From 181ef0c6d2c727ed119df84e5d19fea324829075 Mon Sep 17 00:00:00 2001
From: xisi <chaeldarrs@gmail.com>
Date: Tue, 28 Jan 2014 10:31:53 -0500
Subject: [PATCH] security config mask

---
 public/index.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/public/index.php b/public/index.php
index cb99e3fd..7a972a8a 100644
--- a/public/index.php
+++ b/public/index.php
@@ -41,7 +41,8 @@ define("BASEPATH", dirname(__FILE__) . "/");
 
 // Include our configuration (holding defines for the requires)
 if (!include_once(BASEPATH . 'include/config/global.inc.php')) die('Unable to load site configuration');
-if (!include_once(BASEPATH . 'include/config/security.inc.php')) die('Unable to load security configuration');
+if (!include_once(BASEPATH . 'include/config/security.inc.dist.php')) die('Unable to load security configuration');
+if (@file_exists(BASEPATH . 'include/config/security.inc.php')) include_once(BASEPATH . 'include/config/security.inc.php');
 
 // switch to https if config option is enabled
 $hts = ($config['strict__https_only'] && (!empty($_SERVER['QUERY_STRING']))) ? "https://".$_SERVER['SERVER_NAME'].$_SERVER['SCRIPT_NAME']."?".$_SERVER['QUERY_STRING'] : "https://".$_SERVER['SERVER_NAME'].$_SERVER['SCRIPT_NAME'];