added %NO_CHEAP_SESSION_STEALING%

master
BodgeMaster 2020-02-24 04:43:53 +01:00
parent 0df93c30aa
commit fc3d9468a1
7 changed files with 29 additions and 3 deletions

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>
@ -25,7 +29,7 @@
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!');
$error = false;
$error_message = "";
if (!$error) {
$statement = $pdo->prepare("SELECT * FROM boards");
$statement->execute();
@ -34,7 +38,7 @@
echo "<li><a href='%CONTENT_DIR%/boards?=$ROW[id]'>$ROW[name]</a></li>";
}
}
if (!$result) {
$error_message = "Error: SQL error.\n" . $statement->queryString . "\n" . $statement->errorInfo()[2];
}

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>
@ -25,7 +29,7 @@
<ul class="list">
<li><p> 2020-02-21 Whole Website updated: Homepage, News, Boards, About, Log In, Userhome, Log Out</p></li>
<li><p> 2020-01-06 First Steps done </p></li>
</ul>
</ul>
</div>
</div>
</body>

View File

@ -1,3 +1,7 @@
<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
?>
<!DOCTYPE html>
<html>
<head>

View File

@ -1,4 +1,6 @@
<?php
//todo: force logout any user if logged in and on this page
//permitted chars for password salt
$permitted_chars = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ&/()[]$:?_';