diff options
| author | the_systech <the_systech@users.sourceforge.net> | 2002-03-06 21:58:49 +0000 |
|---|---|---|
| committer | the_systech <the_systech@users.sourceforge.net> | 2002-03-06 21:58:49 +0000 |
| commit | 03dc0a105fcb280621b827643c49866c4b2c9283 (patch) | |
| tree | f601b2b6954124713c602051f4056a237778bc36 /phpBB | |
| parent | 2f882026efb20af14bd51a9c22eeb6b6568e067b (diff) | |
| download | forums-03dc0a105fcb280621b827643c49866c4b2c9283.tar forums-03dc0a105fcb280621b827643c49866c4b2c9283.tar.gz forums-03dc0a105fcb280621b827643c49866c4b2c9283.tar.bz2 forums-03dc0a105fcb280621b827643c49866c4b2c9283.tar.xz forums-03dc0a105fcb280621b827643c49866c4b2c9283.zip | |
Fix for bug #525357... Admin password should not be allowed to be blank for security reasons...
git-svn-id: file:///svn/phpbb/trunk@2278 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB')
| -rw-r--r-- | phpBB/install.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/phpBB/install.php b/phpBB/install.php index a97c049a58..27bff21ebe 100644 --- a/phpBB/install.php +++ b/phpBB/install.php @@ -500,7 +500,7 @@ else if( !empty($HTTP_POST_VARS['ftp_file']) && !defined("PHPBB_INSTALLED") ) exit(); } } -else if( ( empty($install_step) || $admin_pass1 != $admin_pass2 || $dbhost == "" ) && !defined("PHPBB_INSTALLED") ) +else if( ( empty($install_step) || $admin_pass1 != $admin_pass2 || empty($admin_pass1) || $dbhost == "" ) && !defined("PHPBB_INSTALLED") ) { // // Ok we haven't installed before so lets work our way through the various @@ -514,7 +514,7 @@ else if( ( empty($install_step) || $admin_pass1 != $admin_pass2 || $dbhost == "" // $instruction_text = $lang['Inst_Step_0']; - if( $HTTP_POST_VARS['admin_pass1'] != $HTTP_POST_VARS['admin_pass2'] ) + if( ($HTTP_POST_VARS['admin_pass1'] != $HTTP_POST_VARS['admin_pass2']) || empty($HTTP_POST_VARS['admin_pass1'] ) { $instruction_text = $lang['Password_mismatch'] . '<br />' . $instruction_text; } |