Removed the remote debugging functions.

I used to find these quite useful for helping people debug
configuration problems. I don't think they present a security
problem, but I can see there is the possibility that it can
be PERCEIVED as an issue, and I don't want to be responsible
for that, nor blamed for any break-ins (warranty or not).

So I'll find another way to do remote debugging.

diff --git a/admin/config.php b/admin/config.php
index b144ec2b3e3e3b12b1686ec8f72dd016b3574d62..05197f75bccf1beeeb9c141ac6755df90d89afa4 100644 (file)
--- a/admin/config.php
+++ b/admin/config.php
@@ -1,29 +1,9 @@
 <?PHP  // $Id$
        // config.php - allows admin to edit all configuration variables
 
-
-    if (isset($_GET['phpinfo'])) {    // For debugging purposes, protected by password
-        if (md5($_GET['phpinfo']) == "caf9b6b99962bf5c2264824231d7a40c") {
-            phpinfo();
-            exit;
-        }
-    }
-
     require_once("../config.php");
        require_once("../lib/countries.php");
 
-    if (isset($config)) {    // For debugging purposes, protected by password
-        if (md5($config) == "caf9b6b99962bf5c2264824231d7a40c") {
-            if ($site = get_site()) {
-                print_heading("$site->fullname");
-            }
-            $TEMPCFG = $CFG;
-            unset($TEMPCFG->dbuser);
-            unset($TEMPCFG->dbpass);
-            print_object($TEMPCFG);
-            exit;
-        }
-    }
 
     if ($site = get_site()) {   // If false then this is a new installation
         require_login();
@@ -32,7 +12,6 @@
         }
     }
 
-
 /// This is to overcome the "insecure forms paradox"
     if (isset($secureforms) and $secureforms == 0) {
         $match = "nomatch";