summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorcookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8>2006-08-29 13:46:38 +0000
committercookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8>2006-08-29 13:46:38 +0000
commit4892750720e136074598c609985c590577f24480 (patch)
tree3c19c15f733ab7ff03a033797bf416984ebfc84b
parente7c842098d951ee5d43fdfac994d28ca350b1609 (diff)
passworter werden nicht ausgewertet
bugfix: sesion wird nur gestartet wenn noetig git-svn-id: svn://svn.cccv.de/engel-system@146 29ba0400-6e00-0410-a75a-ca02368028f8
-rwxr-xr-xwww-ssl/inc/error_handler.php2
-rwxr-xr-xwww-ssl/inc/header.php8
2 files changed, 4 insertions, 6 deletions
diff --git a/www-ssl/inc/error_handler.php b/www-ssl/inc/error_handler.php
index ac90d1e7..8c152ba8 100755
--- a/www-ssl/inc/error_handler.php
+++ b/www-ssl/inc/error_handler.php
@@ -42,7 +42,7 @@
$message .= "_SERVER: $k = $v\n";
if( isset( $_POST))
foreach ($_POST as $k => $v )
- $message .= "_POST: $k = $v\n";
+ $message .= "_POST: $k = ". ( $k!="password"? $v : "???..."). "\n";
if( isset( $_GET))
foreach ($_GET as $k => $v )
$message .= "_GET: $k = $v\n";
diff --git a/www-ssl/inc/header.php b/www-ssl/inc/header.php
index 3ed0ca46..bbcf61ac 100755
--- a/www-ssl/inc/header.php
+++ b/www-ssl/inc/header.php
@@ -4,12 +4,10 @@ include ("./inc/config.php");
include ("./inc/db.php");
include ("./inc/funktion_lang.php");
include ("./inc/funktion_menu.php");
-session_start();
+
+if( !isset($_SESSION))
+ session_start();
include ("./inc/secure.php");
-/*if ( (!IsSet($_SESSION['UID'])) && (strstr ($_SERVER['PHP_SELF'], "nonpublic") !="" ) ) {
- header("Location: https://".$_SERVER['HTTP_HOST'].$ENGEL_ROOT);
- exit ();
-} // Ende Rechte f. Nonpublic'*/
if( !isset($_SESSION['IP']))
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];