diff options
| author | Dries Buytaert <dries@buytaert.net> | 2005-09-19 19:14:54 +0000 |
|---|---|---|
| committer | Dries Buytaert <dries@buytaert.net> | 2005-09-19 19:14:54 +0000 |
| commit | eedb392c7656aa84e8e06c64a9ba1534c55bab4e (patch) | |
| tree | b0a00dcd7a777ec41c3b5fdba3a927a2963f1d9d | |
| parent | 2b3126b2ccfc51c44ede6f0675626d83527c1778 (diff) | |
| download | brdo-eedb392c7656aa84e8e06c64a9ba1534c55bab4e.tar.gz brdo-eedb392c7656aa84e8e06c64a9ba1534c55bab4e.tar.bz2 | |
- Patch #28420 by Jeremy: add the poster's IP/hostname to the /mix/.
| -rw-r--r-- | includes/common.inc | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/includes/common.inc b/includes/common.inc index f8922ab2d..244e2e803 100644 --- a/includes/common.inc +++ b/includes/common.inc @@ -1057,7 +1057,7 @@ function form_token($key) { } // the verification token is an md5 hash of the form key and our private key - return form_hidden('form_token', md5($key . variable_get('drupal_private_key', ''))); + return form_hidden('form_token', md5($_SERVER['REMOTE_ADDR'] . $key . variable_get('drupal_private_key', ''))); } /** @@ -1080,7 +1080,7 @@ function form_validate($edit, $key, $error_message = NULL) { $error = t('Validation error, please try again. If this error persists, please contact the site administrator.'); } - if ($edit['form_token'] != md5($key . variable_get('drupal_private_key', ''))) { + if ($edit['form_token'] != md5($_SERVER['REMOTE_ADDR'] . $key . variable_get('drupal_private_key', ''))) { // setting this error will cause the form to fail validation form_set_error('form_token', $error); } |