| /admin/account-do.php |
|---|
| 19,7 → 19,8 |
| } |
| if (!empty($password)) { |
| $page->query("UPDATE Users SET Password = ? WHERE ID = ?", array(sha1($password), $userID)); |
| $salt = $user->name . "sheeps"; |
| $page->query("UPDATE Users SET Password = ?, Salt = ? WHERE ID = ?", array($page->saltAndBurn($password, $salt), $salt, $userID)); |
| } |
| if (!empty($email)) { |
| /admin/all-accounts.php |
|---|
| 17,7 → 17,7 |
| write('<td class="bold">ID</td>'); |
| write('<td class="bold">AccessID</td>'); |
| write('<td class="bold">Username</td>'); |
| write('<td class="bold">SHA1 Password</td>'); |
| write('<td class="bold">Salt and Burned Password</td>'); |
| write('<td class="bold">Name</td>'); |
| write('<td class="bold">Email Address</td>'); |
| write('<td class="bold">Challenge ID</td>'); |
| /register-do.php |
|---|
| 42,7 → 42,7 |
| $page->redirect('register.php?error=Incorrect reCAPTCHA response'); |
| } |
| $salt = $username + "horses"; |
| $salt = $username . "horses"; |
| $args = array(2, $username, $page->saltAndBurn($password, $salt), $salt, $email, $name, 0); |
| $page->query("INSERT INTO Users (AccessID, Username, Password, Salt, EmailAddress, Name, ChallengeID) VALUES (?, ?, ?, ?, ?, ?, ?)", $args); |
| /_taios.php |
|---|
| 472,7 → 472,7 |
| } |
| function saltAndBurn($pass, $salt) { |
| return sha1($salt + $pass); |
| return sha1($salt . $pass); |
| } |
| function getGetID() { |
| 501,6 → 501,7 |
| public $accessID; |
| public $username; |
| public $password; |
| public $salt; |
| public $emailAddress; |
| public $name; |