[pmwiki-users] Backdoor Admin-Password in WikiFarm

Martin Kerz mkerz at me.com
Thu Jul 9 10:29:29 CDT 2009


Dear Petko,

that was exactly what I was looking for. Thanks a million.

Martin

Am 09.07.2009 um 16:22 schrieb Petko Yotov:

> On Thursday 09 July 2009 12:25:44 Martin Kerz wrote:
>> is it possible to define an admin password in the farmconfig of a
>> WikiFarm, and let local wikis add another admin passwort in their
>> respective config.php. The idea is, that I can create some kind of a
>> backdoor to get access to all the local wikis in my farm.
>
> I wouldn't call it a backdoor, just a farm-admin-password.
>
> In farmconfig.php, you set the global password :
>  $DefaultPasswords['admin'] = array(crypt('farm-password'));
>
> In a field's config.php :
>  $DefaultPasswords['admin'][] = crypt('field-password');
>  $DefaultPasswords['admin'][] = crypt('another-field-password');
>
> Note the [] extra brackets in config.php, and no array().
>
> Thanks,
> Petko

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2428 bytes
Desc: not available
Url : http://www.pmichaud.com/pipermail/pmwiki-users/attachments/20090709/03c2f94f/attachment.bin 


More information about the pmwiki-users mailing list