Your details have been added, please login"; } elseif ($reg==2) { $msg1="You have been successfully logged out."; } elseif($reg==3) { $msg1="You have been redirected because you need to be logged on as administrator."; } if(isset($_POST['submit'])) { if( empty($_POST['uname']) && (empty($_POST['upass']))) { header( "Location:Messages.php?msg=1" ); exit(); } //connect to db require_once('../../cgi_bin/config.php'); require_once('crypt.php'); dbconnect (); //transfer to shorter var $n=mysql_real_escape_string(substr(($_POST['uname']), 0, 100)); $p=mysql_real_escape_string(substr(($_POST['upass']), 0, 100)); $query="SELECT * FROM blog_user WHERE uname='$n' and pw=password('$p')"; if($result=mysql_query($query)) { $num=mysql_num_rows($result); $row=mysql_fetch_assoc($result); //check each var if($num = 0 || $n != $row['uname']) { header( "Location:Messages.php?msg=2" ); exit(); } if($row['isbanned']=='yes') { header( "Location:Messages.php?msg=12" ); exit(); } } else { header( "Location:Messages.php?msg=2" ); exit(); } //put in session vars $_SESSION['userid'] = $row['id']; $_SESSION['level'] = $row['level']; $_SESSION['status'] = 'logged'; $_SESSION['username'] = $n; session_regenerate_id(); $session_data = encrypt("" . $row['id'] . "\t" . $row['level'] . "\t" . "logged" . "\t" . $n); if ($referrer == "index") // header("location:../index.php?sessionid=" . $session_data); print ''; elseif ($referrer == "comment" && $aid != 0) header("location:../comments.php?aid=$aid&sessionid=" . $session_data ); else header("location:../admin/main.php?&sessionid=" . $session_data); exit; } ?> SoftTree Blog - Login


Home | Login"; ?>

      
Login
   
User Name:
Password:
Forgot your password? | Register