From: Keith M. <kei...@us...> - 2008-01-02 18:08:51
|
On Wed, 2008-01-02 at 16:16 +0000, Dave Korn wrote: > On 02 January 2008 16:04, Roger Pack wrote: > > > lib/WikiDB/backend/PearDB.php:778: Fatal[256]: wikidb_backend_mysql: > > fatal database error > > > > DB Error: no such field > > (SELECT password FROM user where userid='rogerdpack' [nativecode=1054 > > ** Unknown column 'password' in 'field list']) > > > > thoughts? > > I think the admins better take an *urgent* look; the database may have been > corrupted or just gone offline, but this could also be your first warning that > someone's found an SQL injection somewhere and is currently busy pwning your > website. Nope. This is the thoroughly uninformative[1], utterly asinine error message you see, when you neglect to RTFM, and attempt to log in with an improperly formed user name: http://www.mingw.org/MinGWiki/index.php/MinGWiki%20Pages Hint: `rogerdpack' is not a valid WikiWiki word, and is therefore not acceptable as a user name; I guess Roger has forgotten what he had to do, the last time he encountered this exact same issue. Regards, Keith. [1] I wasn't involved in setting up MinGWiki, and I don't have a clue where to even begin to change it, otherwise I would do something about making this stupid message rather more intelligible. |