alrite, i've made this php login with sessions and have been told that its very rubbishly coded and very insecure, any chance anyone could recode it for me? make it faster, and more secure. oh and less to do? ;]
thanks in advance.
Thread Closed by Flisker (Forum Moderator): Closed because it was bumped.Code:<?php include('php/config.php'); session_start(); if(!session_is_registered(username)){ if(isset($_POST['username']) && isset($_POST['password'])){ $username = ($_POST['username']); $password = ($_POST['password']); $remember_me = $_POST['_login_remember_me']; if(empty($username) || empty($password)){ $login_error = "Please do not leave any fields blank."; } else { $sql = mysql_query("SELECT id FROM users WHERE name = '".$username."' AND password = '".$password."' LIMIT 1") or die(mysql_error()); $rows = mysql_num_rows($sql); if($rows < 1){ $login_error = "Invalid username or password."; } else { $userdata = mysql_fetch_assoc($sql); $userid = $userdata['id']; $check = mysql_query("SELECT * FROM users_bans WHERE userid = '".$userid."' OR ipaddress = '".$remote_ip."' LIMIT 1") or die(mysql_error()); $is_banned = mysql_num_rows($check); if($is_banned < 1){ $_SESSION['username'] = $username; $_SESSION['password'] = $password; if($remember_me == "true"){ setcookie("remember", "remember", time()+60*60*24*100, "/"); setcookie("rusername", $_SESSION['username'], time()+60*60*24*100, "/"); setcookie("rpassword", sha1("zomq".$_SESSION['password']), time()+60*60*24*100, "/"); } $sql3 = mysql_query("UPDATE users SET lastvisit = '".$date_full."' WHERE name = '".$username."'") or die(mysql_error()); header("location:security_check.php"); exit; } else { $bandata = mysql_fetch_assoc($check); $reason = $bandata['descr']; $expire = $bandata['date_expire']; $xbits = explode(" ", $expire); $xtime = explode(":", $xbits[1]); $xdate = explode("-", $xbits[0]); $stamp_now = mktime(date('H'),date('i'),date('s'),$today,$month,$year); $stamp_expire = mktime($xtime[0], $xtime[1], $xtime[2], $xdate[0], $xdate[1], $xdate[2]); if($stamp_now < $stamp_expire){ $login_error = "You have been banned! The reason for this ban is \"".$reason."\". The ban will expire at ".$expire."."; } else { // ban expired mysql_query("DELETE FROM users_bans WHERE userid = '".$userid."' OR ipaddress = '".$remote_ip."' LIMIT 1") or die(mysql_error()); $_SESSION['username'] = $username; $_SESSION['password'] = $password; if($remember_me == "true"){ setcookie("remember", "remember", time()+60*60*24*100, "/"); setcookie("rusername", $_SESSION['username'], time()+60*60*24*100, "/"); setcookie("rpassword", sha1("zomq".$_SESSION['password']), time()+60*60*24*100, "/"); } $sql3 = mysql_query("UPDATE users SET lastvisit = '".$date_full."' WHERE name = '".$username."'") or die(mysql_error()); header("location:security_check.php"); exit; } } } } } if(isset($_GET['error'])){ $errorno = $_GET['error']; if($errorno == 1){ $login_error = "Invalid username or password."; } elseif($errorno == 2){ $login_error = "Invalid username or password."; } elseif(isset($_GET['ageLimit']) && $_GET['ageLimit'] == "true"){ $login_error = "You are too young to register."; } } ?> <?php if(isset($login_error)){ echo "\n<div class=\"action-error flash-message\">\n <div class=\"rounded\">\n <ul>\n <li>".$login_error."</li>\n </ul>\n </div>\n</div>\n"; } ?> <form action="login.php?do=process_login" method="post" class="login-habblet"> <input tabindex="1" type="text" class="login-field" name="username" id="login-username" value="Username" /> <input tabindex="2" type="password" class="login-field" name="password" id="login-password" value="Password" /> <input type="submit" value="Sign in" class="submit" id="login-submit-button"/> <a href="#" id="login-submit-new-button" class="new-button" style="float: left; margin-left: 0;display:none"><b style="padding-left: 10px; padding-right: 7px; width: 55px">Sign in</b><i></i></a> </li> <li class="no-label"> <input tabindex="3" type="checkbox" name="_login_remember_me" id="login-remember-me" value="true"/> <label for="login-remember-me">Remember me</label> </li> <li class="no-label"> <a href="register.php" class="login-register-link"><span>Register</span></a> </li> <li class="no-label"> <a href="forgot.php" id="forgot-password"><span>Forgot</span></a> </li> </ul> </form> <?php include('footer.php'); } else { } ?>
Results 1 to 10 of 24
Thread: recode my php login? :)
-
recode my php login? :)
Last edited by Flisker; 23-09-2008 at 08:23 PM.
-
What's wrong with it?
-
Research SQL Injection, as it is possible at the moment.
If you dont allow certain characters in usernames like ' or " that would make it far harder to SQL inject and you could filter those out using preg_match or even str_replace. If you search SQL Injection on google and you can also look up get_magic_quotes_gpc and mysql_real_escape_string (PHP Functions) to help prevent sql injection.
Next time when you post your code you may want to leave out a few small bits of information like:
setcookie("rpassword", sha1("zomq".$_SESSION['password']), time()+60*60*24*100, "/");
As now we all know you encrypt passwords using sha1 with zomq infront of it, should someone be able to get hold of the encrypted data, and manage to find the original password then they need only take off zomq from infront of it to login as the user. Its extemely unlikly, but better safe than sorry. Just replace the line you omited when posting with a comment like // Line ommited for security, setcookie() is used.
Hope this helps.
-
No offense but I highly doubt you coded this as the coding there is quite clean and properly done. Also you wouldn't ask someone to re-code it if you can already do it..
-
Originally Posted by Excellent1
Notice the class="login-habblet"
it's a habbo based login, either for a retro or other habbo based login.
I'm guessing it's from a retro CMS login that's insecure.Last edited by kreechin; 21-08-2008 at 12:16 AM.
So A Kiss Is Out Of The Question Then..?
♥ My Boy <sinlge> Tbh ♥
This love isn't good unless it's me and you
Complicated is the whole point. x
Theres nothing scarier than getting something you want because then you have something to lose..
-
22-09-2008, 02:18 PM #6
And that he didn't code. The script he posted was taken from holocms, see: Originally Posted by kreechin
http://svn.assembla.com/svn/holocms3/holo/index.php
tut tut.. -rep for lieing.I'm not crazy, ask my toaster.
-
I've recoded it for you.
PHP Code:<?php
session_start();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
die();die();die();die();die();die();die();
?>
-
22-09-2008, 08:30 PM #8
Job well done :eusa_clap. Originally Posted by Jackboy
I'm not crazy, ask my toaster.
-
PHP Code:
<?php
echo "Oops, failure";
exit();
?>Back for a while.
-
Why bump and oldddd thread? Originally Posted by HotelUser
Why don't you just do it the easy and better way, :\ Originally Posted by Excellent2
PHP Code:<?php
exit( "Oops, failure." );
?>
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts