diff --git a/www-ssl/inc/error_handler.php b/www-ssl/inc/error_handler.php index ac90d1e7..8c152ba8 100755 --- a/www-ssl/inc/error_handler.php +++ b/www-ssl/inc/error_handler.php @@ -42,7 +42,7 @@ $message .= "_SERVER: $k = $v\n"; if( isset( $_POST)) foreach ($_POST as $k => $v ) - $message .= "_POST: $k = $v\n"; + $message .= "_POST: $k = ". ( $k!="password"? $v : "???..."). "\n"; if( isset( $_GET)) foreach ($_GET as $k => $v ) $message .= "_GET: $k = $v\n"; diff --git a/www-ssl/inc/header.php b/www-ssl/inc/header.php index 3ed0ca46..bbcf61ac 100755 --- a/www-ssl/inc/header.php +++ b/www-ssl/inc/header.php @@ -4,12 +4,10 @@ include ("./inc/config.php"); include ("./inc/db.php"); include ("./inc/funktion_lang.php"); include ("./inc/funktion_menu.php"); -session_start(); + +if( !isset($_SESSION)) + session_start(); include ("./inc/secure.php"); -/*if ( (!IsSet($_SESSION['UID'])) && (strstr ($_SERVER['PHP_SELF'], "nonpublic") !="" ) ) { - header("Location: https://".$_SERVER['HTTP_HOST'].$ENGEL_ROOT); - exit (); -} // Ende Rechte f. Nonpublic'*/ if( !isset($_SESSION['IP'])) $_SESSION['IP'] = $_SERVER['REMOTE_ADDR'];