Php photo gallery TWG | JFUploader | TWG Flash upload | WFU | Forum

Get help for TinyWebGallery, the best image gallery. The forum is also home for the Joomla JFUploader, TWG Flash Uploader and the Wordpress flash uploader.
It is currently 24. Nov 2024, 10:24

This forum is readonly now. Please use the new forum if you don't find the answer to your question here. The new forum is at https://www.tinywebgallery.com/blog/forum/


All times are UTC + 1 hour [ DST ]




Post new topic Reply to topic  [ 7 posts ] 
Author Message
PostPosted: 25. Oct 2009, 12:10 
Offline

Joined: 25. Oct 2009, 10:41
Posts: 6
Hi,

I use encrypted passwords. However when I try a password with additional characters like "!" or "." it does not work. It works fine with alphabetic characters and numbers. Is this not supported yet? I use the pw generator of the admin menu.

cu
user009


Top
 Profile  
 
 Post subject:
PostPosted: 25. Oct 2009, 20:57 
Offline
Site Admin
User avatar

Joined: 1. Aug 2005, 12:53
Posts: 11232
I was checking this filed a little bit too tight ;). I changed this now too. I will be in the next small update with the password fix hopefully tomorrow.

- Michael


Top
 Profile  
 
 Post subject:
PostPosted: 26. Oct 2009, 19:18 
Offline
Site Admin
User avatar

Joined: 1. Aug 2005, 12:53
Posts: 11232
It's online. Download the new patch. It's still 1.7.8.1

- Michael


Top
 Profile  
 
 Post subject:
PostPosted: 28. Oct 2009, 21:05 
Offline

Joined: 25. Oct 2009, 10:41
Posts: 6
Thanks.

I tried abc!! which works fine. However ..!!aaa is not working. What are the rules for the password?

rgds
user009


Top
 Profile  
 
 Post subject:
PostPosted: 28. Oct 2009, 21:23 
Offline
Site Admin
User avatar

Joined: 1. Aug 2005, 12:53
Posts: 11232
.. is filtered from all parameters because this can be used for e.g. getting to upper directories. I have a global filter rule where e.g. <> .. alert( and such things that can be used to hack scripts are filtered.

if you want to remove this check - i_privatelogin.php.

- Michael


Top
 Profile  
 
 Post subject:
PostPosted: 31. Oct 2009, 10:55 
Offline

Joined: 25. Oct 2009, 10:41
Posts: 6
TinyWebGallery wrote:
.. is filtered from all parameters because this can be used for e.g. getting to upper directories. I have a global filter rule where e.g. <> .. alert( and such things that can be used to hack scripts are filtered.


I c. Why donĀ“t you make the same check in the admin menu when the password string is created? It would be much better than generate and test.

rgds
user009


Top
 Profile  
 
 Post subject:
PostPosted: 1. Nov 2009, 12:52 
Offline
Site Admin
User avatar

Joined: 1. Aug 2005, 12:53
Posts: 11232
you are right - the checks in the frontend are much more strict because there you can get without any login. In the backend the login is needed.

I'll put this on my todo list to list the characters which are not allowed in the administration.

- Michael


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 7 posts ] 

All times are UTC + 1 hour [ DST ]


Who is online

Users browsing this forum: No registered users and 34 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
cron
powered by phpbb | Datenschutz/ Privacy policy