Пример #1
0
 public function configure_dovecot()
 {
     global $conf;
     $config_dir = $conf['dovecot']['config_dir'];
     //* Configure master.cf and add a line for deliver
     if (is_file($config_dir . '/master.cf')) {
         copy($config_dir . '/master.cf', $config_dir . '/master.cf~2');
     }
     if (is_file($config_dir . '/master.cf~')) {
         chmod($config_dir . '/master.cf~2', 0400);
     }
     $content = rf($conf["postfix"]["config_dir"] . '/master.cf');
     // Only add the content if we had not addded it before
     if (!stristr($content, "dovecot/deliver")) {
         $deliver_content = 'dovecot   unix  -       n       n       -       -       pipe' . "\n" . '  flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -f ${sender} -d ${user}@${nexthop}';
         af($conf["postfix"]["config_dir"] . '/master.cf', $deliver_content);
     }
     unset($content);
     unset($deliver_content);
     //* Reconfigure postfix to use dovecot authentication
     // Adding the amavisd commands to the postfix configuration
     $postconf_commands = array('dovecot_destination_recipient_limit = 1', 'virtual_transport = dovecot', 'smtpd_sasl_type = dovecot', 'smtpd_sasl_path = private/auth');
     // Make a backup copy of the main.cf file
     copy($conf["postfix"]["config_dir"] . '/main.cf', $conf["postfix"]["config_dir"] . '/main.cf~3');
     // Executing the postconf commands
     foreach ($postconf_commands as $cmd) {
         $command = "postconf -e '{$cmd}'";
         caselog($command . " &> /dev/null", __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     //* copy dovecot.conf
     $configfile = 'dovecot.conf';
     if (is_file($config_dir . '/' . $configfile)) {
         copy($config_dir . '/' . $configfile, $config_dir . '/' . $configfile . '~');
     }
     copy('tpl/debian6_dovecot.conf.master', $config_dir . '/' . $configfile);
     //* dovecot-sql.conf
     $configfile = 'dovecot-sql.conf';
     if (is_file($config_dir . '/' . $configfile)) {
         copy($config_dir . '/' . $configfile, $config_dir . '/' . $configfile . '~');
     }
     chmod($config_dir . '/' . $configfile . '~', 0400);
     $content = rf('tpl/debian6_dovecot-sql.conf.master');
     $content = str_replace('{mysql_server_ispconfig_user}', $conf['mysql']['ispconfig_user'], $content);
     $content = str_replace('{mysql_server_ispconfig_password}', $conf['mysql']['ispconfig_password'], $content);
     $content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
     $content = str_replace('{mysql_server_host}', $conf['mysql']['host'], $content);
     wf($config_dir . '/' . $configfile, $content);
     chmod($config_dir . '/' . $configfile, 0600);
     chown($config_dir . '/' . $configfile, 'root');
     chgrp($config_dir . '/' . $configfile, 'root');
 }
Пример #2
0
 public function configure_amavis()
 {
     global $conf;
     // amavisd user config file
     $configfile = 'fedora_amavisd_conf';
     if (is_file($conf["amavis"]["config_dir"] . '/amavisd.conf')) {
         copy($conf["amavis"]["config_dir"] . '/amavisd.conf', $conf["amavis"]["config_dir"] . '/amavisd.conf~');
     }
     if (is_file($conf["amavis"]["config_dir"] . '/amavisd.conf~')) {
         exec('chmod 400 ' . $conf["amavis"]["config_dir"] . '/amavisd.conf~');
     }
     if (!is_dir($conf["amavis"]["config_dir"])) {
         mkdir($conf["amavis"]["config_dir"]);
     }
     $content = rf("tpl/" . $configfile . ".master");
     $content = str_replace('{mysql_server_ispconfig_user}', $conf['mysql']['ispconfig_user'], $content);
     $content = str_replace('{mysql_server_ispconfig_password}', $conf['mysql']['ispconfig_password'], $content);
     $content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
     $content = str_replace('{mysql_server_port}', $conf["mysql"]["port"], $content);
     $content = str_replace('{mysql_server_ip}', $conf['mysql']['ip'], $content);
     $content = str_replace('{hostname}', $conf['hostname'], $content);
     $content = str_replace('/var/spool/amavisd/clamd.sock', '/var/run/clamav/clamd.sock', $content);
     wf($conf["amavis"]["config_dir"] . '/amavisd.conf', $content);
     // Adding the amavisd commands to the postfix configuration
     $postconf_commands = array('content_filter = amavis:[127.0.0.1]:10024', 'receive_override_options = no_address_mappings');
     // Make a backup copy of the main.cf file
     copy($conf["postfix"]["config_dir"] . '/main.cf', $conf["postfix"]["config_dir"] . '/main.cf~2');
     // Executing the postconf commands
     foreach ($postconf_commands as $cmd) {
         $command = "postconf -e '{$cmd}'";
         caselog($command . " &> /dev/null", __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     // Append the configuration for amavisd to the master.cf file
     if (is_file($conf["postfix"]["config_dir"] . '/master.cf')) {
         copy($conf["postfix"]["config_dir"] . '/master.cf', $conf["postfix"]["config_dir"] . '/master.cf~');
     }
     $content = rf($conf["postfix"]["config_dir"] . '/master.cf');
     // Only add the content if we had not addded it before
     if (!stristr($content, "127.0.0.1:10025")) {
         unset($content);
         $content = rf("tpl/master_cf_amavis.master");
         af($conf["postfix"]["config_dir"] . '/master.cf', $content);
     }
     unset($content);
     removeLine('/etc/sysconfig/freshclam', 'FRESHCLAM_DELAY=disabled-warn   # REMOVE ME', 1);
     replaceLine('/etc/freshclam.conf', 'Example', '# Example', 1);
 }
Пример #3
0
 public function install_ispconfig()
 {
     global $conf;
     $install_dir = $conf['ispconfig_install_dir'];
     //* Create the ISPConfig installation directory
     if (!is_dir($install_dir)) {
         $command = "mkdir {$install_dir}";
         caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     //* Create a ISPConfig user and group
     if (!is_group('ispconfig')) {
         $command = 'groupadd ispconfig';
         caselog($command . ' &> /dev/null 2> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     if (!is_user('ispconfig')) {
         $command = "useradd -g ispconfig -d {$install_dir} ispconfig";
         caselog($command . ' &> /dev/null 2> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     //* copy the ISPConfig interface part
     $command = "cp -rf ../interface {$install_dir}";
     caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     //* copy the ISPConfig server part
     $command = "cp -rf ../server {$install_dir}";
     caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     //* Create the config file for ISPConfig interface
     $configfile = 'config.inc.php';
     $content = $this->get_template_file($configfile, true, true);
     //* get contents & insert db cred
     $content = str_replace('{mysql_master_server_ispconfig_user}', $conf['mysql']['master_ispconfig_user'], $content);
     $content = str_replace('{mysql_master_server_ispconfig_password}', $conf['mysql']['master_ispconfig_password'], $content);
     $content = str_replace('{mysql_master_server_database}', $conf['mysql']['master_database'], $content);
     $content = str_replace('{mysql_master_server_host}', $conf['mysql']['master_host'], $content);
     $content = str_replace('{server_id}', $conf['server_id'], $content);
     $content = str_replace('{ispconfig_log_priority}', $conf['ispconfig_log_priority'], $content);
     $content = str_replace('{language}', $conf['language'], $content);
     $this->write_config_file("{$install_dir}/interface/lib/{$configfile}", $content);
     //* Create the config file for ISPConfig server
     $this->write_config_file("{$install_dir}/server/lib/{$configfile}", $content);
     //* Create the config file for remote-actions (but only, if it does not exist, because
     //  the value is a autoinc-value and so changed by the remoteaction_core_module
     if (!file_exists($install_dir . '/server/lib/remote_action.inc.php')) {
         $content = '<?php' . "\n" . '$maxid_remote_action = 0;' . "\n" . '?>';
         wf($install_dir . '/server/lib/remote_action.inc.php', $content);
     }
     // Enable the server modules and plugins.
     // TODO: Implement a selector which modules and plugins shall be enabled.
     $dir = $install_dir . '/server/mods-available/';
     if (is_dir($dir)) {
         if ($dh = opendir($dir)) {
             while (($file = readdir($dh)) !== false) {
                 if ($file != '.' && $file != '..' && substr($file, -8, 8) == '.inc.php') {
                     include_once $install_dir . '/server/mods-available/' . $file;
                     $module_name = substr($file, 0, -8);
                     $tmp = new $module_name();
                     if ($tmp->onInstall()) {
                         if (!@is_link($install_dir . '/server/mods-enabled/' . $file)) {
                             @symlink($install_dir . '/server/mods-available/' . $file, $install_dir . '/server/mods-enabled/' . $file);
                             // @symlink($install_dir.'/server/mods-available/'.$file, '../mods-enabled/'.$file);
                         }
                         if (strpos($file, '_core_module') !== false) {
                             if (!@is_link($install_dir . '/server/mods-core/' . $file)) {
                                 @symlink($install_dir . '/server/mods-available/' . $file, $install_dir . '/server/mods-core/' . $file);
                                 // @symlink($install_dir.'/server/mods-available/'.$file, '../mods-core/'.$file);
                             }
                         }
                     }
                     unset($tmp);
                 }
             }
             closedir($dh);
         }
     }
     $dir = $install_dir . '/server/plugins-available/';
     if (is_dir($dir)) {
         if ($dh = opendir($dir)) {
             while (($file = readdir($dh)) !== false) {
                 if ($conf['apache']['installed'] == true && $file == 'nginx_plugin.inc.php') {
                     continue;
                 }
                 if ($conf['nginx']['installed'] == true && $file == 'apache2_plugin.inc.php') {
                     continue;
                 }
                 if ($file != '.' && $file != '..' && substr($file, -8, 8) == '.inc.php') {
                     include_once $install_dir . '/server/plugins-available/' . $file;
                     $plugin_name = substr($file, 0, -8);
                     $tmp = new $plugin_name();
                     if (method_exists($tmp, 'onInstall') && $tmp->onInstall()) {
                         if (!@is_link($install_dir . '/server/plugins-enabled/' . $file)) {
                             @symlink($install_dir . '/server/plugins-available/' . $file, $install_dir . '/server/plugins-enabled/' . $file);
                         }
                         if (strpos($file, '_core_plugin') !== false) {
                             if (!@is_link($install_dir . '/server/plugins-core/' . $file)) {
                                 @symlink($install_dir . '/server/plugins-available/' . $file, $install_dir . '/server/plugins-core/' . $file);
                             }
                         }
                     }
                     unset($tmp);
                 }
             }
             closedir($dh);
         }
     }
     //* Update the server config
     $mail_server_enabled = $conf['services']['mail'] ? 1 : 0;
     $web_server_enabled = $conf['services']['web'] ? 1 : 0;
     $dns_server_enabled = $conf['services']['dns'] ? 1 : 0;
     $file_server_enabled = $conf['services']['file'] ? 1 : 0;
     $db_server_enabled = $conf['services']['db'] ? 1 : 0;
     $vserver_server_enabled = $conf['services']['vserver'] ? 1 : 0;
     $sql = "UPDATE `server` SET mail_server = '{$mail_server_enabled}', web_server = '{$web_server_enabled}', dns_server = '{$dns_server_enabled}', file_server = '{$file_server_enabled}', db_server = '{$db_server_enabled}', vserver_server = '{$vserver_server_enabled}' WHERE server_id = " . intval($conf['server_id']);
     if ($conf['mysql']['master_slave_setup'] == 'y') {
         $this->dbmaster->query($sql);
         $this->db->query($sql);
     } else {
         $this->db->query($sql);
     }
     //* Chmod the files
     $command = "chmod -R 750 {$install_dir}";
     caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     //* chown the files to the ispconfig user and group
     $command = "chown -R ispconfig:ispconfig {$install_dir}";
     caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     //* Make the global language file directory group writable
     exec("chmod -R 770 {$install_dir}/interface/lib/lang");
     //* Make the temp directory for language file exports writable
     if (is_dir($install_dir . '/interface/web/temp')) {
         exec("chmod -R 770 {$install_dir}/interface/web/temp");
     }
     //* Make all interface language file directories group writable
     $handle = @opendir($install_dir . '/interface/web');
     while ($file = @readdir($handle)) {
         if ($file != '.' && $file != '..') {
             if (@is_dir($install_dir . '/interface/web' . '/' . $file . '/lib/lang')) {
                 $handle2 = opendir($install_dir . '/interface/web' . '/' . $file . '/lib/lang');
                 chmod($install_dir . '/interface/web' . '/' . $file . '/lib/lang', 0770);
                 while ($lang_file = @readdir($handle2)) {
                     if ($lang_file != '.' && $lang_file != '..') {
                         chmod($install_dir . '/interface/web' . '/' . $file . '/lib/lang/' . $lang_file, 0770);
                     }
                 }
             }
         }
     }
     //* make sure that the server config file (not the interface one) is only readable by the root user
     chmod($install_dir . '/server/lib/' . $configfile, 0600);
     chown($install_dir . '/server/lib/' . $configfile, 'root');
     chgrp($install_dir . '/server/lib/' . $configfile, 'root');
     chmod($install_dir . '/server/lib/remote_action.inc.php', 0600);
     chown($install_dir . '/server/lib/remote_action.inc.php', 'root');
     chgrp($install_dir . '/server/lib/remote_action.inc.php', 'root');
     if (@is_file($install_dir . '/server/lib/mysql_clientdb.conf')) {
         chmod($install_dir . '/server/lib/mysql_clientdb.conf', 0600);
         chown($install_dir . '/server/lib/mysql_clientdb.conf', 'root');
         chgrp($install_dir . '/server/lib/mysql_clientdb.conf', 'root');
     }
     // TODO: FIXME: add the www-data user to the ispconfig group. This is just for testing
     // and must be fixed as this will allow the apache user to read the ispconfig files.
     // Later this must run as own apache server or via suexec!
     if ($conf['apache']['installed'] == true) {
         $command = 'usermod -a -G ispconfig ' . $conf['apache']['user'];
         caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
         if (is_group('ispapps')) {
             $command = 'usermod -a -G ispapps ' . $conf['apache']['user'];
             caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
         }
     }
     if ($conf['nginx']['installed'] == true) {
         $command = 'usermod -a -G ispconfig ' . $conf['nginx']['user'];
         caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
         if (is_group('ispapps')) {
             $command = 'usermod -a -G ispapps ' . $conf['nginx']['user'];
             caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
         }
     }
     //* Make the shell scripts executable
     $command = "chmod +x {$install_dir}/server/scripts/*.sh";
     caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     if ($conf['apache']['installed'] == true) {
         //* Copy the ISPConfig vhost for the controlpanel
         $content = $this->get_template_file("apache_ispconfig.vhost", true);
         $content = str_replace('{vhost_port}', $conf['apache']['vhost_port'], $content);
         //* comment out the listen directive if port is 80 or 443
         if ($conf['apache']['vhost_port'] == 80 or $conf['apache']['vhost_port'] == 443) {
             $content = str_replace('{vhost_port_listen}', '#', $content);
         } else {
             $content = str_replace('{vhost_port_listen}', '', $content);
         }
         if (is_file($install_dir . '/interface/ssl/ispserver.crt') && is_file($install_dir . '/interface/ssl/ispserver.key')) {
             $content = str_replace('{ssl_comment}', '', $content);
         } else {
             $content = str_replace('{ssl_comment}', '#', $content);
         }
         $vhost_path = $conf['apache']['vhost_conf_dir'] . '/ispconfig.vhost';
         $this->write_config_file($vhost_path, $content);
         if (!is_file('/var/www/php-fcgi-scripts/ispconfig/.php-fcgi-starter')) {
             mkdir('/var/www/php-fcgi-scripts/ispconfig', 0755, true);
             copy('tpl/apache_ispconfig_fcgi_starter.master', '/var/www/php-fcgi-scripts/ispconfig/.php-fcgi-starter');
             exec('chmod +x /var/www/php-fcgi-scripts/ispconfig/.php-fcgi-starter');
             chmod('/var/www/php-fcgi-scripts/ispconfig/.php-fcgi-starter', 0755);
             symlink($install_dir . '/interface/web', '/var/www/ispconfig');
             exec('chown -R ispconfig:ispconfig /var/www/php-fcgi-scripts/ispconfig');
         }
     }
     if ($conf['nginx']['installed'] == true) {
         //* Copy the ISPConfig vhost for the controlpanel
         $vhost_conf_dir = $conf['nginx']['vhost_conf_dir'];
         $vhost_conf_enabled_dir = $conf['nginx']['vhost_conf_enabled_dir'];
         // Dont just copy over the virtualhost template but add some custom settings
         $content = rf('tpl/nginx_ispconfig.vhost.master');
         $content = str_replace('{vhost_port}', $conf['nginx']['vhost_port'], $content);
         if (is_file($install_dir . '/interface/ssl/ispserver.crt') && is_file($install_dir . '/interface/ssl/ispserver.key')) {
             $content = str_replace('{ssl_on}', ' ssl', $content);
             $content = str_replace('{ssl_comment}', '', $content);
             $content = str_replace('{fastcgi_ssl}', 'on', $content);
         } else {
             $content = str_replace('{ssl_on}', '', $content);
             $content = str_replace('{ssl_comment}', '#', $content);
             $content = str_replace('{fastcgi_ssl}', 'off', $content);
         }
         $socket_dir = escapeshellcmd($conf['nginx']['php_fpm_socket_dir']);
         if (substr($socket_dir, -1) != '/') {
             $socket_dir .= '/';
         }
         if (!is_dir($socket_dir)) {
             exec('mkdir -p ' . $socket_dir);
         }
         $fpm_socket = $socket_dir . 'ispconfig.sock';
         //$content = str_replace('{fpm_port}', $conf['nginx']['php_fpm_start_port'], $content);
         $content = str_replace('{fpm_socket}', $fpm_socket, $content);
         wf($vhost_conf_dir . '/ispconfig.vhost', $content);
         unset($content);
         // PHP-FPM
         // Dont just copy over the php-fpm pool template but add some custom settings
         $content = rf('tpl/php_fpm_pool.conf.master');
         $content = str_replace('{fpm_pool}', 'ispconfig', $content);
         //$content = str_replace('{fpm_port}', $conf['nginx']['php_fpm_start_port'], $content);
         $content = str_replace('{fpm_socket}', $fpm_socket, $content);
         $content = str_replace('{fpm_user}', 'ispconfig', $content);
         $content = str_replace('{fpm_group}', 'ispconfig', $content);
         wf($conf['nginx']['php_fpm_pool_dir'] . '/ispconfig.conf', $content);
         //copy('tpl/nginx_ispconfig.vhost.master', $vhost_conf_dir.'/ispconfig.vhost');
         //* and create the symlink
         if ($this->install_ispconfig_interface == true && $this->is_update == false) {
             if (@is_link($vhost_conf_enabled_dir . '/ispconfig.vhost')) {
                 unlink($vhost_conf_enabled_dir . '/ispconfig.vhost');
             }
             if (!@is_link($vhost_conf_enabled_dir . '/000-ispconfig.vhost')) {
                 symlink($vhost_conf_dir . '/ispconfig.vhost', $vhost_conf_enabled_dir . '/000-ispconfig.vhost');
             }
         }
     }
     //* Install the update script
     if (is_file('/usr/local/bin/ispconfig_update_from_svn.sh')) {
         unlink('/usr/local/bin/ispconfig_update_from_svn.sh');
     }
     chown($install_dir . '/server/scripts/update_from_svn.sh', 'root');
     chmod($install_dir . '/server/scripts/update_from_svn.sh', 0700);
     chown($install_dir . '/server/scripts/update_from_tgz.sh', 'root');
     chmod($install_dir . '/server/scripts/update_from_tgz.sh', 0700);
     chown($install_dir . '/server/scripts/ispconfig_update.sh', 'root');
     chmod($install_dir . '/server/scripts/ispconfig_update.sh', 0700);
     if (!is_link('/usr/local/bin/ispconfig_update_from_svn.sh')) {
         symlink($install_dir . '/server/scripts/ispconfig_update.sh', '/usr/local/bin/ispconfig_update_from_svn.sh');
     }
     if (!is_link('/usr/local/bin/ispconfig_update.sh')) {
         symlink($install_dir . '/server/scripts/ispconfig_update.sh', '/usr/local/bin/ispconfig_update.sh');
     }
     //* Make the logs readable for the ispconfig user
     if (is_file('/var/log/maillog')) {
         exec('chmod +r /var/log/maillog');
     }
     if (is_file('/var/log/messages')) {
         exec('chmod +r /var/log/messages');
     }
     if (is_file('/var/log/clamav/clamav.log')) {
         exec('chmod +r /var/log/clamav/clamav.log');
     }
     if (is_file('/var/log/clamav/freshclam.log')) {
         exec('chmod +r /var/log/clamav/freshclam.log');
     }
     //* Create the ispconfig log directory
     if (!is_dir($conf['ispconfig_log_dir'])) {
         mkdir($conf['ispconfig_log_dir']);
     }
     if (!is_file($conf['ispconfig_log_dir'] . '/ispconfig.log')) {
         touch($conf['ispconfig_log_dir'] . '/ispconfig.log');
     }
     rename($install_dir . '/server/scripts/run-getmail.sh', '/usr/local/bin/run-getmail.sh');
     if (is_user('getmail')) {
         chown('/usr/local/bin/run-getmail.sh', 'getmail');
     }
     chmod('/usr/local/bin/run-getmail.sh', 0744);
 }
Пример #4
0
 public function configure_dbserver()
 {
     global $conf;
     //* If this server shall act as database server for client DB's, we configure this here
     $install_dir = $conf['ispconfig_install_dir'];
     // Create a file with the database login details which
     // are used to create the client databases.
     if (!is_dir("{$install_dir}/server/lib")) {
         $command = "mkdir {$install_dir}/server/lib";
         caselog($command . ' &> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     $content = rf("tpl/mysql_clientdb.conf.master");
     $content = str_replace('{username}', $conf['mysql']['admin_user'], $content);
     $content = str_replace('{password}', $conf['mysql']['admin_password'], $content);
     wf("{$install_dir}/server/lib/mysql_clientdb.conf", $content);
     exec('chmod 600 ' . "{$install_dir}/server/lib/mysql_clientdb.conf");
     exec('chown root:root ' . "{$install_dir}/server/lib/mysql_clientdb.conf");
 }
Пример #5
0
 public function configure_firewall()
 {
     global $conf;
     $dist_init_scripts = $conf['init_scripts'];
     if (is_dir("/etc/Bastille.backup")) {
         caselog("rm -rf /etc/Bastille.backup", __FILE__, __LINE__);
     }
     if (is_dir("/etc/Bastille")) {
         caselog("mv -f /etc/Bastille /etc/Bastille.backup", __FILE__, __LINE__);
     }
     @mkdir("/etc/Bastille", octdec($directory_mode));
     if (is_dir("/etc/Bastille.backup/firewall.d")) {
         caselog("cp -pfr /etc/Bastille.backup/firewall.d /etc/Bastille/", __FILE__, __LINE__);
     }
     if (is_file($conf['ispconfig_install_dir'] . '/server/conf-custom/install/bastille-firewall.cfg.master')) {
         caselog("cp -f " . $conf['ispconfig_install_dir'] . "/server/conf-custom/install/bastille-firewall.cfg.master /etc/Bastille/bastille-firewall.cfg", __FILE__, __LINE__);
     } else {
         caselog("cp -f tpl/bastille-firewall.cfg.master /etc/Bastille/bastille-firewall.cfg", __FILE__, __LINE__);
     }
     caselog("chmod 644 /etc/Bastille/bastille-firewall.cfg", __FILE__, __LINE__);
     $content = rf("/etc/Bastille/bastille-firewall.cfg");
     $content = str_replace("{DNS_SERVERS}", "", $content);
     $tcp_public_services = '';
     $udp_public_services = '';
     $row = $this->db->queryOneRecord('SELECT * FROM ' . $conf["mysql"]["database"] . '.firewall WHERE server_id = ' . intval($conf['server_id']));
     if (trim($row["tcp_port"]) != '' || trim($row["udp_port"]) != '') {
         $tcp_public_services = trim(str_replace(',', ' ', $row["tcp_port"]));
         $udp_public_services = trim(str_replace(',', ' ', $row["udp_port"]));
     } else {
         $tcp_public_services = '21 22 25 53 80 110 443 3306 8080 10000';
         $udp_public_services = '53';
     }
     if (!stristr($tcp_public_services, $conf['apache']['vhost_port'])) {
         $tcp_public_services .= ' ' . intval($conf['apache']['vhost_port']);
         if ($row["tcp_port"] != '') {
             $this->db->query("UPDATE firewall SET tcp_port = tcp_port + '," . intval($conf['apache']['vhost_port']) . "' WHERE server_id = " . intval($conf['server_id']));
         }
     }
     $content = str_replace("{TCP_PUBLIC_SERVICES}", $tcp_public_services, $content);
     $content = str_replace("{UDP_PUBLIC_SERVICES}", $udp_public_services, $content);
     wf("/etc/Bastille/bastille-firewall.cfg", $content);
     if (is_file($dist_init_scripts . "/bastille-firewall")) {
         caselog("mv -f {$dist_init_scripts}/bastille-firewall {$dist_init_scripts}/bastille-firewall.backup", __FILE__, __LINE__);
     }
     caselog("cp -f apps/bastille-firewall {$dist_init_scripts}", __FILE__, __LINE__);
     caselog("chmod 700 {$dist_init_scripts}/bastille-firewall", __FILE__, __LINE__);
     if (is_file("/sbin/bastille-ipchains")) {
         caselog("mv -f /sbin/bastille-ipchains /sbin/bastille-ipchains.backup", __FILE__, __LINE__);
     }
     caselog("cp -f apps/bastille-ipchains /sbin", __FILE__, __LINE__);
     caselog("chmod 700 /sbin/bastille-ipchains", __FILE__, __LINE__);
     if (is_file("/sbin/bastille-netfilter")) {
         caselog("mv -f /sbin/bastille-netfilter /sbin/bastille-netfilter.backup", __FILE__, __LINE__);
     }
     caselog("cp -f apps/bastille-netfilter /sbin", __FILE__, __LINE__);
     caselog("chmod 700 /sbin/bastille-netfilter", __FILE__, __LINE__);
     if (!@is_dir('/var/lock/subsys')) {
         caselog("mkdir /var/lock/subsys", __FILE__, __LINE__);
     }
     exec("which ipchains &> /dev/null", $ipchains_location, $ret_val);
     if (!is_file("/sbin/ipchains") && !is_link("/sbin/ipchains") && $ret_val == 0) {
         phpcaselog(@symlink(shell_exec("which ipchains"), "/sbin/ipchains"), 'create symlink', __FILE__, __LINE__);
     }
     unset($ipchains_location);
     exec("which iptables &> /dev/null", $iptables_location, $ret_val);
     if (!is_file("/sbin/iptables") && !is_link("/sbin/iptables") && $ret_val == 0) {
         phpcaselog(@symlink(trim(shell_exec("which iptables")), "/sbin/iptables"), 'create symlink', __FILE__, __LINE__);
     }
     unset($iptables_location);
 }
Пример #6
0
 public function configure_apache()
 {
     global $conf;
     if ($conf['apache']['installed'] == false) {
         return;
     }
     //* Create the logging directory for the vhost logfiles
     if (!is_dir($conf['ispconfig_log_dir'] . '/httpd')) {
         mkdir($conf['ispconfig_log_dir'] . '/httpd', 0755, true);
     }
     if (is_file($conf['suphp']['config_file'])) {
         $content = rf($conf['suphp']['config_file']);
         if (!preg_match('|^x-httpd-suphp=php:/usr/bin/php-cgi$|m', $content)) {
             $content = preg_replace('/;Handler for php-scripts/', ";Handler for php-scripts\nx-httpd-suphp=php:/usr/bin/php-cgi", $content);
             $content = preg_replace('/;?umask=\\d+/', 'umask=0022', $content);
         }
         $this->write_config_file($conf['suphp']['config_file'], $content);
     }
     //* Enable ISPConfig default vhost settings
     $default_vhost_path = $conf['apache']['vhost_conf_dir'] . '/' . $conf['apache']['vhost_default'];
     if (is_file($default_vhost_path)) {
         $content = rf($default_vhost_path);
         $content = preg_replace('/^#?\\s*NameVirtualHost.*$/m', 'NameVirtualHost *:80', $content);
         $content = preg_replace('/<VirtualHost[^>]+>/', '<VirtualHost *:80>', $content);
         $this->write_config_file($default_vhost_path, $content);
     }
     //* Generate default ssl certificates
     if (!is_dir($conf['apache']['ssl_dir'])) {
         mkdir($conf['apache']['ssl_dir']);
     }
     if ($conf['services']['mail'] == true) {
         copy($conf['postfix']['config_dir'] . "/smtpd.key", $conf['apache']['ssl_dir'] . "/server.key");
         copy($conf['postfix']['config_dir'] . "/smtpd.cert", $conf['apache']['ssl_dir'] . "/server.crt");
     } else {
         if (!is_file($conf['apache']['ssl_dir'] . '/server.crt')) {
             exec("openssl req -new -outform PEM -out {$conf['apache']['ssl_dir']}/server.crt -newkey rsa:2048 -nodes -keyout {$conf['apache']['ssl_dir']}/server.key -keyform PEM -days 365 -x509");
         }
     }
     //* Copy the ISPConfig configuration include
     /*
     $content = $this->get_template_file('apache_ispconfig.conf', true);
     
     $records = $this->db->queryAllRecords("SELECT * FROM server_ip WHERE server_id = ".$conf["server_id"]." AND virtualhost = 'y'");
     if(is_array($records) && count($records) > 0)
     {
     	foreach($records as $rec) {
     		$content .= "NameVirtualHost ".$rec["ip_address"].":80\n";
     		$content .= "NameVirtualHost ".$rec["ip_address"].":443\n";
     	}
     }
     
     $this->write_config_file($conf['apache']['vhost_conf_dir'].'/000-ispconfig.conf', $content);
     */
     $tpl = new tpl('apache_ispconfig.conf.master');
     $tpl->setVar('apache_version', getapacheversion());
     $records = $this->db->queryAllRecords('SELECT * FROM ' . $conf['mysql']['master_database'] . '.server_ip WHERE server_id = ' . $conf['server_id'] . " AND virtualhost = 'y'");
     $ip_addresses = array();
     if (is_array($records) && count($records) > 0) {
         foreach ($records as $rec) {
             if ($rec['ip_type'] == 'IPv6') {
                 $ip_address = '[' . $rec['ip_address'] . ']';
             } else {
                 $ip_address = $rec['ip_address'];
             }
             $ports = explode(',', $rec['virtualhost_port']);
             if (is_array($ports)) {
                 foreach ($ports as $port) {
                     $port = intval($port);
                     if ($port > 0 && $port < 65536 && $ip_address != '') {
                         $ip_addresses[] = array('ip_address' => $ip_address, 'port' => $port);
                     }
                 }
             }
         }
     }
     if (count($ip_addresses) > 0) {
         $tpl->setLoop('ip_adresses', $ip_addresses);
     }
     wf($conf['apache']['vhost_conf_dir'] . '/000-ispconfig.conf', $tpl->grab());
     unset($tpl);
     //* Gentoo by default does not include .vhost files. Add include line to config file.
     $content = rf($conf['apache']['config_file']);
     if (strpos($content, 'Include /etc/apache2/vhosts.d/*.vhost') === false) {
         $content = preg_replace('|(Include /etc/apache2/vhosts.d/\\*.conf)|', "\$1\nInclude /etc/apache2/vhosts.d/*.vhost", $content);
     }
     $this->write_config_file($conf['apache']['config_file'], $content);
     //* make sure that webalizer finds its config file when it is directly in /etc
     if (is_file('/etc/webalizer.conf') && !is_dir('/etc/webalizer')) {
         mkdir('/etc/webalizer', 0755);
         symlink('/etc/webalizer.conf', '/etc/webalizer/webalizer.conf');
     }
     if (is_file('/etc/webalizer/webalizer.conf')) {
         replaceLine('/etc/webalizer/webalizer.conf', '#IncrementalName', 'IncrementalName webalizer.current', 0, 0);
         replaceLine('/etc/webalizer/webalizer.conf', '#Incremental', 'Incremental     yes', 0, 0);
         replaceLine('/etc/webalizer/webalizer.conf', '#HistoryName', 'HistoryName     webalizer.hist', 0, 0);
     }
     //* add a sshusers group
     if (!is_group('sshusers')) {
         $command = 'groupadd sshusers';
         caselog($command . ' &> /dev/null 2> /dev/null', __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
 }
Пример #7
0
function updateDbAndIni()
{
    global $inst, $conf;
    //* Update $conf array with values from the server.ini that shall be preserved
    $tmp = $inst->db->queryOneRecord("SELECT * FROM " . $conf["mysql"]["database"] . ".server WHERE server_id = " . $conf['server_id']);
    $ini_array = ini_to_array(stripslashes($tmp['config']));
    $current_db_version = isset($tmp['dbversion']) ? intval($tmp['dbversion']) : 0;
    if (!is_array($ini_array) or count($ini_array) == 0) {
        die('Unable to read server configuration from database.');
    }
    $conf['services']['mail'] = $tmp['mail_server'] == 1 ? true : false;
    $conf['services']['web'] = $tmp['web_server'] == 1 ? true : false;
    $conf['services']['dns'] = $tmp['dns_server'] == 1 ? true : false;
    $conf['services']['file'] = $tmp['file_server'] == 1 ? true : false;
    $conf['services']['db'] = $tmp['db_server'] == 1 ? true : false;
    $conf['services']['vserver'] = $tmp['vserver_server'] == 1 ? true : false;
    $conf['services']['proxy'] = isset($tmp['proxy_server']) && $tmp['proxy_server'] == 1 ? true : false;
    $conf['services']['firewall'] = isset($tmp['firewall_server']) && $tmp['firewall_server'] == 1 ? true : false;
    $conf['postfix']['vmail_mailbox_base'] = $ini_array['mail']['homedir_path'];
    if (isset($ini_array['web']['server_type']) && $ini_array['web']['server_type'] != '') {
        $conf['webserver']['server_type'] = $ini_array['web']['server_type'];
        if ($conf['webserver']['server_type'] == 'nginx') {
            $conf['apache']['installed'] = false;
        } else {
            $conf['nginx']['installed'] = false;
        }
    } else {
        $conf['webserver']['server_type'] = 'apache';
        $conf['nginx']['installed'] = false;
    }
    //* Do incremental DB updates only on installed ISPConfig versions >= 3.0.3
    if (version_compare('3.0.3', ISPC_APP_VERSION, '<=')) {
        swriteln($inst->lng('Starting incremental database update.'));
        //* get the version of the db schema from the server table
        $found = true;
        while ($found == true) {
            $next_db_version = intval($current_db_version + 1);
            $sql_patch_filename = realpath(dirname(__FILE__) . '/../') . '/sql/incremental/upd_' . str_pad($next_db_version, 4, '0', STR_PAD_LEFT) . '.sql';
            $php_patch_filename = realpath(dirname(__FILE__) . '/../') . '/patches/upd_' . str_pad($next_db_version, 4, '0', STR_PAD_LEFT) . '.php';
            // comma separated list of version numbers were a update has to be done silently
            $silent_update_versions = '75';
            if (is_file($sql_patch_filename)) {
                //* Load php patch file and instantiate object
                if (is_file($php_patch_filename)) {
                    $php_patch_class_name = 'upd_' . str_pad($next_db_version, 4, '0', STR_PAD_LEFT);
                    include_once $php_patch_filename;
                    if (class_exists($php_patch_class_name)) {
                        $php_patch = new $php_patch_class_name();
                    } else {
                        swriteln($inst->lng('WARNING: PHP patch file') . ': ' . $php_patch_filename . ' ' . $inst->lng('contains errors.'));
                    }
                }
                //* Exec onBeforeSQL function
                if (isset($php_patch) && is_object($php_patch)) {
                    $php_patch->onBeforeSQL();
                    swriteln($inst->lng('Executing PHP patch file') . ': ' . $php_patch_filename);
                }
                //* Load patch file into database
                if (!empty($conf["mysql"]["admin_password"])) {
                    $cmd = "mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " -p" . escapeshellarg($conf['mysql']['admin_password']) . " " . escapeshellarg($conf['mysql']['database']) . " < " . $sql_patch_filename;
                } else {
                    $cmd = "mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " " . escapeshellarg($conf['mysql']['database']) . " < " . $sql_patch_filename;
                }
                if (in_array($next_db_version, explode(',', $silent_update_versions))) {
                    $cmd .= ' > /dev/null 2> /dev/null';
                }
                system($cmd);
                swriteln($inst->lng('Loading SQL patch file') . ': ' . $sql_patch_filename);
                //* Exec onAfterSQL function
                if (isset($php_patch) && is_object($php_patch)) {
                    $php_patch->onAfterSQL();
                }
                $current_db_version = $next_db_version;
                if (isset($php_patch)) {
                    unset($php_patch);
                }
            } else {
                $found = false;
            }
        }
        //* update the database version in server table
        $inst->db->query("UPDATE " . $conf["mysql"]["database"] . ".server SET dbversion = '" . $current_db_version . "' WHERE server_id = " . $conf['server_id']);
        if ($inst->db->dbHost != $inst->dbmaster->dbHost) {
            $inst->dbmaster->query("UPDATE " . $conf["mysql"]["master_database"] . ".server SET dbversion = '" . $current_db_version . "' WHERE server_id = " . $conf['server_id']);
        }
        //* If ISPConfig Version < 3.0.3, we will do a full db update
    } else {
        swriteln($inst->lng('Starting full database update.'));
        //** Delete the old database
        if (!$inst->db->query('DROP DATABASE IF EXISTS ' . $conf['mysql']['database'])) {
            $inst->error('Unable to drop MySQL database: ' . $conf['mysql']['database'] . '.');
        }
        //** Create the mysql database
        $inst->configure_database();
        //** empty all databases
        $db_tables = $inst->db->getTables();
        foreach ($db_tables as $table) {
            $inst->db->query("TRUNCATE {$table}");
        }
        //** load old data back into database
        if (!empty($conf["mysql"]["admin_password"])) {
            system("mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " -p" . escapeshellarg($conf['mysql']['admin_password']) . " " . escapeshellarg($conf['mysql']['database']) . " < existing_db.sql");
        } else {
            system("mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " " . escapeshellarg($conf['mysql']['database']) . " < existing_db.sql");
        }
        //** Get the database version number based on the patchfile
        $found = true;
        while ($found == true) {
            $next_db_version = intval($current_db_version + 1);
            $patch_filename = realpath(dirname(__FILE__) . '/../') . '/sql/incremental/upd_' . str_pad($next_db_version, 4, '0', STR_PAD_LEFT) . '.sql';
            if (is_file($patch_filename)) {
                $current_db_version = $next_db_version;
            } else {
                $found = false;
            }
        }
        //* update the database version in server table
        $inst->db->query("UPDATE " . $conf["mysql"]["database"] . ".server SET dbversion = '" . $current_db_version . "' WHERE server_id = " . $conf['server_id']);
        if ($inst->db->dbHost != $inst->dbmaster->dbHost) {
            $inst->dbmaster->query("UPDATE " . $conf["mysql"]["master_database"] . ".server SET dbversion = '" . $current_db_version . "' WHERE server_id = " . $conf['server_id']);
        }
        if ($conf['powerdns']['installed']) {
            swriteln($inst->lng('Starting full PowerDNS database update.'));
            //** Delete the old PowerDNS database
            if (!$inst->db->query('DROP DATABASE IF EXISTS ' . $conf['powerdns']['database'])) {
                $inst->error('Unable to drop MySQL database: ' . $conf['powerdns']['database'] . '.');
            }
            //** Create the mysql database
            $inst->configure_powerdns();
            //** load old data back into the PowerDNS database
            if (!empty($conf["mysql"]["admin_password"])) {
                system("mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " -p" . escapeshellarg($conf['mysql']['admin_password']) . " " . escapeshellarg($conf['powerdns']['database']) . " < existing_powerdns_db.sql");
            } else {
                system("mysql --default-character-set=" . escapeshellarg($conf['mysql']['charset']) . " --force -h " . escapeshellarg($conf['mysql']['host']) . " -u " . escapeshellarg($conf['mysql']['admin_user']) . " " . escapeshellarg($conf['powerdns']['database']) . " < existing_powerdns_db.sql");
            }
        }
    }
    //** Update server ini
    $tmp_server_rec = $inst->db->queryOneRecord("SELECT config FROM " . $conf["mysql"]["database"] . ".server WHERE server_id = " . $conf['server_id']);
    $old_ini_array = ini_to_array(stripslashes($tmp_server_rec['config']));
    unset($tmp_server_rec);
    $tpl_ini_array = ini_to_array(rf('tpl/server.ini.master'));
    //* Update further distribution specific parameters for server config here
    //* HINT: Every line added here has to be added in installer_base.lib.php too!!
    $tpl_ini_array['jailkit']['jailkit_chroot_app_programs'] = $conf['jailkit']['jailkit_chroot_app_programs'];
    $tpl_ini_array['fastcgi']['fastcgi_phpini_path'] = $conf['fastcgi']['fastcgi_phpini_path'];
    $tpl_ini_array['fastcgi']['fastcgi_starter_path'] = $conf['fastcgi']['fastcgi_starter_path'];
    $tpl_ini_array['fastcgi']['fastcgi_bin'] = $conf['fastcgi']['fastcgi_bin'];
    $tpl_ini_array['server']['hostname'] = $conf['hostname'];
    $tpl_ini_array['server']['ip_address'] = @gethostbyname($conf['hostname']);
    $tpl_ini_array['web']['website_basedir'] = $conf['web']['website_basedir'];
    $tpl_ini_array['web']['website_path'] = $conf['web']['website_path'];
    $tpl_ini_array['web']['website_symlinks'] = $conf['web']['website_symlinks'];
    $tpl_ini_array['cron']['crontab_dir'] = $conf['cron']['crontab_dir'];
    $tpl_ini_array['web']['security_level'] = 20;
    $tpl_ini_array['web']['user'] = $conf['apache']['user'];
    $tpl_ini_array['web']['group'] = $conf['apache']['group'];
    $tpl_ini_array['web']['php_ini_path_apache'] = $conf['apache']['php_ini_path_apache'];
    $tpl_ini_array['web']['php_ini_path_cgi'] = $conf['apache']['php_ini_path_cgi'];
    $tpl_ini_array['mail']['pop3_imap_daemon'] = $conf['dovecot']['installed'] == true ? 'dovecot' : 'courier';
    $tpl_ini_array['mail']['mail_filter_syntax'] = $conf['dovecot']['installed'] == true ? 'sieve' : 'maildrop';
    $tpl_ini_array['dns']['bind_user'] = $conf['bind']['bind_user'];
    $tpl_ini_array['dns']['bind_group'] = $conf['bind']['bind_group'];
    $tpl_ini_array['dns']['bind_zonefiles_dir'] = $conf['bind']['bind_zonefiles_dir'];
    $tpl_ini_array['dns']['named_conf_path'] = $conf['bind']['named_conf_path'];
    $tpl_ini_array['dns']['named_conf_local_path'] = $conf['bind']['named_conf_local_path'];
    $tpl_ini_array['web']['nginx_vhost_conf_dir'] = $conf['nginx']['vhost_conf_dir'];
    $tpl_ini_array['web']['nginx_vhost_conf_enabled_dir'] = $conf['nginx']['vhost_conf_enabled_dir'];
    $tpl_ini_array['web']['nginx_user'] = $conf['nginx']['user'];
    $tpl_ini_array['web']['nginx_group'] = $conf['nginx']['group'];
    $tpl_ini_array['web']['nginx_cgi_socket'] = $conf['nginx']['cgi_socket'];
    $tpl_ini_array['web']['php_fpm_init_script'] = $conf['nginx']['php_fpm_init_script'];
    $tpl_ini_array['web']['php_fpm_ini_path'] = $conf['nginx']['php_fpm_ini_path'];
    $tpl_ini_array['web']['php_fpm_pool_dir'] = $conf['nginx']['php_fpm_pool_dir'];
    $tpl_ini_array['web']['php_fpm_start_port'] = $conf['nginx']['php_fpm_start_port'];
    $tpl_ini_array['web']['php_fpm_socket_dir'] = $conf['nginx']['php_fpm_socket_dir'];
    if ($conf['nginx']['installed'] == true) {
        $tpl_ini_array['web']['server_type'] = 'nginx';
        $tpl_ini_array['global']['webserver'] = 'nginx';
    }
    //* update the new template with the old values
    if (is_array($old_ini_array)) {
        foreach ($old_ini_array as $tmp_section_name => $tmp_section_content) {
            foreach ($tmp_section_content as $tmp_var_name => $tmp_var_content) {
                $tpl_ini_array[$tmp_section_name][$tmp_var_name] = $tmp_var_content;
            }
        }
    }
    $new_ini = array_to_ini($tpl_ini_array);
    $sql = "UPDATE " . $conf["mysql"]["database"] . ".server SET config = '" . mysql_real_escape_string($new_ini) . "' WHERE server_id = " . $conf['server_id'];
    $inst->db->query($sql);
    if ($inst->db->dbHost != $inst->dbmaster->dbHost) {
        $sql = "UPDATE " . $conf["mysql"]["master_database"] . ".server SET config = '" . mysql_real_escape_string($new_ini) . "' WHERE server_id = " . $conf['server_id'];
        $inst->dbmaster->query($sql);
    }
    unset($old_ini_array);
    unset($tpl_ini_array);
    unset($new_ini);
    //** Update system ini
    $tmp_server_rec = $inst->db->queryOneRecord("SELECT config FROM " . $conf["mysql"]["database"] . ".sys_ini WHERE sysini_id = 1");
    $old_ini_array = ini_to_array(stripslashes($tmp_server_rec['config']));
    unset($tmp_server_rec);
    $tpl_ini_array = ini_to_array(rf('tpl/system.ini.master'));
    // update the new template with the old values
    if (is_array($old_ini_array)) {
        foreach ($old_ini_array as $tmp_section_name => $tmp_section_content) {
            foreach ($tmp_section_content as $tmp_var_name => $tmp_var_content) {
                $tpl_ini_array[$tmp_section_name][$tmp_var_name] = $tmp_var_content;
            }
        }
    }
    $new_ini = array_to_ini($tpl_ini_array);
    $tmp = $inst->db->queryOneRecord('SELECT count(sysini_id) as number FROM ' . $conf["mysql"]["database"] . '.sys_ini WHERE 1');
    if ($tmp['number'] == 0) {
        $inst->db->query("INSERT INTO " . $conf["mysql"]["database"] . ".sys_ini (sysini_id, config) VALUES (1,'" . mysql_real_escape_string($new_ini) . "')");
    } else {
        $inst->db->query("UPDATE " . $conf["mysql"]["database"] . ".sys_ini SET config = '" . mysql_real_escape_string($new_ini) . "' WHERE sysini_id = 1");
    }
    unset($old_ini_array);
    unset($tpl_ini_array);
    unset($new_ini);
}
Пример #8
0
 public function configure_dovecot()
 {
     global $conf;
     $config_dir = $conf['dovecot']['config_dir'];
     //* Configure master.cf and add a line for deliver
     if (is_file($config_dir . '/master.cf')) {
         copy($config_dir . '/master.cf', $config_dir . '/master.cf~2');
     }
     if (is_file($config_dir . '/master.cf~')) {
         chmod($config_dir . '/master.cf~2', 0400);
     }
     $content = rf($conf["postfix"]["config_dir"] . '/master.cf');
     // Only add the content if we had not addded it before
     if (!stristr($content, "dovecot/deliver")) {
         $deliver_content = 'dovecot   unix  -       n       n       -       -       pipe' . "\n" . '  flags=DRhu user=vmail:vmail argv=/usr/lib/dovecot/deliver -f ${sender} -d ${user}@${nexthop}';
         af($conf["postfix"]["config_dir"] . '/master.cf', $deliver_content);
     }
     unset($content);
     unset($deliver_content);
     //* Reconfigure postfix to use dovecot authentication
     // Adding the amavisd commands to the postfix configuration
     $postconf_commands = array('dovecot_destination_recipient_limit = 1', 'virtual_transport = dovecot', 'smtpd_sasl_type = dovecot', 'smtpd_sasl_path = private/auth');
     // Make a backup copy of the main.cf file
     copy($conf["postfix"]["config_dir"] . '/main.cf', $conf["postfix"]["config_dir"] . '/main.cf~3');
     // Executing the postconf commands
     foreach ($postconf_commands as $cmd) {
         $command = "postconf -e '{$cmd}'";
         caselog($command . " &> /dev/null", __FILE__, __LINE__, "EXECUTED: {$command}", "Failed to execute the command {$command}");
     }
     //* copy dovecot.conf
     $configfile = 'dovecot.conf';
     if (is_file($config_dir . '/' . $configfile)) {
         copy($config_dir . '/' . $configfile, $config_dir . '/' . $configfile . '~');
     }
     //* Get the dovecot version
     exec('dovecot --version', $tmp);
     $dovecot_version = $tmp[0];
     unset($tmp);
     //* Copy dovecot configuration file
     if (version_compare($dovecot_version, 2) >= 0) {
         if (is_file($conf['ispconfig_install_dir'] . '/server/conf-custom/install/debian6_dovecot2.conf.master')) {
             copy($conf['ispconfig_install_dir'] . '/server/conf-custom/install/debian6_dovecot2.conf.master', $config_dir . '/' . $configfile);
         } else {
             copy('tpl/debian6_dovecot2.conf.master', $config_dir . '/' . $configfile);
         }
         replaceLine($config_dir . '/' . $configfile, 'postmaster_address = postmaster@example.com', 'postmaster_address = postmaster@' . $conf['hostname'], 1, 0);
         if (version_compare($dovecot_version, 2.1) < 0) {
             removeLine($config_dir . '/' . $configfile, 'ssl_protocols =');
         }
     } else {
         if (is_file($conf['ispconfig_install_dir'] . '/server/conf-custom/install/debian6_dovecot.conf.master')) {
             copy($conf['ispconfig_install_dir'] . '/server/conf-custom/install/debian6_dovecot.conf.master', $config_dir . '/' . $configfile);
         } else {
             copy('tpl/debian6_dovecot.conf.master', $config_dir . '/' . $configfile);
         }
     }
     //* dovecot-sql.conf
     $configfile = 'dovecot-sql.conf';
     if (is_file($config_dir . '/' . $configfile)) {
         copy($config_dir . '/' . $configfile, $config_dir . '/' . $configfile . '~');
         chmod($config_dir . '/' . $configfile . '~', 0400);
     }
     $content = rfsel($conf['ispconfig_install_dir'] . '/server/conf-custom/install/debian6_dovecot-sql.conf.master', 'tpl/debian6_dovecot-sql.conf.master');
     $content = str_replace('{mysql_server_ispconfig_user}', $conf['mysql']['ispconfig_user'], $content);
     $content = str_replace('{mysql_server_ispconfig_password}', $conf['mysql']['ispconfig_password'], $content);
     $content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
     $content = str_replace('{mysql_server_host}', $conf['mysql']['host'], $content);
     $content = str_replace('{server_id}', $conf['server_id'], $content);
     wf($config_dir . '/' . $configfile, $content);
     chmod($config_dir . '/' . $configfile, 0600);
     chown($config_dir . '/' . $configfile, 'root');
     chgrp($config_dir . '/' . $configfile, 'root');
     // Dovecot shall ignore mounts in website directory
     if (is_installed('doveadm')) {
         exec("doveadm mount add '/var/www/*' ignore > /dev/null 2> /dev/null");
     }
 }
function edit_xinetd_conf($service)
{
    $xinetd_conf = '/etc/xinetd.conf';
    $contents = unix_nl(rf($xinetd_conf));
    $lines = explode("\n", $contents);
    $j = sizeof($lines);
    for ($i = 0; $i < sizeof($lines); $i++) {
        if (grep($lines[$i], $service, 'w')) {
            $fundstelle_anfang = $i;
            $j = $i;
            $parts = explode($lines[$i], $contents);
        }
        if ($j < sizeof($lines)) {
            if (strstr($lines[$i], '}')) {
                $fundstelle_ende = $i;
                $j = sizeof($lines);
            }
        }
    }
    if (isset($fundstelle_anfang) && isset($fundstelle_ende)) {
        for ($i = $fundstelle_anfang; $i <= $fundstelle_ende; $i++) {
            if (strstr($lines[$i], 'disable')) {
                $disable = explode('=', $lines[$i]);
                $disable[1] = ' yes';
                $lines[$i] = implode('=', $disable);
            }
        }
    }
    $fundstelle_anfang = NULL;
    $fundstelle_ende = NULL;
    $contents = implode("\n", $lines);
    wf($xinetd_conf, $contents);
}
Пример #10
0
<?php

function rf($file)
{
    $arr = array();
    $handle = fopen($file, 'r');
    if ($handle) {
        // while ($line = fgetcsv($handle))
        while ($line = fgets($handle)) {
            $arr[] = $line;
        }
    }
    return $arr;
}
$ret = rf("pinyin.txt");
foreach ($ret as $line) {
    preg_match('/([^-]*)-*([^\\s]*)/', $line, $matches);
    echo "\"{$matches[2]}\"=>\"{$matches[1]}\",\n";
}
         exit;
     } elseif (isset($_REQUEST['gfils'])) {
         $pos = $HTTP_POST_VARS['cfils'];
         sqlf($pos);
     } else {
         $pos = $HTTP_POST_VARS['cfil'];
     }
     switch ($_REQUEST['getm']) {
         case '1':
             $x5 = @fopen($pos, 'rw');
             $dc = @fread($x5, @filesize($pos));
             @fclose($x5);
             echo $dc;
             break;
         case '2':
             echo rf();
             break;
         case '3':
             if (function_exists('file_get_contents')) {
                 echo @file_get_contents($pos);
             }
             break;
     }
     echo "</textarea>";
     inp('hidden', '50', 'goto', path);
     inp('hidden', '50', 'svdi', $pos, '', '<br>');
     sub('svff', 'Save', $pr = '<br>');
     break;
 case isset($_REQUEST['cmdr']):
     rs('cmdm', '141', '22', $st = 'readonly');
     $pos = $_POST['cmde'];
Пример #12
0
 /**
  * Helper function - get the path to a template file based on
  * the local part of the filename. Checks first for the existence
  * of a distribution specific file and if not found looks in the
  * base template folder. Optionally the behaviour can be changed
  * by setting the 2nd parameter which will fetch the contents
  * of the template file and return it instead of the path. The 3rd
  * parameter further extends this behaviour by filtering the contents
  * by inserting the ispconfig database credentials using the {} placeholders.
  *
  * @param string $tLocal local part of filename
  * @param bool $tRf
  * @param bool $tDBCred
  * @return string Relative path to the chosen template file
  */
 protected function get_template_file($tLocal, $tRf = false, $tDBCred = false)
 {
     global $conf, $dist;
     $final_path = '';
     $dist_template = 'dist/tpl/' . strtolower($dist['name']) . "/{$tLocal}.master";
     if (file_exists($dist_template)) {
         $final_path = $dist_template;
     } else {
         $final_path = "tpl/{$tLocal}.master";
     }
     if (!$tRf) {
         return $final_path;
     } else {
         return !$tDBCred ? rf($final_path) : $this->insert_db_credentials(rf($final_path));
     }
 }
Пример #13
0
function ADSqlRf($inputName)
{
    $s = rf($inputName);
    //echo(mysql_escape_string("'-"));
    return replace(replace(replace($s, "\\", "\\\\"), "'", "\\'"), '"', '\\"');
    //更新于20160118
}
Пример #14
0
function rcol()
{
    echo "#" . rf() . rf() . rf() . rf() . rf() . rf();
}
Пример #15
0
function ADSqlRf($inputName)
{
    return rf($inputName);
}