In theory they wouldn't have much luck running the install - by default
you have to be logged onto localhost (for memory) to even get to the
install. At least that is how it *should* work.
You will see this line in the application.cfm of
farcry_core/admin/install :
<cfset lAllowHosts = "127.0.0.1">
<cfif NOT listFindNoCase(lAllowHosts,cgi.remote_addr)>
<cfthrow errorcode="install_invalid_host" detail="Your IP
address is not permitted to access the install directory."
extendedinfo="By default, installation is only permitted to the
following hosts : 127.0.0.1 To give access to other hosts, then append
the desired IP address to the variable lAllowHosts in
/farcry_core/admin/install/application.cfm">
</cfif>
Basically in a shared environment - your users should not have access
to the install at all in my opinion. I'd have thought most people would
be importing data from a dev database anyway. Applying relevant
directory security is an additional method to the later to ensure that
no one can access the install.
The only way to retrieve passwords at present is to view the contents
of the dmUser table. The passwords are (still) not encrypted in anyway
so you can simply view the record - column 'userpassword'.
Cheers
Paul
>>> [EMAIL PROTECTED] 1/22/2004 4:34:03 PM >>>
Could someone tell me what would happen it two different users try to
install FarCry on the same server in a shared web hosting environment?
also, is it possible (and if so, how) to retrieve the [lost] password
for
FarCry admin?
Thanks.
GM
---
You are currently subscribed to farcry-dev as:
[EMAIL PROTECTED]
To unsubscribe send a blank email to
[EMAIL PROTECTED]
MXDU2004 + Macromedia DevCon AsiaPac + Sydney, Australia
http://www.mxdu.com/ + 24-25 February, 2004
---
You are currently subscribed to farcry-dev as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
MXDU2004 + Macromedia DevCon AsiaPac + Sydney, Australia
http://www.mxdu.com/ + 24-25 February, 2004
