diff --git a/django/contrib/admin/sites.py b/django/contrib/admin/sites.py
old mode 100644
new mode 100755
index 49c1e78..3aa0d50
--- a/django/contrib/admin/sites.py
+++ b/django/contrib/admin/sites.py
@@ -297,9 +297,17 @@ class AdminSite(object):
             'current_app': self.name,
             'extra_context': extra_context or {},
         }
+
         if self.logout_template is not None:
             defaults['template_name'] = self.logout_template
-        return logout(request, **defaults)
+
+        if "POST" == request.method:
+            return logout(request, **defaults)
+        else:
+            context = {
+                'title' : _("Are you sure?")
+            }
+            return TemplateResponse(request, 'admin/logout_confirmation.html', context)
 
     @never_cache
     def login(self, request, extra_context=None):
diff --git a/django/contrib/admin/templates/admin/base.html b/django/contrib/admin/templates/admin/base.html
old mode 100644
new mode 100755
index 4b3c429..d792c00
--- a/django/contrib/admin/templates/admin/base.html
+++ b/django/contrib/admin/templates/admin/base.html
@@ -7,6 +7,21 @@
 <!--[if lte IE 7]><link rel="stylesheet" type="text/css" href="{% block stylesheet_ie %}{% static "admin/css/ie.css" %}{% endblock %}" /><![endif]-->
 {% if LANGUAGE_BIDI %}<link rel="stylesheet" type="text/css" href="{% block stylesheet_rtl %}{% static "admin/css/rtl.css" %}{% endblock %}" />{% endif %}
 <script type="text/javascript">window.__admin_media_prefix__ = "{% filter escapejs %}{% static "admin/" %}{% endfilter %}";</script>
+<script type="text/javascript" src="{% static "admin/js/jquery.min.js" %}"></script>
+<script type="text/javascript" src="{% static "admin/js/jquery.init.js" %}"></script>
+
+<script type="text/javascript">
+    (function($) {
+        $(document).ready(function() {
+            $('a[href="{% url 'admin:logout' %}"]').click(function(ev) {
+                ev.preventDefault();
+                $('#logout-form').submit();
+            });
+        });
+    })(django.jQuery);
+</script>
+
+
 {% block extrahead %}{% endblock %}
 {% block blockbots %}<meta name="robots" content="NONE,NOARCHIVE" />{% endblock %}
 </head>
@@ -69,6 +84,6 @@
     {% block footer %}<div id="footer"></div>{% endblock %}
 </div>
 <!-- END Container -->
-
+<form id="logout-form" action="{% url 'admin:logout' %}" method="post">{% csrf_token %}</form>
 </body>
 </html>
diff --git a/django/contrib/admin/templates/admin/logout_confirmation.html b/django/contrib/admin/templates/admin/logout_confirmation.html
new file mode 100755
index 0000000..e49cd71
--- /dev/null
+++ b/django/contrib/admin/templates/admin/logout_confirmation.html
@@ -0,0 +1,21 @@
+{% extends "admin/base_site.html" %}
+{% load i18n %}
+
+{% block breadcrumbs %}
+    <div class="breadcrumbs">
+        <a href="../">{% trans "Home" %}</a> &rsaquo;
+    </div>
+{% endblock %}
+
+
+
+{% block content %}
+    <p>Are you sure you want to logout?</p>
+    <form action="" method="post">
+        {% csrf_token %}
+        <div>
+            <input type="hidden" name="post" value="yes" />
+            <input type="submit" value="{% trans "Yes, I'm sure" %}" />
+        </div>
+    </form>
+{% endblock %}
\ No newline at end of file
diff --git a/django/contrib/admin/templates/registration/password_change_done.html b/django/contrib/admin/templates/registration/password_change_done.html
old mode 100644
new mode 100755
diff --git a/django/contrib/admin/templates/registration/password_change_form.html b/django/contrib/admin/templates/registration/password_change_form.html
old mode 100644
new mode 100755
diff --git a/django/contrib/auth/views.py b/django/contrib/auth/views.py
old mode 100644
new mode 100755