Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
yosoyhendrix
/
Module-Util
-ын хуулбар https://github.com/OpenGamePanel/Module-Util
1
0
Салаа 0
Файлууд Асуудлууд 0 Мэдлэгийн сан
Мод: 31a03b550c
Салаанууд Тагууд
Module-Util
/
modules
/
util
/
network_tools.php

network_tools.php 4.6 KB
Түүх Анхны өгөгдөл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125 
  1. <?php
    2. 

  2. /*
    3. 

  3.  *
    4. 

  4.  * OGP - Open Game Panel
    5. 

  5.  * Copyright (C) 2008 - 2017 The OGP Development Team
    6. 

  6.  *
    7. 

  7.  * http://www.opengamepanel.org/
    8. 

  8.  *
    9. 

  9.  * This program is free software; you can redistribute it and/or
    10. 

  10.  * modify it under the terms of the GNU General Public License
    11. 

  11.  * as published by the Free Software Foundation; either version 2
    12. 

  12.  * of the License, or any later version.
    13. 

  13.  *
    14. 

  14.  * This program is distributed in the hope that it will be useful,
    15. 

  15.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    16. 

  16.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    17. 

  17.  * GNU General Public License for more details.
    18. 

  18.  *
    19. 

  19.  * You should have received a copy of the GNU General Public License
    20. 

  20.  * along with this program; if not, write to the Free Software
    21. 

  21.  * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.
    22. 

  22.  *
    23. 

  23.  */
    24. 

  24. 

  25. 	include 'util_config.php';
    26. 

  26. 	
    27. 

  27. 	session_name($sessionName);
    28. 

  28. 	session_start();
    29. 

  29. 	
    30. 

  30. 	if(!empty($_SESSION['user_id'])){
    31. 

  31. 		// This entire section is nothing but a big, messy, workaround.
    32. 

  32. 		// Make ogpLang happy.
    33. 

  33. 		$_REQUEST['m'] = 'util';
    34. 

  34. 		// We need to change directory to be able to include lib_remote and make a database connection without any errors
    35. 

  35. 		// This is becasue the following files include other files via their relative path rather than absolute path... could be fixed by editing them... but until then, this is just a hacky workaround.
    36. 

  36. 		$cwd = getcwd();
    37. 

  37. 		if(chdir('../../') === true){
    38. 

  38. 			require_once('includes/config.inc.php');
    39. 

  39. 			require_once('includes/functions.php');
    40. 

  40. 			require_once('includes/helpers.php');
    41. 

  41. 			include_once("includes/lang.php");
    42. 

  42. 			ogpLang();
    43. 

  43. 			
    44. 

  44. 			require_once('includes/lib_remote.php');
    45. 

  45. 			$db = createDatabaseConnection($db_type, $db_host, $db_user, $db_pass, $db_name, $table_prefix);
    46. 

  46. 		}else{
    47. 

  47. 			die(get_lang('chdir_failed'));
    48. 

  48. 		}
    49. 

  49. 		
    50. 

  50. 		if(chdir($cwd) === false){
    51. 

  51. 			die(get_lang('chdir_failed'));
    52. 

  52. 		}
    53. 

  53. 		
    54. 

  54. 		// Actual script functions now.
    55. 

  55. 		$userInfo = $db->getUserById($_SESSION['user_id']);
    56. 

  56. 		$userRole = $userInfo['users_role'];
    57. 

  57. 		
    58. 

  58. 		$command = trim($_POST['command']);
    59. 

  59. 		$target = trim($_POST['remote_target']);
    60. 

  60. 		
    61. 

  61. 		// Check if the specified agent exists. If it does, assign it to $servers. Otherwise, return that it's an invalid agent.
    62. 

  62. 		if(($server = $db->getRemoteServerById($_POST['agent'])) === false){
    63. 

  63. 			die(get_lang('agent_invalid'));
    64. 

  64. 		}
    65. 

  65. 		
    66. 

  66. 		$remote = new OGPRemoteLibrary($server['agent_ip'], $server['agent_port'], $server['encryption_key'], 60);
    67. 

  67. 		
    68. 

  68. 		if($remote->status_chk() === 0){
    69. 

  69. 			echo get_lang('networktools_agent_offline');
    70. 

  70. 		}elseif(empty($target)){
    71. 

  71. 			echo get_lang('target_empty');
    72. 

  72. 		}elseif(empty($command)){
    73. 

  73. 			echo get_lang('command_empty');
    74. 

  74. 		}else{
    75. 

  75. 			$os = preg_match("/CYGWIN/", $remote->what_os()) ? 'windows' : 'linux';
    76. 

  76. 			
    77. 

  77. 			// Loop over $availableCommands from util_config.php
    78. 

  78. 			// Assign a variable, $allowAccess based on the current user's role and if the config file states the user's role is allowed access to this command.
    79. 

  79. 			for($x = 0; $x < count($availableCommands); ++$x){
    80. 

  80. 				if($availableCommands[$x]['title'] == $command){
    81. 

  81. 					$command = $availableCommands[$x][$os];
    82. 

  82. 					$allowAccess  = $availableCommands[$x][$userRole];
    83. 

  83. 				}
    84. 

  84. 			}
    85. 

  85. 			
    86. 

  86. 			if(isset($allowAccess) && $allowAccess === true){
    87. 

  87. 				// Check the command is available to us. If it's not, echo command_unavilable
    88. 

  88. 				$which = $remote->exec('which '.$command);
    89. 

  89. 				if(empty($which)){
    90. 

  90. 					echo get_lang('command_unavilable');
    91. 

  91. 				}else{
    92. 

  92. 					// Not completely necessary - gethostbyaddr(gethostbyname()) will return false if it's anything that's not valid.
    93. 

  93. 					// This is mostly for logging attempted arbitrary commands.
    94. 

  94. 					if(strpbrk($target, $blockedCharacters)){
    95. 

  95. 						if($logMaliciousUsage){
    96. 

  96. 							$db->logger(get_lang_f('command_bad_characters', $command, htmlentities($target)));
    97. 

  97. 						}
    98. 

  98. 						echo get_lang('command_hacking_attempt');
    99. 

  99. 					}else{
    100. 

  100. 						$target = gethostbyaddr(gethostbyname($target));
    101. 

  101. 						if(!$target){
    102. 

  102. 							echo get_lang('target_invalid');
    103. 

  103. 						}else{
    104. 

  104. 							$exec = $remote->exec($command.' '.$target);
    105. 

  105. 							echo ($exec === null) ? get_lang('exec_failed') : htmlentities(trim($exec));
    106. 

  106. 							if($logAllUsage){
    107. 

  107. 								$db->logger(get_lang_f('command_executed', $command, htmlentities($target)));
    108. 

  108. 							}
    109. 

  109. 						}
    110. 

  110. 					}
    111. 

  111. 				}
    112. 

  112. 			}else{
    113. 

  113. 				// If the user isn't allowed access but they've somehow got this far then they've changed the value="" attr.
    114. 

  114. 				// return with command_no_permissions and log the event.
    115. 

  115. 				echo get_lang('command_no_access');
    116. 

  116. 				if($logMaliciousUsage){
    117. 

  117. 					$db->logger(get_lang_f('command_no_permissions', $command, htmlentities($target)));
    118. 

  118. 				}
    119. 

  119. 			}	//else allowAccess
    120. 

  120. 		}	// else status_chk / empty target / empty command
    121. 

  121. 	}else{//_SESSION check.
    122. 

  122. 		header('HTTP/1.0 403 Forbidden');
    123. 

  123. 		exit;
    124. 

  124. 	}
    125. 

  125. ?>
    126.