup script. 
 
All files are owner:group as apache:apache . chmod 777 doesn't help. 
 
OS: 2.6.18-53.1.6.el5.028stab053.6 #1 SMP Mon Feb 11 20:14:31 MSK 2008 i686 Intel(R) Xeon(R) CPU L5320 @ 1.86GHz GenuineIntel GNU/Linux 
 
Apache/2.2.9 
php 5.2.6 (phpinfo() works fine, other php apps work fine) 
mysql Ver 14.12 Distrib 5.0.60 (but this is not relevant, yet) 

----------------------------------------------------------------------

>Comment By: SourceForge Robot (sf-robot)
Date: 2008-11-07 02:20

Message:
This Tracker item was closed automatically by the system. It was
previously set to a Pending status, and the original submitter
did not respond within 14 days (the time period specified by
the administrator of this Tracker).

----------------------------------------------------------------------

Comment By: Jrgen Wind (windkiel)
Date: 2008-10-24 00:44

Message:
seems that your session.save_path in php.ini points to a wrong place 
or 
session.cookie_secure is On
see 
https://sourceforge.net/tracker2/?func=detail&aid=2186823&group_id=23067&atid=377408

and
http://wiki.cihar.com/pma/Requirements
_____

if you try pma 2.11 you might get: "Cannot start session without errors,
please check errors given in your PHP and/or webserver log file and
configure your PHP installation properly."

independent session.save_path test script:
http://wiki.cihar.com/pma/session.save_path

HTH


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=377409&aid=2109622&group_id=23067