summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rwxr-xr-xwww-ssl/inc/error_handler.php2
-rwxr-xr-xwww-ssl/inc/header.php8
2 files changed, 4 insertions, 6 deletions
diff --git a/www-ssl/inc/error_handler.php b/www-ssl/inc/error_handler.php
index ac90d1e7..8c152ba8 100755
--- a/www-ssl/inc/error_handler.php
+++ b/www-ssl/inc/error_handler.php
@@ -42,7 +42,7 @@
$message .= "_SERVER: $k = $v\n";
if( isset( $_POST))
foreach ($_POST as $k => $v )
- $message .= "_POST: $k = $v\n";
+ $message .= "_POST: $k = ". ( $k!="password"? $v : "???..."). "\n";
if( isset( $_GET))
foreach ($_GET as $k => $v )
$message .= "_GET: $k = $v\n";
diff --git a/www-ssl/inc/header.php b/www-ssl/inc/header.php
index 3ed0ca46..bbcf61ac 100755
--- a/www-ssl/inc/header.php
+++ b/www-ssl/inc/header.php
@@ -4,12 +4,10 @@ include ("./inc/config.php");
include ("./inc/db.php");
include ("./inc/funktion_lang.php");
include ("./inc/funktion_menu.php");
-session_start();
+
+if( !isset($_SESSION))
+ session_start();
include ("./inc/secure.php");
-/*if ( (!IsSet($_SESSION['UID'])) && (strstr ($_SERVER['PHP_SELF'], "nonpublic") !="" ) ) {
- header("Location: https://".$_SERVER['HTTP_HOST'].$ENGEL_ROOT);
- exit ();
-} // Ende Rechte f. Nonpublic'*/
if( !isset($_SESSION['IP']))
$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];