Размер файла: 1.38Kb
<?php
include_once 'inc/db.php';
session_start();
if ($user)header("Location: /index.php");
if (!$_POST['pass'] && !$_POST['name'])
{
include 'inc/1.php';
$_SESSION['captcha']=rand(11111, 99999);
echo "<div class='p0'><form action='#' method='POST'>Логин: <input type='text' name='name'><br>Пароль: <input type='password' name='pass'><br><img src='/captcha.php' />: <input type='text' name='captcha'><br><input type='submit' value='Вход'></form></p>";
}
else
{
if (($_SESSION['captcha']!=$_POST['captcha']) || (!$_POST['captcha']))
{
div('msg');
echo "Каптча неверна!";
nodiv();
include 'inc/foot.php';
exit();
}
$name=mysql_escape_string($_POST['name']);
$pass=md5($_POST['pass']);
$ma=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `name` = '$name'"));
$pass1=$ma['pass'];
if ($pass1==$pass){
$user=$ma;
if (!setCookie("name", $name, time()+43200))die("Ошибка COOKIE! [x]<br>");
setCookie("pass", $pass, time()+43200);
include 'inc/1.php';
mysql_query("UPDATE `user` SET `reply_on` = '0' WHERE `id` = '$ma[id]'");
mysql_query("INSERT INTO `log` (`user`, `text`, `time`) values ('$user[id]', 'Авторизация', '".time()."')");
header("Location: /hi.php");
}
else
{
include 'inc/1.php';
echo '<div class="msg">Ошибка!<br />Неверный логин или пароль.</div>';
}
}
include 'inc/foot.php';
?>