Skip to:
Content
Pages
Categories
Search
Top
Bottom

getmypid() – often disabled on shared hosting systems


  • i_xiter
    Member

    @i_xiter

    4 years, 10 months ago

    In bb-includes/class-phpass.php on line 43, bbpress uses getmypid() to create the randomstate for password hashes.

    On shared hosting systems, getmypid() is disabled very often.

    I replaced it with uniqid(), and bbpress didnt throw the WARNING anymore.

    getmypid() does not return a unique value in all cases. Especiall when PHP is running as an apache module in shared hosting sytems. Also for this reason its much better to use uniqid().

    uniqid() gives a 13 digits value. uniqid(”, true) even 23 digits. I think this should be good enough for the randomstate. ;)

    Please consider to use uniqid() in future versions of bbpress.

    thx for your attention

    ix

Viewing 3 replies - 1 through 3 (of 3 total)

  • _ck_
    Participant

    @_ck_

    4 years, 10 months ago

    Oh wow I wonder when they slipped that in. Good find.

    I bet it’s just copied from the WordPress code.

    If you know how, you might want to stick that into TRAC (and if you have the time, check WordPress and it’s TRAC too)


    i_xiter
    Member

    @i_xiter

    4 years, 10 months ago

    Sorry, I dont know about the TRAC thing. Just explain and i will stick it up there.

    BTW .. isnt there a PM system within bbpress ?


    chrishajer
    Participant

    @chrishajer

    4 years, 10 months ago

    You can create a new ticket after logging in here:

    http://trac.bbpress.org/

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

Topic Info

Topic Tags