//echo "user=$user salt=$salt pswd=$pswd hash=$hash rand=$rand login=$sess"; $is_login = 0; if ($user != "") { if ($salt != $rand) { echo "Invalid login..."; $is_login = 0; } else { // stored user $user_x = "joe"; $key_ok = "#joe*".$salt."*".$user."#"; $hash_ok = md5($key_ok); // check for valid user/pswd if (($user == $user_x) && ($hash == $hash_ok)) { $_SESSION["login"]="ok"; echo "Login successful..."; $is_login = 1; $IP = $HTTP_SERVER_VARS['REMOTE_ADDR']; $ip_host = gethostbyaddr($IP); $headers = 'From: "Cabinet veterinar Sanovet" '."\r\n" . 'X-Mailer: SANOVET mailer'."\r\n". 'MIME-Version: 1.0'."\r\n". 'Content-type: text/html; charset=iso-8859-1'."\r\n"; mail("zoran@unde.ro","Login from $IP", "". "Login user from IP $IP\n\n". "IP: $IP ($ip_host)\n". "date: ".date("d.m.Y H:i:s")."\n". "\n". "" ,$headers); } else { echo "Incorrect login..."; $is_login = 0; } } } if (! $is_login) { //session_unset(); //session_destroy(); //session_start(); $rand0 = rand(0,10000000000); $_SESSION["login"] = "err"; $_SESSION["rand"] = $rand0; $rand = $_SESSION["rand"]; echo "". "". "". " ". " ". "". " Utilizator". "". " ". "". " Parola". "". " ". "". " ". ""; echo "Home page"; } else { echo ""; } ?>