[geeklog-cvs] Geeklog-1.x/public_html users.php,1.156,1.157

Dirk Haun dhaun at qs1489.pair.com
Sat Aug 18 16:45:51 EDT 2007 

Update of /cvsroot/geeklog/Geeklog-1.x/public_html
In directory qs1489.pair.com:/tmp/cvs-serv81323/public_html

Modified Files:
	users.php 
Log Message:
Update speed limit on invalid OpenID login attempts


Index: users.php
===================================================================
RCS file: /cvsroot/geeklog/Geeklog-1.x/public_html/users.php,v
retrieving revision 1.156
retrieving revision 1.157
diff -C2 -d -r1.156 -r1.157
*** users.php	26 May 2007 19:31:59 -0000	1.156
--- users.php	18 Aug 2007 20:45:49 -0000	1.157
***************
*** 973,977 ****
      // prevent dictionary attacks on passwords
      COM_clearSpeedlimit($_CONF['login_speedlimit'], 'login');
!     if ( COM_checkSpeedlimit('login', $_CONF['login_attempts']) > 0 ) {
          if ($_CONF['custom_registration'] AND function_exists('CUSTOM_loginErrorHandler')) {
              // Typically this will be used if you have a custom main site page and need to control the login process
--- 973,977 ----
      // prevent dictionary attacks on passwords
      COM_clearSpeedlimit($_CONF['login_speedlimit'], 'login');
!     if (COM_checkSpeedlimit('login', $_CONF['login_attempts']) > 0) {
          if ($_CONF['custom_registration'] AND function_exists('CUSTOM_loginErrorHandler')) {
              // Typically this will be used if you have a custom main site page and need to control the login process
***************
*** 1023,1026 ****
--- 1023,1027 ----
              $ret = $consumer->find_identity_info($identity_url);
              if (!$ret) {
+                 COM_updateSpeedlimit('login');
                  COM_errorLog('Unable to find an OpenID server for the identity URL ' . $identity_url);
                  echo COM_refresh($_CONF['site_url'] . '/users.php?msg=89');
***************
*** 1049,1052 ****
--- 1050,1054 ----
              }
              if ($openid_mode == 'cancel') {
+                 COM_updateSpeedlimit('login');
                  echo COM_refresh($_CONF['site_url'] . '/users.php?msg=90');
                  exit;
***************
*** 1058,1061 ****
--- 1060,1064 ----
              }
          } else {
+             COM_updateSpeedlimit('login');
              echo COM_refresh($_CONF['site_url'] . '/users.php?msg=91');
              exit;

More information about the geeklog-cvs mailing list