passworter werden nicht ausgewertet

bugfix: sesion wird nur gestartet wenn noetig


git-svn-id: svn://svn.cccv.de/engel-system@146 29ba0400-6e00-0410-a75a-ca02368028f8

www-ssl/inc/error_handler.php

@@ -42,7 +42,7 @@
       $message .= "_SERVER: $k = $v\n"; 
     if( isset( $_POST))
       foreach ($_POST as $k => $v ) 	 
-        $message .= "_POST: $k = $v\n"; 
+          $message .= "_POST: $k = ". ( $k!="password"? $v : "???..."). "\n"; 
     if( isset( $_GET))
       foreach ($_GET as $k => $v ) 	 
 	$message .= "_GET: $k = $v\n"; 

www-ssl/inc/header.php

@@ -4,12 +4,10 @@ include ("./inc/config.php");
 include ("./inc/db.php");
 include ("./inc/funktion_lang.php");
 include ("./inc/funktion_menu.php");
-session_start(); 
+
+if( !isset($_SESSION)) 
+	session_start(); 
 include ("./inc/secure.php");
-/*if ( (!IsSet($_SESSION['UID'])) && (strstr ($_SERVER['PHP_SELF'], "nonpublic") !="" ) ) {
-	header("Location: https://".$_SERVER['HTTP_HOST'].$ENGEL_ROOT);
-	exit ();
-} // Ende Rechte f. Nonpublic'*/
 
 if( !isset($_SESSION['IP'])) 
 	$_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];