[pmwiki-users] Password change help

Donald Z. Osborn dzosborn at gmail.com
Sat Sep 8 07:28:46 CDT 2012


Thanks, Peter, this is very helpful. Don

On Fri, Sep 7, 2012 at 2:28 AM, Peter Bowers <pbowers at pobox.com> wrote:
> On Sat, Jul 21, 2012 at 2:57 AM, Donald Z. Osborn <dzosborn at gmail.com> wrote:
>> A couple of quick questions about passwords. It's been a while since I
>> have worked on this, and the help file hasn't really clarified what I
>> need to know:
>
> Always check pmwiki.org.  In this case a google of "pmwiki passwords"
> or "site:pmwiki.org passwords" both give you several helpful pages.
>
>> 1) Do passwords in the config file override anything attempted with attr?
>
> Please see http://www.pmwiki.org/wiki/PmWiki/Passwords#priority.  This
> page and the PasswordsAdmin page will be very helpful.
>
> Page overrides group.  Group overrides default (any "read", "edit" or
> "attr" password that you set in config.php).  Admin (set in
> config.php) overrides everything.
>
>> 2) If not, and one can set the site password from the wiki (and not by
>> going to the config file), then at what level would one do that?
>>
>> a) Site/GroupAttributes?action=attr  ?? (but it says "(set by site)
>> ****" next to the box for the new password)
>
> This means that *for pages in the group Site* you are using the site
> password for attributes (set in config.php).  If you are trying to set
> a password for the entire site that has to be done in config.php as
> far as I know.
>
> [Slightly off-topic -- what the OP is doing makes intuitive sense.
> Having a special page akin to Group.GroupAttributes that was named
> Site.SiteAttributes would make things a lot more user-friendly for
> non-technical administrators.  Maybe it would need to be $Enable'd
> since it does expose the site if access is obtained...]
>
>> b) Main/GroupAttributes?action=attr ?? (but it says "@lock" next to
>> the box for the new password)
>
> This means that for pages in the group Main you are using the admin
> password.  In other words, if you are getting spam in the Main group
> then someone has your admin password.  If that's the case you have no
> option but to get access to config.php and change it!  ASAP
>
> -Peter



More information about the pmwiki-users mailing list