![borracho](http://static.forosdelweb.com/fdwtheme/images/smilies/borracho.png)
mas o menos la cosa esta así:
Código PHP:
<?
$url = explode("?",$_SERVER['HTTP_REFERER']);
$pag_referida=$url[0];
$redir=$pag_referida;
if ($_SERVER['HTTP_REFERER'] == ""){
die ("Error cod.:1 - Acceso incorrecto!");
exit;
}
if(isset($power_a)){
if ($power_a > 3){
header("Location: user-login.php?error=1");
}
}
session_start() ;
include("config.php");
$db = mysql_connect($host, $usuario,$password); /// conecto a la db
mysql_select_db($database,$db); // selecion de bd
$sql = "SELECT * FROM fw_admin where admin_pass = '$pass' and admin_user = '$user'";
$result = mysql_query($sql,$db);
$myrow = mysql_fetch_array($result);
$power_a= $myrow[admin_poder];
if ($power_a == "3"){
mail("[email protected]","Ingreso Fallido","
$user esta intentando acceder al sistema perseo o esta atacando la Base de Datos<br>
El password que intenta introducir es: $pass. ","FROM: [email][email protected][/email]");
header("Location: user-login.php?error=1");
}
if ($myrow["admin_user"] <> ""){
session_start();
session_register('power_a');
session_register('pass');
session_register('user');
} else {
mail("[email protected]","Ingreso Fallido","
$user esta intentando acceder al sistema perseo o esta atacando la Base de Datos<br>
El password que intenta introducir es: $pass. ","FROM: [email][email protected][/email]");
header("Location: $redir?error=0");
}
?>
graxxx