When entering special characters into the "Allowed Random Characters" text field ' and " make the config file fail. addslashes($str) might help.
Thanks for the info. Instead of adding slashes I think it makes more sense to deny ' and " altogether in random chars for password.
Diff to apply the patch: Index: config-user.php =================================================================== --- config-user.php (revision 2111) +++ config-user.php (working copy) @@ -34,8 +34,11 @@
if (isset($_REQUEST['submit'])) {
}
// this should probably move to some other page at some point if (isset($_REQUEST['config_db_pass_encrypt']))
@@ -96,7 +99,7 @@
<li class='fieldset'> <label for='config_user_allowedrandomchars' class='form'><?php echo $l['all']['RandomChars'] ?></label>
Anonymous
You seem to have CSS turned off. Please don't fill out this field.
Thanks for the info.
Instead of adding slashes I think it makes more sense to deny ' and " altogether in random chars for password.
Diff to apply the patch:
Index: config-user.php
===================================================================
--- config-user.php (revision 2111)
+++ config-user.php (working copy)
@@ -34,8 +34,11 @@
}
@@ -96,7 +99,7 @@