'; $row = mysql_fetch_assoc(mysql_query($sql)); if($row){ if($row['encrypt_password'] != $row['passwort'] && md5($password) == $row['passwort']){ setPassword($username, $password); return true; } else{ return $row['encrypt_password'] == $row['passwort']; } } else{ return false; } } function setCookies($nick_name, $password){ checkCookies($nick_name, $_COOKIE['yps']); $row = mysql_fetch_assoc(mysql_query('select SHA1(AES_ENCRYPT(\''.$password.'\',\''.$GLOBALS['PW_AES_KEY'].'\')) as pw')); setcookie('name',$nick_name,time()+864000); setcookie('passwort',$row['pw'],time()+864000); setcookie('yps',$nick_name.','.md5($nick_name),time()+864000); } function setPassword($username, $password){ $sql = 'UPDATE user set passwort = SHA1(AES_ENCRYPT(\''.$password.'\',\''.$GLOBALS['PW_AES_KEY'].'\')) where nickname = \''.$username.'\''; // echo $sql.'
'; mysql_query($sql); } function encryptPassword($password){ $sql = 'SELECT SHA1(AES_ENCRYPT(\''.$password.'\',\''.$GLOBALS['PW_AES_KEY'].'\')) as pw'; $result = mysql_fetch_assoc(mysql_query($sql)); return $result['pw']; } ?>