WordPress Update 1.2.2 broke my login again, but it seems to be a
result of one my database value substitutions. I replaced home value with http://www.uvm.edu/~waw/wordpress/?Page=. . When
wordpress tried to define constant COOKIEPATH, it used the above
in a regular expression that stripped off the http:// , but not the
?Page=. , yielding /~waw/wordpress/?Page=. Neither
Firefox nor Safari accepted that as a cookie path. The fix was
/Volumes/homes/public_html/wordpress/wp-includes/vars.php, line 176
# waw/uvm mods 2004-01-05
# 2005-01-04 define('COOKIEPATH', preg_replace('|http://[^/]+|i', '',
get_settings('home') . '/' ) );
$patterns=array('|http://[^/]+|i','|?.*$|');
define('COOKIEPATH', preg_replace($patterns, '', get_settings('home') .
'/' ) );
#print "get_settings('home') ".get_settings('home')." COOKIEPATH
".COOKIEPATH;
# waw/uvm mods 2004-01-05
------------------------------------------------------------------------
------------
That fixed, login’s “lost password” function was broken in what appears
to be a wordpress error. $wpdb->users is undefined.
/Volumes/homes/public_html/wordpress/wp-login.php, line 115
# waw/uvm mode 2005-01-05
# 2005-01-04 $wpdb->query("UPDATE $wpdb->users SET user_pass =
MD5('$user_pass') WHERE user_login = '$user_login'");
$wpdb->query("UPDATE $tableusers SET user_pass = MD5('$user_pass')
WHERE user_login = '$user_login'");
# waw/uvm mode 2005-01-05
and also in
/Volumes/homes/public_html/wordpress/wp-includes/functions.php, line
1384: SAFE MODE doesn’t allow 5th param to mail function
# waw/uvm mod 2005-01-05
# 2005-01-04 return mail($to, $subject, $message, $headers, $more);
return mail($to, $subject, $message, $headers);
# waw/uvm mods 2004-01-05
------------------------------------------------------------------------
------------
Finally, I put this in to fix some problems I was having fitting
comments boxes in the UVM template
/Volumes/homes/public_html/wordpress/wp-comments.php, line 74