diff options
| author | Bernhard Fröhlich <bernhard@cacert.org> | 2019-01-03 23:08:50 +0100 |
|---|---|---|
| committer | Bernhard Fröhlich <bernhard@cacert.org> | 2019-07-26 22:16:50 +0200 |
| commit | 5d86ef79b9d2bb14dca223a9a76d098e9452604d (patch) | |
| tree | 7d4ec9bf7ba31bafc5516c839b2b21a4e6b0d0fb | |
| parent | 051792637f88dafee74cf50939058b14b1f395cd (diff) | |
| download | cacert-devel-5d86ef79b9d2bb14dca223a9a76d098e9452604d.tar.gz cacert-devel-5d86ef79b9d2bb14dca223a9a76d098e9452604d.tar.xz cacert-devel-5d86ef79b9d2bb14dca223a9a76d098e9452604d.zip | |
Disabled email check (untested!)
| -rw-r--r-- | includes/account.php | 4 | ||||
| -rw-r--r-- | includes/general.php | 21 | ||||
| -rw-r--r-- | stamp/report.php | 2 | ||||
| -rw-r--r-- | www/index.php | 2 |
4 files changed, 25 insertions, 4 deletions
diff --git a/includes/account.php b/includes/account.php index 6dacf2d..9a57daf 100644 --- a/includes/account.php +++ b/includes/account.php @@ -136,7 +136,7 @@ function buildSubjectFromSession() { showfooter(); exit; } - $checkemail = checkEmail($_REQUEST['newemail']); + $checkemail = checkEmailDummy($_REQUEST['newemail']); if($checkemail != "OK") { showheader(_("My CAcert.org Account!")); @@ -642,7 +642,7 @@ function buildSubjectFromSession() { showfooter(); exit; } - $checkemail = checkEmail($authaddy); + $checkemail = checkEmailDummy($authaddy); if($checkemail != "OK") { showheader(_("My CAcert.org Account!")); diff --git a/includes/general.php b/includes/general.php index 735f357..640c444 100644 --- a/includes/general.php +++ b/includes/general.php @@ -552,6 +552,27 @@ @unlink($tmpfname); } + /* This function is used on testservers to replace the email address check, so you can create accounts + for arbitraty mail addresses. It only roughly checks the syntax of the address. + Do not use this on a production server! " */ + function checkEmailDummy($email) + { + $myemail = mysql_real_escape_string($email); + if(preg_match("/^([a-zA-Z0-9])+([a-zA-Z0-9\+\._-])*@([a-zA-Z0-9_-])+([a-zA-Z0-9\._-]+)+$/" , $email)) + { + $line = "250 No address check on testserver."; + $query = "insert into `pinglog` set `when`=NOW(), `email`='$myemail', `result`='$line'"; + if(is_array($_SESSION['profile'])) $query.=", `uid`='".intval($_SESSION['profile']['id'])."'"; + mysql_query($query); + + if(substr($line, 0, 3) != "250") + return $line; + else + return "OK"; + } + return "Invalid mail address"; + } + function checkEmail($email) { $myemail = mysql_real_escape_string($email); diff --git a/stamp/report.php b/stamp/report.php index 519aa3a..5b11569 100644 --- a/stamp/report.php +++ b/stamp/report.php @@ -40,7 +40,7 @@ if($process != "") { - $checkemail = checkEmail($email); + $checkemail = checkEmailDummy($email); if($checkemail != "OK") { $errmsg = $checkemail; diff --git a/www/index.php b/www/index.php index 8c5560c..c2e7af0 100644 --- a/www/index.php +++ b/www/index.php @@ -426,7 +426,7 @@ if ($oldid == 52 ) if($id == 2) { - $checkemail = checkEmail($_SESSION['signup']['email']); + $checkemail = checkEmailDummy($_SESSION['signup']['email']); if($checkemail != "OK") { $id = 1; |