Change login data that may be leaked when this goes FOSS #6
Labels
No Label
#19
Bad Style
Broken
Bug
Migration
Network
Priority: High
Priority: Low
Priority: Normal
Priority: URGENT
Suggestion
ToDo
nofun
No Milestone
No project
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: root/threadr.lostcave.ddnss.de#6
Loading…
Reference in New Issue
There is no content yet.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?
Change all login data that may be contained in this project’s history in case I haven’t changed it already. Also, move all login data outside of this project.
Going through all files and collecting all login data within the code now.
Found login data in:
/admin.php:
- MySQL 'webstuff'
/threadr/board/board.php
- MySQL 'webstuff'
/threadr/board/index.php
- MySQL 'webstuff'
/threadr/boards/index.php
- MySQL 'webstuff'
/threadr/login/redirect.php
- MySQL 'webstuff'
/threadr/profile/index.php
- MySQL 'webstuff'
/threadr/signup/verify-email/index.php
- MySQL 'webstuff'
/threadr/userhome/index.php
- MySQL 'webstuff'
/web.sql
- doesn’t contain clear login information but the test users with auth hashes
Summary: I expected worse.... This is not actually that bad.
Changed MySQL password for 'webstuff'