if(isset($_POST['login'])) { $username = mysql_real_escape_string($_POST['use

1.     if(isset($_POST['login'])) {
2.     $username = mysql_real_escape_string($_POST['username']);
3.     $password = $_POST['password'];
4.  
5.         $salt = substr($password, rand(0,30), 10);
6.     $enc_password = hash('sha512', $salt, $password);
7.     $q = "SELECT * FROM user WHERE username='$username' AND password='$enc_password'";
8.         $res = mysql_query($q) or die(mysql_error());
9.        
10.         if(mysql_num_rows($res) < 1 && !empty($username) && !empty($enc_password)) {
11.             header('Location: user.php?loginerror=');
12.             exit;
13.         }
14.        
15.         while($row = mysql_fetch_array($res)) {
16.        
17.         $_SESSION['id']     = mysql_real_escape_string($row['id']);
18.         $_SESSION['user']   = mysql_real_escape_string($row['username']);
19.         $_SESSION['flag']   = mysql_real_escape_string($row['flag']);
20.        
21.             header('Location: user.php');
22.             exit;
23.         }
24.     }