<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
// The user is not server administrator
$messageid = hmailGetVar("messageid", 0);
$obServerMessage = $obBaseApp->Settings->ServerMessages->ItemByDBID($messageid);
$messagename = $obServerMessage->Name;
$messagetext = $obServerMessage->Text;
?>
<h1><?php
EchoTranslation("Server message");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
<?php
PrintHidden("page", "background_servermessage_save");
PrintHidden("messageid", "{$messageid}");
?>
<div class="tabber">
<div class="tabbertab">
<h2><?php
EchoTranslation("General");
$actionObj->Body = hmailGetVar("Body", "");
$actionObj->HeaderName = hmailGetVar("HeaderName", "");
switch ($type) {
case eRASetHeaderValue:
$actionObj->Value = hmailGetVar("Value", "");
break;
case eRABindToAddress:
$actionObj->Value = hmailGetVar("BindToAddress", "");
break;
}
$actionObj->Type = $type;
$actionObj->Save();
$rule->Save();
header("Location: {$rule_link}");
die;
} else {
if ($savetype == "rule") {
$rule->Name = hmailGetVar("Name", "");
$rule->Active = hmailGetVar("Active", "") == "1";
$rule->UseAND = hmailGetVar("UseAND", "") == "1";
$rule->Save();
$ruleid = $rule->ID;
// can't re-use rule_link since the rule id might be new (if add)
header("Location: index.php?page=rule&action=edit&domainid={$domainid}&accountid={$accountid}&ruleid={$ruleid}");
die;
}
}
}
?>
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
$username = hmailGetVar("username", "");
$password = hmailGetVar("password", "");
if (Login($username, $password)) {
header("refresh: 0; url=" . $hmail_config['rooturl']);
exit;
} else {
// Login failed.
LoginError();
}
function Login($username, $password)
{
global $obBaseApp;
if ($username == "" || $password == "") {
LoginError();
}
$obAccount = $obBaseApp->Authenticate($username, $password);
if (!isset($obAccount)) {
LoginError();
}
$_SESSION['session_loggedin'] = 1;
$_SESSION['session_adminlevel'] = $obAccount->AdminLevel();
$_SESSION['session_username'] = $obAccount->Address;
$_SESSION['session_password'] = $password;
$_SESSION['session_domainid'] = $obAccount->DomainID();
$_SESSION['session_accountid'] = $obAccount->ID();
return true;
if (hmailGetVar("SMTPRelayerUseSSL", "") != "") {
$obSettings->SetSMTPRelayerPassword(hmailGetVar("SMTPRelayerUseSSL", ""));
}
$obSettings->RuleLoopLimit = hmailGetVar("smtprulelooplimit", 0);
$obSettings->MaxMessageSize = hmailGetVar("maxmessagesize", 0);
$obSettings->SMTPDeliveryBindToIP = hmailGetVar("smtpdeliverybindtoip", "");
$obSettings->MaxSMTPRecipientsInBatch = hmailGetVar("maxsmtprecipientsinbatch", "0");
// RFC compliance
$obSettings->AllowSMTPAuthPlain = hmailGetVar("AllowSMTPAuthPlain", 0);
$obSettings->DenyMailFromNull = hmailGetVar("AllowMailFromNull", 0) == "0";
$obSettings->AllowIncorrectLineEndings = hmailGetVar("AllowIncorrectLineEndings", 0);
$obSettings->DisconnectInvalidClients = hmailGetVar("DisconnectInvalidClients", 0);
$obSettings->MaxNumberOfInvalidCommands = hmailGetVar("MaxNumberOfInvalidCommands", 0);
$obSettings->SendStatistics = hmailGetVar("SendStatistics", 0);
$obSettings->AddDeliveredToHeader = hmailGetVar("AddDeliveredToHeader", 0);
$obSettings->MaxNumberOfMXHosts = hmailGetVar("MaxNumberOfMXHosts", 15);
}
// General
$maxsmtpconnections = $obSettings->MaxSMTPConnections;
$welcomesmtp = $obSettings->WelcomeSMTP;
// Delivery of email
$smtpnooftries = $obSettings->SMTPNoOfTries;
$smtpminutesbetweentry = $obSettings->SMTPMinutesBetweenTry;
$HostName = $obSettings->HostName;
$smtprelayer = $obSettings->SMTPRelayer;
$smtprelayerport = $obSettings->SMTPRelayerPort;
$SMTPRelayerRequiresAuthentication = $obSettings->SMTPRelayerRequiresAuthentication;
$SMTPRelayerUseSSL = $obSettings->SMTPRelayerUseSSL;
$SMTPRelayerUsername = $obSettings->SMTPRelayerUsername;
$smtprulelooplimit = $obSettings->RuleLoopLimit;
$maxmessagesize = $obSettings->MaxMessageSize;
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->WelcomeIMAP = hmailGetVar("welcomeimap", 0);
$obSettings->MaxIMAPConnections = hmailGetVar("MaxIMAPConnections", 0);
$obSettings->IMAPSortEnabled = hmailGetVar("IMAPSortEnabled", 0);
$obSettings->IMAPQuotaEnabled = hmailGetVar("IMAPQuotaEnabled", 0);
$obSettings->IMAPIdleEnabled = hmailGetVar("IMAPIdleEnabled", 0);
$obSettings->IMAPACLEnabled = hmailGetVar("IMAPACLEnabled", 0);
$obSettings->IMAPSASLPlainEnabled = hmailGetVar("IMAPSASLPlainEnabled", 0);
$obSettings->IMAPSASLInitialResponseEnabled = hmailGetVar("IMAPSASLInitialResponseEnabled", 0);
$obSettings->IMAPMasterUser = hmailGetVar("IMAPMasterUser", "");
$obSettings->IMAPHierarchyDelimiter = hmailGetVar("IMAPHierarchyDelimiter", "");
}
$welcomeimap = $obSettings->WelcomeIMAP;
$MaxIMAPConnections = $obSettings->MaxIMAPConnections;
$IMAPSortEnabled = $obSettings->IMAPSortEnabled;
$IMAPQuotaEnabled = $obSettings->IMAPQuotaEnabled;
$IMAPIdleEnabled = $obSettings->IMAPIdleEnabled;
$IMAPACLEnabled = $obSettings->IMAPACLEnabled;
$IMAPSASLPlainEnabled = $obSettings->IMAPSASLPlainEnabled;
$IMAPSASLInitialResponseEnabled = $obSettings->IMAPSASLInitialResponseEnabled;
$IMAPMasterUser = $obSettings->IMAPMasterUser;
$IMAPHierarchyDelimiter = $obSettings->IMAPHierarchyDelimiter;
?>
<h1><?php
EchoTranslation("IMAP");
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
$distributionlistid = hmailGetVar("distributionlistid", 0);
$recipientid = hmailGetVar("recipientid", 0);
$domainid = hmailGetVar("domainid", 0);
$action = hmailGetVar("action", "");
$recipientaddress = hmailGetVar("recipientaddress", "");
if (hmailGetAdminLevel() == 0) {
hmailHackingAttemp();
}
if (hmailGetAdminLevel() == 1 && $domainid != hmailGetDomainID()) {
hmailHackingAttemp();
}
// Domain admin but not for this domain.
$obDomain = $obBaseApp->Domains->ItemByDBID($domainid);
$obList = $obDomain->DistributionLists->ItemByDBID($distributionlistid);
if ($action == "edit") {
$obRecipient = $obList->Recipients->ItemByDBID($recipientid);
} elseif ($action == "add") {
$obRecipient = $obList->Recipients->Add();
} elseif ($action == "delete") {
$obRecipient = $obList->Recipients->ItemByDBID($recipientid);
$obRecipient->Delete();
header("Location: index.php?page=distributionlist_recipients&domainid={$domainid}&distributionlistid={$distributionlistid}");
exit;
}
$obRecipient->RecipientAddress = $recipientaddress;
$obRecipient->Save();
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
// The user is not server administrator.
$TestType = hmailGetVar("TestType", "");
$AntiVirusSettings = $obBaseApp->Settings->AntiVirus;
$result = "";
$message = "";
switch ($TestType) {
case "ClamWin":
$Executable = hmailGetVar("Executable", "");
$DatabaseFolder = hmailGetVar("DatabaseFolder", "");
$result = $AntiVirusSettings->TestClamWinScanner($Executable, $DatabaseFolder, $message);
break;
case "ClamAV":
$Hostname = hmailGetVar("Hostname", "localhost");
$Port = hmailGetVar("Port", 783);
$result = $AntiVirusSettings->TestClamAVScanner($Hostname, $Port, $message);
break;
case "External":
$Executable = hmailGetVar("Executable", "");
$ReturnValue = hmailGetVar("ReturnValue", 0);
$result = $AntiVirusSettings->TestCustomerScanner($Executable, $ReturnValue, $message);
break;
default:
die;
}
echo $result;
<?php
error_reporting(E_ALL);
if (!file_exists("config.php")) {
echo "Please rename config-dist.php to config.php. The file is found in the PHPWebAdmin root folder.";
die;
}
define('IN_WEBADMIN', true);
require_once "config.php";
require_once "include/initialization_test.php";
require_once "initialize.php";
set_exception_handler("ExceptionHandler");
set_error_handler("ErrorHandler");
$page = hmailGetVar("page");
if ($page == "") {
$page = "frontpage";
}
$isbackground = substr($page, 0, 10) == "background";
if ($isbackground) {
$page = "{$page}.php";
} else {
$page = "hm_{$page}.php";
}
// Check that the page really exists.
$page = stripslashes($page);
$page = basename($page, ".php");
if (!file_exists('./' . $page . '.php')) {
hmailHackingAttemp();
}
// If it's a background page, run here.
if ($isbackground) {
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->MaxPOP3Connections = hmailGetVar("maxpop3connections", 0);
$obSettings->WelcomePOP3 = hmailGetVar("welcomepop3", 0);
}
$maxpop3connections = $obSettings->MaxPOP3Connections;
$welcomepop3 = $obSettings->WelcomePOP3;
?>
<h1><?php
EchoTranslation("POP3");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
<?php
PrintHidden("page", "pop3");
PrintHidden("action", "save");
?>
<div class="tabber">
$antiSpamSettings->SpamAssassinPort = hmailGetVar("SpamAssassinPort", 0);
$antiSpamSettings->SpamAssassinMergeScore = hmailGetVar("SpamAssassinMergeScore", 0);
$antiSpamSettings->SpamAssassinScore = hmailGetVar("SpamAssassinScore", 0);
$antiSpamSettings->UseSPF = hmailGetVar("usespf", 0);
$antiSpamSettings->UseSPFScore = hmailGetVar("usespfscore", 0);
$antiSpamSettings->UseMXChecks = hmailGetVar("usemxchecks", 0);
$antiSpamSettings->UseMXChecksScore = hmailGetVar("usemxchecksscore", 0);
$antiSpamSettings->CheckHostInHelo = hmailGetVar("checkhostinhelo", 0);
$antiSpamSettings->CheckHostInHeloScore = hmailGetVar("checkhostinheloscore", 0);
$antiSpamSettings->AddHeaderSpam = hmailGetVar("AddHeaderSpam", 0);
$antiSpamSettings->AddHeaderReason = hmailGetVar("AddHeaderReason", 0);
$antiSpamSettings->PrependSubject = hmailGetVar("PrependSubject", 0);
$antiSpamSettings->PrependSubjectText = hmailGetVar("PrependSubjectText", "");
$antiSpamSettings->MaximumMessageSize = hmailGetVar("MaximumMessageSize", 0);
$antiSpamSettings->DKIMVerificationEnabled = hmailGetVar("DKIMVerificationEnabled", 0);
$antiSpamSettings->DKIMVerificationFailureScore = hmailGetVar("DKIMVerificationFailureScore", 0);
}
$SpamMarkThreshold = $antiSpamSettings->SpamMarkThreshold;
$SpamDeleteThreshold = $antiSpamSettings->SpamDeleteThreshold;
$MaximumMessageSize = $antiSpamSettings->MaximumMessageSize;
$SpamAssassinEnabled = $antiSpamSettings->SpamAssassinEnabled;
$SpamAssassinHost = $antiSpamSettings->SpamAssassinHost;
$SpamAssassinPort = $antiSpamSettings->SpamAssassinPort;
$SpamAssassinMergeScore = $antiSpamSettings->SpamAssassinMergeScore;
$SpamAssassinScore = $antiSpamSettings->SpamAssassinScore;
$usespf = $antiSpamSettings->UseSPF;
$usespfscore = $antiSpamSettings->UseSPFScore;
$usemxchecks = $antiSpamSettings->UseMXChecks;
$usemxchecksscore = $antiSpamSettings->UseMXChecksScore;
$checkhostinhelo = $antiSpamSettings->CheckHostInHelo;
$checkhostinheloscore = $antiSpamSettings->CheckHostInHeloScore;
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->SslCipherList = hmailGetVar("SslCipherList", "");
}
$SslCipherList = $obSettings->SslCipherList;
?>
<h1><?php
EchoTranslation("Security");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
<?php
PrintHidden("page", "security");
PrintHidden("action", "save");
?>
<div class="tabber">
<div class="tabbertab">
<h2><?php
$SignatureMethod = hmailGetVar("SignatureMethod", "1");
$AddSignaturesToLocalMail = hmailGetVar("AddSignaturesToLocalMail", "0");
$AddSignaturesToReplies = hmailGetVar("AddSignaturesToReplies", "0");
$MaxAccountSize = hmailGetVar("MaxAccountSize", "0");
$MaxNumberOfAccounts = hmailGetVar("MaxNumberOfAccounts", "0");
$MaxNumberOfAliases = hmailGetVar("MaxNumberOfAliases", "0");
$MaxNumberOfDistributionLists = hmailGetVar("MaxNumberOfDistributionLists", "0");
$MaxNumberOfAccountsEnabled = hmailGetVar("MaxNumberOfAccountsEnabled", "0");
$MaxNumberOfAliasesEnabled = hmailGetVar("MaxNumberOfAliasesEnabled", "0");
$MaxNumberOfDistributionListsEnabled = hmailGetVar("MaxNumberOfDistributionListsEnabled", "0");
$DKIMSignEnabled = hmailGetVar("DKIMSignEnabled", "0");
$DKIMPrivateKeyFile = hmailGetVar("DKIMPrivateKeyFile", "");
$DKIMSelector = hmailGetVar("DKIMSelector", "");
$DKIMHeaderCanonicalizationMethod = hmailGetVar("DKIMHeaderCanonicalizationMethod", "2");
$DKIMBodyCanonicalizationMethod = hmailGetVar("DKIMBodyCanonicalizationMethod", "2");
$DKIMSigningAlgorithm = hmailGetVar("DKIMSigningAlgorithm", "2");
if ($domainactive == "") {
$domainactive = 0;
}
if (hmailGetAdminLevel() == 1 && ($domainid != hmailGetDomainID() || $action != "edit")) {
hmailHackingAttemp();
}
// Domain admin but not for this domain.
if ($action == "edit") {
$obDomain = $obBaseApp->Domains->ItemByDBID($domainid);
} elseif ($action == "add") {
$obDomain = $obBaseApp->Domains->Add();
} elseif ($action == "delete") {
$obDomain = $obBaseApp->Domains->ItemByDBID($domainid);
$obDomain->Delete();
header("Location: index.php?page=domains");
}
$DaysToKeepMessages = hmailGetVar("DaysToKeepMessages", 0);
$DaysToKeepMessagesValue = hmailGetVar("DaysToKeepMessagesValue", 0);
$obFA->Enabled = hmailGetVar("Enabled", 0);
$obFA->Name = hmailGetVar("Name", 0);
$obFA->MinutesBetweenFetch = hmailGetVar("MinutesBetweenFetch", 0);
$obFA->Port = hmailGetVar("Port", 0);
$obFA->ProcessMIMERecipients = hmailGetVar("ProcessMIMERecipients", 0);
$obFA->ProcessMIMEDate = hmailGetVar("ProcessMIMEDate", 0);
$obFA->ServerAddress = hmailGetVar("ServerAddress", 0);
$obFA->ServerType = hmailGetVar("ServerType", 0);
$obFA->Username = hmailGetVar("Username", 0);
$obFA->UseAntiVirus = hmailGetVar("UseAntiVirus", 0);
$obFA->UseAntiSpam = hmailGetVar("UseAntiSpam", 0);
$obFA->EnableRouteRecipients = hmailGetVar("EnableRouteRecipients", 0);
$obFA->ConnectionSecurity = hmailGetVar("ConnectionSecurity", 0);
if (strlen($DaysToKeepMessages) > 0 && $DaysToKeepMessages <= 0) {
$obFA->DaysToKeepMessages = $DaysToKeepMessages;
} else {
$obFA->DaysToKeepMessages = $DaysToKeepMessagesValue;
}
$Password = hmailGetVar("Password", 0);
if (strlen($Password) > 0) {
$obFA->Password = $Password;
}
$obFA->Save();
$faid = $obFA->ID;
header("Location: index.php?page=account_externalaccount&action=edit&domainid={$domainid}&accountid={$accountid}&faid={$faid}");
?>
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
$domainid = hmailGetVar("domainid", 0);
$aliasid = hmailGetVar("aliasid", 0);
$action = hmailGetVar("action", "");
$error_message = hmailGetVar("error_message", "");
if (hmailGetAdminLevel() == 0) {
hmailHackingAttemp();
}
if (hmailGetAdminLevel() == 1 && $domainid != hmailGetDomainID()) {
hmailHackingAttemp();
}
// Domain admin but not for this domain.
$obDomain = $obBaseApp->Domains->ItemByDBID($domainid);
$aliasname = "";
$aliasvalue = "";
$aliasactive = 0;
if ($action == "edit") {
$obAlias = $obDomain->Aliases->ItemByDBID($aliasid);
$aliasname = $obAlias->Name;
$aliasvalue = $obAlias->Value;
$aliasactive = $obAlias->Active;
$aliasname = substr($aliasname, 0, strpos($aliasname, "@"));
}
$domainname = $obDomain->Name;
$aliasactivechecked = hmailCheckedIf1($aliasactive);
?>
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
// The user is not server administrator.
$action = hmailGetVar("action", "");
$id = hmailGetVar("id", 0);
$Name = hmailGetVar("Name", 0);
$CertificateFile = hmailGetVar("CertificateFile", "");
$PrivateKeyFile = hmailGetVar("PrivateKeyFile", "");
$sslCertificates = $obBaseApp->Settings->SSLCertificates;
if ($action == "edit") {
$sslCertificate = $sslCertificates->ItemByDBID($id);
} elseif ($action == "add") {
$sslCertificate = $sslCertificates->Add();
} elseif ($action == "delete") {
$sslCertificates->DeleteByDBID($id);
header("Location: index.php?page=sslcertificates");
}
// Save the changes
$sslCertificate->Name = $Name;
$sslCertificate->CertificateFile = $CertificateFile;
$sslCertificate->PrivateKeyFile = $PrivateKeyFile;
$sslCertificate->Save();
header("Location: index.php?page=sslcertificates");
?>
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
$action = hmailGetVar("action", "");
$domainid = hmailGetVar("domainid", 0);
$accountid = hmailGetVar("accountid", 0);
$ruleid = hmailGetVar("ruleid", 0);
$actionid = hmailGetVar("actionid", 0);
if (!GetHasRuleAccess($domainid, $accountid)) {
hmailHackingAttemp();
}
// The user is not server administrator
include "include/rule_strings.php";
if ($domainid == 0) {
$rule = $obBaseApp->Rules->ItemByDBID($ruleid);
} else {
$rule = $obBaseApp->Domains->ItemByDBID($domainid)->Accounts->ItemByDBID($accountid)->Rules->ItemByDBID($ruleid);
}
if ($action == "edit") {
$ruleAction = $rule->Actions->ItemByDBID($actionid);
$To = $ruleAction->To;
$IMAPFolder = $ruleAction->IMAPFolder;
$ScriptFunction = $ruleAction->ScriptFunction;
$FromName = $ruleAction->FromName;
$FromAddress = $ruleAction->FromAddress;
$Subject = $ruleAction->Subject;
$Body = $ruleAction->Body;
$HeaderName = $ruleAction->HeaderName;
$Value = $ruleAction->Value;
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
$action = hmailGetVar("action", "");
$domainid = hmailGetVar("domainid", 0);
$accountid = hmailGetVar("accountid", 0);
$ruleid = hmailGetVar("ruleid", 0);
// check permissions
if (!GetHasRuleAccess($domainid, $accountid)) {
hmailHackingAttemp();
}
// The user has no rule editing permissions.
include "include/rule_strings.php";
if ($ruleid != 0) {
if ($domainid != 0) {
$domain = $obBaseApp->Domains->ItemByDBID($domainid);
$account = $domain->Accounts->ItemByDBID($accountid);
$rule = $account->Rules->ItemByDBID($ruleid);
} else {
$rule = $obBaseApp->Rules->ItemByDBID($ruleid);
}
$Name = $rule->Name;
$Active = $rule->Active;
$UseAND = $rule->UseAND;
} else {
$Name = "";
$Active = 0;
$UseAND = 1;
}
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->VerifyRemoteSslCertificate = hmailGetVar("VerifyRemoteSslCertificate", 0);
$obSettings->SslCipherList = hmailGetVar("SslCipherList", "");
$obSettings->SslVersion30Enabled = hmailGetVar("SslVersion30Enabled", 0);
$obSettings->TlsVersion10Enabled = hmailGetVar("TlsVersion10Enabled", 0);
$obSettings->TlsVersion11Enabled = hmailGetVar("TlsVersion11Enabled", 0);
$obSettings->TlsVersion12Enabled = hmailGetVar("TlsVersion12Enabled", 0);
}
$VerifyRemoteSslCertificate = $obSettings->VerifyRemoteSslCertificate;
$SslCipherList = $obSettings->SslCipherList;
$SslVersion30Enabled = $obSettings->SslVersion30Enabled;
$TlsVersion10Enabled = $obSettings->TlsVersion10Enabled;
$TlsVersion11Enabled = $obSettings->TlsVersion11Enabled;
$TlsVersion12Enabled = $obSettings->TlsVersion12Enabled;
?>
<h1><?php
EchoTranslation("Security");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
$routedomainname = hmailGetVar("routedomainname", "");
$routetargetsmtphost = hmailGetVar("routetargetsmtphost", "0");
$routetargetsmtpport = hmailGetVar("routetargetsmtpport", "0");
$TreatSenderAsLocalDomain = hmailGetVar("TreatSenderAsLocalDomain", "0");
$TreatRecipientAsLocalDomain = hmailGetVar("TreatRecipientAsLocalDomain", "0");
$routenumberoftries = hmailGetVar("routenumberoftries", "0");
$routemminutesbetweentry = hmailGetVar("routemminutesbetweentry", "0");
$routerequiresauth = hmailGetVar("routerequiresauth", "0");
$routeauthusername = hmailGetVar("routeauthusername", "0");
$routeauthpassword = hmailGetVar("routeauthpassword", "0");
$ConnectionSecurity = hmailGetVar("ConnectionSecurity", "0");
$obRoute->DomainName = $routedomainname;
$obRoute->TargetSMTPHost = $routetargetsmtphost;
$obRoute->TargetSMTPPort = $routetargetsmtpport;
$obRoute->TreatSenderAsLocalDomain = $TreatSenderAsLocalDomain;
$obRoute->TreatRecipientAsLocalDomain = $TreatRecipientAsLocalDomain;
$obRoute->NumberOfTries = $routenumberoftries;
$obRoute->MinutesBetweenTry = $routemminutesbetweentry;
$obRoute->RelayerRequiresAuth = $routerequiresauth;
$obRoute->RelayerAuthUsername = $routeauthusername;
$obRoute->AllAddresses = hmailGetVar("AllAddresses", "0");
$obRoute->ConnectionSecurity = $ConnectionSecurity;
if ($routeauthpassword != "") {
$obRoute->SetRelayerAuthPassword($routeauthpassword);
}
$obRoute->Save();
$routeid = $obRoute->ID;
header("Location: index.php?page=route&action=edit&routeid={$routeid}");
?>
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
// The user is not server administrator.
$action = hmailGetVar("action", "");
$relayid = hmailGetVar("relayid", 0);
if ($action == "edit") {
$obIncomingRelay = $obBaseApp->Settings->IncomingRelays->ItemByDBID($relayid);
} elseif ($action == "add") {
$obIncomingRelay = $obBaseApp->Settings->IncomingRelays->Add();
} elseif ($action == "delete") {
$obBaseApp->Settings->IncomingRelays->DeleteByDBID($relayid);
header("Location: index.php?page=incomingrelays");
}
// Fetch form
$relayname = hmailGetVar("relayname", "0");
$relaylowerip = hmailGetVar("relaylowerip", "0");
$relayupperip = hmailGetVar("relayupperip", "0");
// Save the changes
$obIncomingRelay->Name = $relayname;
$obIncomingRelay->LowerIP = $relaylowerip;
$obIncomingRelay->UpperIP = $relayupperip;
$obIncomingRelay->Save();
$relayid = $obIncomingRelay->ID;
header("Location: index.php?page=incomingrelay&action=edit&relayid={$relayid}");
?>
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
// The user is not server administrator.
$action = hmailGetVar("action", "");
$id = hmailGetVar("id", 0);
$Active = hmailGetVar("Active", 0);
$DNSHost = hmailGetVar("DNSHost", "");
$RejectMessage = hmailGetVar("RejectMessage", "");
$Score = hmailGetVar("Score", 0);
$surblServers = $obBaseApp->Settings->AntiSpam->SURBLServers;
if ($action == "edit") {
$surblServer = $surblServers->ItemByDBID($id);
} elseif ($action == "add") {
$surblServer = $surblServers->Add();
} elseif ($action == "delete") {
$surblServers->DeleteByDBID($id);
header("Location: index.php?page=surblservers");
}
// Save the changes
$surblServer->Active = $Active;
$surblServer->DNSHost = $DNSHost;
$surblServer->RejectMessage = $RejectMessage;
$surblServer->Score = $Score;
$surblServer->Save();
header("Location: index.php?page=surblservers");
exit;
}
}
if ($action == "edit") {
$obAlias = $obDomain->Aliases->ItemByDBID($aliasid);
} elseif ($action == "add") {
$obAlias = $obDomain->Aliases->Add();
} elseif ($action == "delete") {
$obDomain->Aliases->DeleteByDBID($aliasid);
header("Location: index.php?page=aliases&domainid={$domainid}");
exit;
}
$domainname = $obDomain->Name;
$aliasname = hmailGetVar("aliasname", "");
$aliasvalue = hmailGetVar("aliasvalue", "");
$aliasactive = hmailGetVar("aliasactive", "0");
$obAlias->Name = $aliasname . "@" . $domainname;
$obAlias->Value = $aliasvalue;
$obAlias->Active = $aliasactive;
$obAlias->Save();
$aliasid = $obAlias->ID;
header("Location: index.php?page=alias&action=edit&domainid={$domainid}&aliasid={$aliasid}");
function IsAddAllowed($obDomain)
{
if (!$obDomain->MaxNumberOfAliasesEnabled) {
return 0;
}
if ($obDomain->Aliases->Count >= $obDomain->MaxNumberOfAliases) {
return STR_ALIAS_COULD_NOT_BE_ADDED_MAX_REACHED;
}
return 0;
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->MirrorEMailAddress = hmailGetVar("mirroremailaddress", 0);
}
$mirroremailaddress = $obSettings->MirrorEMailAddress;
?>
<h1><?php
EchoTranslation("Mirror");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
<?php
PrintHidden("page", "mirror");
PrintHidden("action", "save");
?>
<div class="tabber">
<div class="tabbertab">
<h2><?php
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != ADMIN_SERVER) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obSettings->AutoBanOnLogonFailure = hmailGetVar("AutoBanOnLogonFailure", 0);
$obSettings->MaxInvalidLogonAttempts = hmailGetVar("MaxInvalidLogonAttempts", 0);
$obSettings->MaxInvalidLogonAttemptsWithin = hmailGetVar("MaxInvalidLogonAttemptsWithin", 0);
$obSettings->AutoBanMinutes = hmailGetVar("AutoBanMinutes", 0);
}
$AutoBanOnLogonFailure = $obSettings->AutoBanOnLogonFailure;
$MaxInvalidLogonAttempts = $obSettings->MaxInvalidLogonAttempts;
$MaxInvalidLogonAttemptsWithin = $obSettings->MaxInvalidLogonAttemptsWithin;
$AutoBanMinutes = $obSettings->AutoBanMinutes;
?>
<h1><?php
EchoTranslation("Auto-ban");
?>
</h1>
<form action="index.php" method="post" onSubmit="return formCheck(this);">
<?php
PrintHidden("page", "autoban");
PrintHidden("action", "save");
function GetStringForDomain($obDomain, $parentid)
{
global $dtree, $dtitem, $domain_root;
$current_domainid = hmailGetVar("domainid", 0);
$current_accountid = hmailGetVar("accountid", 0);
$domainname = $obDomain->Name;
$domainname = PreprocessOutput($domainname);
$domainname = str_replace("'", "\\'", $domainname);
$dtree .= "d.add({$domain_root},{$parentid},'" . $domainname . "','index.php?page=domain&action=edit&domainid=" . $obDomain->ID . "','','','" . "images/server.png','" . "images/server.png');\r\n";
if ($current_domainid != $obDomain->ID && hmailGetAdminLevel() == ADMIN_SERVER) {
// If the user is logged on as a system administrator, only show accounts
// for the currently selected domain.
return;
}
$obAccounts = $obDomain->Accounts();
$AccountsCount = $obAccounts->Count();
$accounts_root = $dtitem++;
$dtree .= "d.add({$accounts_root},{$domain_root},'" . GetStringForJavaScript("Accounts") . " ({$AccountsCount})','index.php?page=accounts&domainid=" . $obDomain->ID . "','','','" . "images/folder.png','" . "images/folder.png');\r\n";
for ($j = 0; $j < $AccountsCount; $j++) {
$obAccount = $obAccounts->Item($j);
$accountaddress = $obAccount->Address;
$accountaddress = PreprocessOutput($accountaddress);
$accountaddress = str_replace("'", "\\'", $accountaddress);
$accountid = $obAccount->ID;
$di = $dtitem++;
$url = htmlentities("index.php?page=account&action=edit&accountid=" . $accountid . "&domainid=" . $obDomain->ID);
$dtree .= "d.add({$di},{$accounts_root},'" . $accountaddress . "','{$url}','','','" . "images/user.png','" . "images/user.png');\r\n";
// Only show sub-nodes for the currently selected account.
if ($current_accountid == $accountid) {
$dtree .= "d.add(" . $dtitem++ . ",{$di},'" . GetStringForJavaScript("External accounts") . "','index.php?page=account_externalaccounts&accountid=" . $accountid . "&domainid=" . $obDomain->ID . "');\r\n";
}
}
$obAliases = $obDomain->Aliases();
$AliasesCount = $obAliases->Count();
$aliases_root = $dtitem++;
$dtree .= "d.add({$aliases_root},{$domain_root},'" . GetStringForJavaScript("Aliases") . " ({$AliasesCount})','index.php?page=aliases&domainid=" . $obDomain->ID . "','','','" . "images/folder.png','" . "images/folder.png');\r\n";
for ($j = 0; $j < $AliasesCount; $j++) {
$obAlias = $obAliases->Item($j);
$aliasname = $obAlias->Name;
$aliasname = PreprocessOutput($aliasname);
$aliasname = str_replace("'", "\\'", $aliasname);
$di = $dtitem++;
$dtree .= "d.add({$di},{$aliases_root},'" . $aliasname . "','index.php?page=alias&action=edit&aliasid=" . $obAlias->ID . "&domainid=" . $obDomain->ID . "','','','" . "images/arrow_switch.png','" . "images/arrow_switch.png');\r\n";
}
$obDistributionLists = $obDomain->DistributionLists();
$DListCount = $obDistributionLists->Count();
$dlist_root = $dtitem++;
$dtree .= "d.add({$dlist_root},{$domain_root},'" . GetStringForJavaScript("Distribution lists") . " ({$DListCount})','index.php?page=distributionlists&domainid=" . $obDomain->ID . "','','','" . "images/folder.png','" . "images/folder.png');\r\n";
for ($j = 0; $j < $DListCount; $j++) {
$obDistributionList = $obDistributionLists->Item($j);
$di = $dtitem++;
$address = PreprocessOutput($obDistributionList->Address);
$address = str_replace("'", "\\'", $address);
$dtree .= "d.add({$di},{$dlist_root},'" . $address . "','index.php?page=distributionlist&action=edit&distributionlistid=" . $obDistributionList->ID . "&domainid=" . $obDomain->ID . "','','','" . "images/arrow_out.png','" . "images/arrow_out.png');\r\n";
$dtree .= "d.add(" . $dtitem++ . ",{$di},'" . GetStringForJavaScript("Members") . " (" . $obDistributionList->Recipients->Count() . ")','index.php?page=distributionlist_recipients&distributionlistid=" . $obDistributionList->ID . "&domainid=" . $obDomain->ID . "');\r\n";
}
}
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$obBackup = $obSettings->Backup();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obBackup->Destination = hmailGetVar("backupdestination", 0);
$obBackup->BackupSettings = hmailGetVar("backupsettings", 0);
$obBackup->BackupDomains = hmailGetVar("backupdomains", 0);
$obBackup->BackupMessages = hmailGetVar("backupmessages", 0);
$obBackup->CompressDestinationFiles = hmailGetVar("backupcompress", 0);
} elseif ($action == "startbackup") {
$obBaseApp->BackupManager->StartBackup();
}
$backupdestination = $obBackup->Destination;
$backupsettings = $obBackup->BackupSettings;
$backupdomains = $obBackup->BackupDomains;
$backupmessages = $obBackup->BackupMessages;
$backupcompress = $obBackup->CompressDestinationFiles;
$backupsettingschecked = hmailCheckedIf1($backupsettings);
$backupdomainschecked = hmailCheckedIf1($backupdomains);
$backupmessageschecked = hmailCheckedIf1($backupmessages);
$backupcompresschecked = hmailCheckedIf1($backupcompress);
?>
<h1><?php
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
?>
<h1><?php
EchoTranslation("Accounts");
?>
</h1>
<?php
$domainid = hmailGetVar("domainid", null);
if (hmailGetAdminLevel() == 0) {
hmailHackingAttemp();
}
// Users are not allowed to show this page.
if (hmailGetAdminLevel() == 1 && $domainid != hmailGetDomainID()) {
hmailHackingAttemp();
}
// Domain admin but not for this domain.
echo '<table border="0" width="100%" cellpadding="5">';
$bgcolor = "#EEEEEE";
$obDomain = $obBaseApp->Domains->ItemByDBID($domainid);
$obAccounts = $obDomain->Accounts();
$Count = $obAccounts->Count();
$str_delete = $obLanguage->String("Remove");
$currentaccountid = hmailGetAccountID();
$str_accountaddress = $obLanguage->String("Address");
$str_maxsizemb = $obLanguage->String("Maximum size (MB)");
}
define("STSMTP", 1);
define("STPOP3", 3);
define("STIMAP", 5);
$obStatus = $obBaseApp->Status();
$serverstate = $obBaseApp->ServerState();
$action = hmailGetVar("action", "");
$statusstarttime = $obStatus->StartTime();
$statusprocessedmessages = $obStatus->ProcessedMessages();
$statusmessageswithvirus = $obStatus->RemovedViruses();
$statusmessageswithspam = $obStatus->RemovedSpamMessages();
$sessions_smtp = $obStatus->SessionCount(STSMTP);
$sessions_pop3 = $obStatus->SessionCount(STPOP3);
$sessions_imap = $obStatus->SessionCount(STIMAP);
if ($action == "control") {
$controlaction = hmailGetVar("controlaction", "");
if ($controlaction == "1") {
$obBaseApp->Start();
} else {
if ($controlaction == "0") {
$obBaseApp->Stop();
}
}
}
switch ($serverstate) {
case 1:
$state = $obLanguage->String("Stopped");
break;
case 2:
$state = $obLanguage->String("Starting");
break;
<?php
if (!defined('IN_WEBADMIN')) {
exit;
}
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
// Domain admin but not for this domain.
$routeid = hmailGetVar("routeid", 0);
$action = hmailGetVar("action", "");
$obRoutes = $obSettings->Routes();
$routetargetsmtpport = 25;
$routenumberoftries = 4;
$routemminutesbetweentry = 60;
$routedomainname = "";
$routetargetsmtphost = "";
$TreatRecipientAsLocalDomain = 0;
$TreatSenderAsLocalDomain = 0;
$ConnectionSecurity = 0;
$routerequiresauth = 0;
$routeauthusername = "";
$AllAddresses = true;
if ($action == "edit") {
$obRoute = $obRoutes->ItemByDBID($routeid);
$routedomainname = $obRoute->DomainName;
$routetargetsmtphost = $obRoute->TargetSMTPHost;
$routetargetsmtpport = $obRoute->TargetSMTPPort;
$TreatRecipientAsLocalDomain = $obRoute->TreatRecipientAsLocalDomain;
$TreatSenderAsLocalDomain = $obRoute->TreatSenderAsLocalDomain;
$routenumberoftries = $obRoute->NumberOfTries;
if (hmailGetAdminLevel() != 2) {
hmailHackingAttemp();
}
$obSettings = $obBaseApp->Settings();
$obLogging = $obSettings->Logging();
$action = hmailGetVar("action", "");
if ($action == "save") {
$obLogging->Enabled = hmailGetVar("logenabled", 0);
$obLogging->LogApplication = hmailGetVar("logapplication", 0);
$obLogging->LogSMTP = hmailGetVar("logsmtp", 0);
$obLogging->LogPOP3 = hmailGetVar("logpop3", 0);
$obLogging->LogIMAP = hmailGetVar("logimap", 0);
$obLogging->LogTCPIP = hmailGetVar("logtcpip", 0);
$obLogging->LogDebug = hmailGetVar("logdebug", 0);
$obLogging->AwstatsEnabled = hmailGetVar("logawstats", 0);
$obLogging->KeepFilesOpen = hmailGetVar("KeepFilesOpen", 0);
}
$logenabled = $obLogging->Enabled;
$logapplication = $obLogging->LogApplication;
$logsmtp = $obLogging->LogSMTP;
$logpop3 = $obLogging->LogPOP3;
$logimap = $obLogging->LogIMAP;
$logtcpip = $obLogging->LogTCPIP;
$logdebug = $obLogging->LogDebug;
$logawstats = $obLogging->AwstatsEnabled;
$KeepFilesOpen = $obLogging->KeepFilesOpen;
?>
<h1><?php
EchoTranslation("Logging");
?>
