[stamp] Re: Random user running "database_setup.php"

• From: "Steven Buss" <steven.buss@xxxxxxxxx>
• To: stamp@xxxxxxxxxxxxx
• Date: Thu, 23 Feb 2006 09:12:51 -0500

what's to stop anyone from looking up any team's password?  how is that
going to be managed?

On 2/23/06, Brandon Ripley <Brandon.Ripley@xxxxxxxxxx> wrote:
>
> Once we add the function "lookup team password" to the admin page, we
> should
> change database_setup.php so it can only be run once to display passwords
> i.e. if passwords exists, don't reprint them.
>
> -----Original Message-----
> From: Jeremy Johnson [mailto:mias88@xxxxxxxxx]
> Sent: Thursday, February 23, 2006 7:29 AM
> To: stamp@xxxxxxxxxxxxx
> Subject: [stamp] Re: Random user running "database_setup.php"
>
> yes, they will.  For testing purposes I did not add a restriction on when
> the team passwords, lthoguh that should not be so hard to implement.  I
> will
> work on that.
> -Jeremy
> On 2/23/06, Erik Thulin <ethulin@xxxxxxxxx> wrote:
> > What if a random user runs "database_setup.php", will they see the
> > team passwords?
> >
> >  - Erik
> >
>
>


--
Steven Buss
steven.buss@xxxxxxxxx
PHP/MySQL programmer

• References:
  • [stamp] Re: Random user running "database_setup.php"
    • From: Brandon Ripley

Other related posts:

• » [stamp] Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"
• » [stamp] Re: Random user running "database_setup.php"

1. Home
2. stamp
3. Archive
4. 02-2006

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---