Announcement

#1 2012-08-18 21:25:53

jamessag
Guest

forced upgrade issue

We have a forced upgrade screen (auto redirect to upgrade.php). We enter username and password, but it says it is wrong. I know for a fact it is correct, but it will not allow us to click any kind of "forgot" or "reset" password. Just an invalid password message. Passwords are hashed in the database, so no retrieving or changing via phpmyadmin...

How the heck can we upgrade with this? and why does an upgrade take the whole site down and redirect the end user to this page?

 

#2 2012-08-19 11:45:46

Eric
Piwigo Team
VALENCE (FR)
2005-03-25
1768

Re: forced upgrade issue

Hi jamessag,

You can regenerate a MD5 password hash using http://casttlemehdi.free.fr/md5.php (given as example. Many others could be found) and past it in your database for your Piwigo's webmaster account.

jamessag wrote:

and why does an upgrade take the whole site down and redirect the end user to this page?

Because the new updated files have already been copied on your host and the gallery have now to upgrade your database before allowing access again.

Offline

 

#3 2012-08-19 12:05:09

flop25
Piwigo Team
2006-07-06
7037

Re: forced upgrade issue

The password changed?! Check in the database if your password is empty or not. This is abnormal, you should consider an intrusion


To get a better help : Politeness like Hello-A link-Your past actions precisely described
Check my extensions : more than 30 available
who I am and what I do : http://fr.gravatar.com/flop25
My gallery : an illustration of how to integrate Piwigo in your website

Offline

 

#4 2012-08-19 15:52:07

pewe
Member
2012-03-16
439

Re: forced upgrade issue

If the password has been changed by a hack, it may be possible to change the password in the database.

There are some online password generators which allow you to create the MD5 of a chosen password - such as here - http://md5-hash-online.waraxe.us/

I have tested this and the password hash it creates is identical to the one in my piwigo database.

Copy and paste the generated md5 hash into the database, then re-login.
Alternatively check a generated version of what you think yours is with whats in your database.

Offline

 

Board footer

Powered by FluxBB

github twitter newsletter Donate Piwigo.org © 2002-2022 · Contact