* Make lib/ldap/password_check.php3 behave properly when it is passed a null password
* Allow for daily/weekly/monthly limits to be set to none and show correct results in the show user page
* Fix a small bug in user_admin.php3.
+* Pass the whole password as salt in da_encrypt() in password_check.php3
Ver 1.29:
* Add general_ld_library_path directive and set LD_LIBRARY_PATH accordingly (used in snmpfinger and
radaclient).
if (is_file("../lib/crypt/$config[general_encryption_method].php3")){
include("../lib/crypt/$config[general_encryption_method].php3");
$enc_passwd = $row[Value];
- $salt=substr($enc_passwd,0,2);
- $passwd = da_encrypt($passwd,$salt);
+ $passwd = da_encrypt($passwd,$enc_passwd);
if ($passwd == $enc_passwd)
$msg = '<font color=blue><b>YES It is that</b></font>';
else