Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length

Search

 
Advanced search

8043 Posts in 1856 Topics- by 2099 Members - Latest Member: roi
« previous next »
Pages: [1]   Go Down
Print
Author Topic: Enable pass required be safe  (Read 628 times)
0 Members and 1 Guest are viewing this topic.
Sonny
New Member
*

Karma: 0
Offline Offline

Posts: 0


WWW
« on: July 29, 2006, 12:07:00 PM »
When you set this program up be sure you look in
users.properties

and change
password:required=0

to
password:required=1

What this does is make sure, when you add a user later on that the password field is filled in, if you do not change that password:required, it will omly check that you filled in the username and name fields, why calendarscript comes with this DISABLED BY DEFAULT in users.properties is a mystery, since there is no way to change that in the Admin section,, makes one think what else needs finding, and if I never mentioned anything most wouldn't even know about it. NOW if your using the AutoRegister plugin this can wreck havoc.

Be safe enable it

Sonny
Logged
DanO
Moderator
Full Member
*****

Karma: 13
Offline Offline

Posts: 230

Please don't PM me. Post in the open forum.


WWW
« Reply #1 on: August 07, 2006, 08:44:00 PM »
** NOW if your using the AutoRegister plugin this can wreck havoc. **

How could that be? YOU (or whomever you've given administration permissions to) sets what permissions autoregistered users get. Only if you gave new users carte blanche to do whatever they want within the calendar could they affect much. Otherwise all they can do is whatever you've given them permission to do... the same as if they had registered using a password. So what's the difference?

While it wouldn't hurt anything to make the suggested change, I doubt anyone would be affected by it if they didn't.

JMO

Dan O.

------------------
Logged
Sonny
New Member
*

Karma: 0
Offline Offline

Posts: 0


WWW
« Reply #2 on: August 07, 2006, 11:41:00 PM »
Why in the world would this setting be set to off as default?

It just goes to show how little you care about security
what purpose in the world is there to leave that off?
COME ON I know we do not get along but you must AGREE
thats just plain not careing

Sonny

------------------
Logged
DanO
Moderator
Full Member
*****

Karma: 13
Offline Offline

Posts: 230

Please don't PM me. Post in the open forum.


WWW
« Reply #3 on: August 08, 2006, 12:47:00 AM »
** what purpose in the world is there to leave that off? **

You'd have to ask the script author, which is not me.

Dan O.

------------------
Logged
Sonny
New Member
*

Karma: 0
Offline Offline

Posts: 0


WWW
« Reply #4 on: August 08, 2006, 11:53:00 PM »
DanO
Can you Just post some kind of sticky on that fair?
(your not the aurthor I know for the 15th time)
but you are the admin here.

Regards
Sonny

------------------
Logged
DanO
Moderator
Full Member
*****

Karma: 13
Offline Offline

Posts: 230

Please don't PM me. Post in the open forum.


WWW
« Reply #5 on: August 09, 2006, 01:45:00 AM »
** Can you Just post some kind of sticky on that **

No. This forum version doesn't support stickies.

Dan O.

------------------
Logged
Pages: [1]   Go Up
Print
« previous next »
Jump to: