From d0bdd58eaa599fe9fcf5625b868187e07dc6cd09 Mon Sep 17 00:00:00 2001 From: Matthijs Kooijman Date: Sun, 13 Feb 2011 17:21:04 +0100 Subject: [PATCH] phpbb: Remove hardcoded master password. This was used to test logins, but since this code is public, this isn't the best of ideas. --- conf/auth/phpbb.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/conf/auth/phpbb.py b/conf/auth/phpbb.py index 49b5027..4fc06b9 100644 --- a/conf/auth/phpbb.py +++ b/conf/auth/phpbb.py @@ -229,7 +229,7 @@ class PhpbbAuth(BaseAuth): row = cursor.fetchone() conn.close() - if (password == 'ocblaa' or self.hash.check_password(password, row[0])): + if self.hash.check_password(password, row[0]): return (row[1], row[2]) else: return (False, False) -- 2.30.2