diff --git a/inc/actions.php b/inc/actions.php
index 1a0ae4028c19d740a409a5cb6c516200e0d1d3b6..ddfafc55459d5b3345c7a55e094b0d079ef3da7b 100644
--- a/inc/actions.php
+++ b/inc/actions.php
@@ -101,7 +101,7 @@ function act_dispatch(){
             if(checkSecurityToken()){
                 $ACT = act_save($ACT);
             }else{
-                $ACT = 'show';
+                $ACT = 'preview';
             }
         }
 
diff --git a/inc/common.php b/inc/common.php
index 39af439f83dd344fd44587a5b3b5983da4ffd99e..0c769c50da9534b97b946affeb30f73613ac4e35 100644
--- a/inc/common.php
+++ b/inc/common.php
@@ -56,7 +56,7 @@ function stripctl($string){
  * @return  string
  */
 function getSecurityToken(){
-    return md5(auth_cookiesalt().session_id());
+    return md5(auth_cookiesalt().session_id().$_SERVER['REMOTE_USER']);
 }
 
 /**