From 774e27caf5a8e4177b58006f54e31d9e94b14989 Mon Sep 17 00:00:00 2001
From: Michael Save <savetheinternet@tinyboard.org>
Date: Tue, 29 Jan 2013 22:13:35 +1100
Subject: [PATCH] Use === operator in authentication.

---
 inc/mod/auth.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/inc/mod/auth.php b/inc/mod/auth.php
index f594af4b..8fb01ecb 100644
--- a/inc/mod/auth.php
+++ b/inc/mod/auth.php
@@ -49,7 +49,7 @@ function login($username, $password, $makehash=true) {
 			'username' => $username,
 			'hash' => mkhash($username, $password),
 			'boards' => explode(',', $user['boards'])
-			);
+		);
 	} else return false;
 }
 
@@ -108,7 +108,7 @@ if (isset($_COOKIE[$config['cookies']['mod']])) {
 	$user = $query->fetch();
 	
 	// validate password hash
-	if ($cookie[1] != mkhash($cookie[0], $user['password'], $cookie[2])) {
+	if ($cookie[1] !== mkhash($cookie[0], $user['password'], $cookie[2])) {
 		// Malformed cookies
 		destroyCookies();
 		error($config['error']['malformed']);