[support] support Digest, Vol 121, Issue 36

Damilare D. Fagbemi damilarefagbemi at gmail.com
Wed Jan 30 16:20:02 UTC 2013 

Hello everyone,

I've got a problem with Nice menus. The drop down menus increase the length of the block. Also, the menus do not disappear on mouse out.

Any suggestions please?
Cheers,
Damilare
-----Original Message-----
From: support-request at drupal.org
Sender: support-bounces at drupal.org
Date: Wed, 30 Jan 2013 12:00:04 
To: <support at drupal.org>
Reply-To: support at drupal.org
Subject: support Digest, Vol 121, Issue 36

Send support mailing list submissions to
	support at drupal.org

To subscribe or unsubscribe via the World Wide Web, visit
	http://lists.drupal.org/mailman/listinfo/support
or, via email, send a message with subject or body 'help' to
	support-request at drupal.org

You can reach the person managing the list at
	support-owner at drupal.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of support digest..."


Today's Topics:

   1. Re: Understanding the 'user' node (Al Sessions)
   2. Re: Understanding the 'user' node (Tim Johnson)
   3. Calculating the hashed user password (Prothero William)
   4. Re: Calculating the hashed user password (Ursula Pieper)
   5. Use 1 database for 2 installs (Roger)


----------------------------------------------------------------------

Message: 1
Date: Tue, 29 Jan 2013 14:25:09 -0500
From: Al Sessions <fultonchain at gmail.com>
Subject: Re: [support] Understanding the 'user' node
To: support at drupal.org
Message-ID:
	<CAMw2Q3Ev3bkm6OpMKeVeKns=A_GZ9wx-FShJSks1Zbe7wcWPiQ at mail.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"

On Mon, Jan 28, 2013 at 10:41 PM, Steve Wickham <steve at wickwoodonline.com>wrote:

> >From what I understand, in the WordPress world it is a fairly common
> thing to change the path of the user login page in order to harden the site
> because this helps prevent bots from finding the login page in the first
> place.  The other thing that is commonly done is to change the preassigned
> admin username to something else.
>
> I myself have wondered about how this might be done with Drupal, and have
> never found an answer.  Although to be honest, i never looked that hard.
>  So if you do find the answer, or if someone knows the answer to this,
> please post it back here.
>
>
<http://drupal.org/project/rename_admin_paths>

This module allows you to:

   - rename path like '/admin/...' to '/something/...'
   - rename path like '/user/..' to '/something else/..'

It can be effective against registration spam bots or malicious people.

This small module just implements hook_outbound_alter and
hook_inbound_alter to rename paths.
A settings form allows to choose replacement term for "admin" and "user".





-- 
Al Sessions
http://valecemetery.org <http://420summit.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.drupal.org/pipermail/support/attachments/20130129/88fe3a63/attachment-0001.html 

------------------------------

Message: 2
Date: Tue, 29 Jan 2013 10:54:29 -0900
From: Tim Johnson <tim at akwebsoft.com>
Subject: Re: [support] Understanding the 'user' node
To: support at drupal.org
Message-ID: <20130129195429.GX432 at mail.akwebsoft.com>
Content-Type: text/plain; charset=us-ascii

* Al Sessions <fultonchain at gmail.com> [130129 10:37]:
> >
> <http://drupal.org/project/rename_admin_paths>
> 
> This module allows you to:
> 
>    - rename path like '/admin/...' to '/something/...'
>    - rename path like '/user/..' to '/something else/..'
> 
> It can be effective against registration spam bots or malicious people.
> 
> This small module just implements hook_outbound_alter and
> hook_inbound_alter to rename paths.
> A settings form allows to choose replacement term for "admin" and "user".
  I have just implemented this. 
  It works as advertised!

  FYI: I have clients and potential clients that are
  1)Paranoid - citing good reason
  2)Extremely security conscious - citing good reason
  3)Suspicious of PHP - http://en.wikiquote.org/wiki/Rasmus_Lerdorf
    doesn't help things.
  4)Suspicious of CMS systems. 

  (drupal, however - regardless of the core language is well spoken
   of by members of the same community, one of the reasons I chose to
   learn it)

  This module is going to help me overcome much of the above. 
  Furthermore it is illustrative of drupal's rich store of
  resources. 

  I included the enumerated items not to encourage controversy but
  to point out the push back that I am working to overcome. :) I'm
  not as paranoid as they are....

  Thanks again for the support. You all keep up the good work.
  cheers
-- 
Tim 
tim at tee jay forty nine dot com or akwebsoft dot com
http://www.akwebsoft.com


------------------------------

Message: 3
Date: Tue, 29 Jan 2013 12:33:02 -0800
From: Prothero William <waprothero at gmail.com>
Subject: [support] Calculating the hashed user password
To: "support at drupal.org" <support at drupal.org>
Message-ID: <CB050206-46A3-43F8-814B-80485D2FAB07 at gmail.com>
Content-Type: text/plain; charset=us-ascii

Folks:
I have an external application (a Shockwave movie) that uses my Drupal site for user verification and interaction. I use the store, etc to sell access to my product. My external application accesses the users table to get the username, email, and password. My application compares the entered password with the Drupal password. This was pretty straightforward with Drupal 6, which used MD5 encryption. Now it uses SHA512. While perusing the Drupal 7 scripts, it looks like Drupal relies on the shell to hash the password. 

How can I, with a php script that runs outside of the Drupal environment, calculate the password that Drupal stores? I need this to be able to verify the user and determine the product licenses that he/she has purchased on my Drupal site.

Thanks for any info. I am not a php expert.
Bill

Prothero William
waprothero at gmail.com





------------------------------

Message: 4
Date: Tue, 29 Jan 2013 15:00:52 -0800
From: Ursula Pieper <dramamezzo at gmail.com>
Subject: Re: [support] Calculating the hashed user password
To: support at drupal.org
Message-ID:
	<CACpPVyu6uAfy_XcxgEgcsHTC2nBu3N=hT-9Q_SCm9NVtTCPTug at mail.gmail.com>
Content-Type: text/plain; charset="iso-8859-1"

Hi Bill,

You probably would want to implement a modified version of the function
user_check_password  (in includes/password.inc)

For clarification of the method, see:
http://hungred.com/useful-information/php-better-hashing-password/
http://stackoverflow.com/questions/3897434/password-security-sha1-sha256-or-sha512

Best regards, Ursula

On Tue, Jan 29, 2013 at 12:33 PM, Prothero William <waprothero at gmail.com>wrote:

> Folks:
> I have an external application (a Shockwave movie) that uses my Drupal
> site for user verification and interaction. I use the store, etc to sell
> access to my product. My external application accesses the users table to
> get the username, email, and password. My application compares the entered
> password with the Drupal password. This was pretty straightforward with
> Drupal 6, which used MD5 encryption. Now it uses SHA512. While perusing the
> Drupal 7 scripts, it looks like Drupal relies on the shell to hash the
> password.
>
> How can I, with a php script that runs outside of the Drupal environment,
> calculate the password that Drupal stores? I need this to be able to verify
> the user and determine the product licenses that he/she has purchased on my
> Drupal site.
>
> Thanks for any info. I am not a php expert.
> Bill
>
> Prothero William
> waprothero at gmail.com
>
>
>
> --
> [ Drupal support list | http://lists.drupal.org/ ]
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.drupal.org/pipermail/support/attachments/20130129/39b2cd89/attachment-0001.html 

------------------------------

Message: 5
Date: Wed, 30 Jan 2013 17:08:56 +1100
From: Roger <arelem at bigpond.com>
Subject: [support] Use 1 database for 2 installs
To: Drupal Support Forum <support at drupal.org>
Message-ID: <5108B8F8.3000304 at bigpond.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed

Is it possible to have 2 separate drupal 7 installs accessing the same 
database and can the second install be set to have access to certain 
content fields only but have no data entry permissions?

I ran into a problem some time ago where if modules like workbench and 
others were not installed  the fresh install crashed. Workbench is a 
pain for us.

Reasons I'm asking are:
-- that I need to set up  a newsletter creation and mail out system that 
takes calendar events and dates, locations of events,, quotations,  book 
references and some text content to be used in a view in the second 
installation to out put to the newsletter.

I have tried for days to get simplenews and newsletter working in a copy 
of the original system but there are a huge number of modules in there 
and something is causing the WSOD default to the Stark theme in both 
<Create new content type> and configurations for simplenews.

I did a fresh install of d7.19 on my home system and installed required 
modules for a trial. I find that simplenews and the email systems work 
well as expected.
I'm reluctant to do anything in the original working/live system - I 
reckon some modules don't play nice with others but have no way of knowing.

I would appreciate help on how best to go about this please
thank you in advance
Roger


------------------------------

-- 
[ Drupal support list | http://lists.drupal.org/ ]

End of support Digest, Vol 121, Issue 36
****************************************

More information about the support mailing list