Go to most recent revision | Details | Last modification | View Log | RSS feed
| Rev | Author | Line No. | Line |
|---|---|---|---|
| 1 | daniel-mar | 1 | <?php |
| 2 | |||
| 3 | if (!defined('WBLEGAL')) die('Kann nicht ohne Personal WebBase ausgeführt werden.'); |
||
| 4 | |||
| 5 | // In PWB-Arbeitsverzeichnis wandern |
||
| 6 | $olddir = getcwd(); |
||
| 7 | chdir('../../../'); |
||
| 8 | |||
| 9 | // Schlecht wegen dem Gleichrichter |
||
| 10 | // include 'includes/main.inc.php'; |
||
| 11 | |||
| 12 | include 'includes/configmanager.class.php'; |
||
| 13 | include 'includes/functions.inc.php'; |
||
| 14 | |||
| 15 | $WBConfig = new WBConfigManager(); |
||
| 16 | $WBConfig->init(); // Hier findet ein include statt, deswegen bleiben wir im PWB-Arbeitsverzeichnis |
||
| 17 | |||
| 18 | chdir($olddir); |
||
| 19 | unset($olddir); |
||
| 20 | |||
| 21 | // http://www.php.net/manual/en/function.realpath.php#57016 |
||
| 22 | function cleanPath($path) { |
||
| 23 | $result = array(); |
||
| 24 | // $pathA = preg_split('/[\/\\\]/', $path); |
||
| 25 | $pathA = explode('/', $path); |
||
| 26 | if (!$pathA[0]) |
||
| 27 | $result[] = ''; |
||
| 28 | foreach ($pathA AS $key => $dir) { |
||
| 29 | if ($dir == '..') { |
||
| 30 | if (end($result) == '..') { |
||
| 31 | $result[] = '..'; |
||
| 32 | } elseif (!array_pop($result)) { |
||
| 33 | $result[] = '..'; |
||
| 34 | } |
||
| 35 | } elseif ($dir && $dir != '.') { |
||
| 36 | $result[] = $dir; |
||
| 37 | } |
||
| 38 | } |
||
| 39 | if (!end($pathA)) |
||
| 40 | $result[] = ''; |
||
| 41 | return implode('/', $result); |
||
| 42 | } |
||
| 43 | |||
| 44 | define('RELATIVE_DIR2', cleanPath(RELATIVE_DIR.'../../../')); |
||
| 45 | |||
| 46 | // Wird Umleitung nach HTTPS erzwungen? |
||
| 47 | |||
| 48 | if ($WBConfig->getForceSSLFlag()) |
||
| 49 | { |
||
| 50 | @ini_set('session.cookie_secure', 1); |
||
| 51 | |||
| 52 | // Wenn keine SSL Verbindung da, dann zu SSL umleiten |
||
| 53 | if (!isset($_SERVER['HTTPS']) || (strtolower($_SERVER['HTTPS']) != 'on')) |
||
| 54 | { |
||
| 55 | wb_redirect_now('https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']); |
||
| 56 | } |
||
| 57 | } |
||
| 58 | |||
| 59 | // Backup der Einstellungen |
||
| 60 | |||
| 61 | $backup_session_save_handler = @ini_get('session.save_handler'); |
||
| 62 | |||
| 63 | // Personal WebBase-Spezifischer Session-Abschnitt |
||
| 64 | |||
| 65 | // http://de3.php.net/md5: Alexander Valyalkin |
||
| 66 | |||
| 67 | /* function get_rnd_iv($iv_len) |
||
| 68 | { |
||
| 69 | $iv = ''; |
||
| 70 | while ($iv_len-- > 0) { |
||
| 71 | $iv .= chr(mt_rand() & 0xff); |
||
| 72 | } |
||
| 73 | return $iv; |
||
| 74 | } |
||
| 75 | |||
| 76 | function wb_encrypt($plain_text, $password, $iv_len = 16) |
||
| 77 | { |
||
| 78 | $plain_text .= "\x13"; |
||
| 79 | $n = strlen($plain_text); |
||
| 80 | if ($n % 16) $plain_text .= str_repeat("\0", 16 - ($n % 16)); |
||
| 81 | $i = 0; |
||
| 82 | $enc_text = get_rnd_iv($iv_len); |
||
| 83 | $iv = substr($password ^ $enc_text, 0, 512); |
||
| 84 | while ($i < $n) { |
||
| 85 | $block = substr($plain_text, $i, 16) ^ pack('H*', md5($iv)); |
||
| 86 | $enc_text .= $block; |
||
| 87 | $iv = substr($block . $iv, 0, 512) ^ $password; |
||
| 88 | $i += 16; |
||
| 89 | } |
||
| 90 | return base64_encode($enc_text); |
||
| 91 | } |
||
| 92 | |||
| 93 | function wb_decrypt($enc_text, $password, $iv_len = 16) |
||
| 94 | { |
||
| 95 | $enc_text = base64_decode($enc_text); |
||
| 96 | $n = strlen($enc_text); |
||
| 97 | $i = $iv_len; |
||
| 98 | $plain_text = ''; |
||
| 99 | $iv = substr($password ^ substr($enc_text, 0, $iv_len), 0, 512); |
||
| 100 | while ($i < $n) { |
||
| 101 | $block = substr($enc_text, $i, 16); |
||
| 102 | $plain_text .= $block ^ pack('H*', md5($iv)); |
||
| 103 | $iv = substr($block . $iv, 0, 512) ^ $password; |
||
| 104 | $i += 16; |
||
| 105 | } |
||
| 106 | return preg_replace('/\\x13\\x00*$/', '', $plain_text); |
||
| 107 | } */ |
||
| 108 | |||
| 109 | global $WBConfig; |
||
| 110 | |||
| 111 | if ($WBConfig->getLockFlag()) |
||
| 112 | { |
||
| 113 | die('<h1>Personal WebBase ist gesperrt</h1>Die Variable "$lock" in "includes/config.inc.php" steht auf 1 bzw. true. Setzen Sie diese Variable erst auf 0, wenn das Hochladen der Dateien beim Installations- bzw. Updateprozess beendet ist. Wenn Sie Personal WebBase freigeben, bevor der Upload abgeschlossen ist, kann es zu einer Beschädigung der Kundendatenbank kommen!'); |
||
| 114 | } |
||
| 115 | |||
| 116 | @session_cache_limiter('private'); |
||
| 117 | @ini_set('session.cookie_path', RELATIVE_DIR2); |
||
| 118 | //@ini_set('session.cookie_domain', $_SERVER['HTTP_HOST']); |
||
| 119 | //@session_set_cookie_params(0, RELATIVE_DIR2, $_SERVER['HTTP_HOST'], $WBConfig->getForceSSLFlag()); |
||
| 120 | |||
| 121 | //@ini_set('session.auto_start', 0); |
||
| 122 | @ini_set('session.cache_expire', 180); |
||
| 123 | @ini_set('session.use_trans_sid', 0); |
||
| 124 | @ini_set('session.use_cookies', 1); |
||
| 125 | @ini_set('session.use_only_cookies', 1); |
||
| 126 | @ini_set('session.cookie_secure', $WBConfig->getForceSSLFlag()); |
||
| 127 | @ini_set('session.cookie_lifetime', 0); |
||
| 128 | @ini_set('session.gc_maxlifetime', 1440); |
||
| 129 | @ini_set('session.bug_compat_42', 0); |
||
| 130 | @ini_set('session.bug_compat_warn', 1); |
||
| 131 | if (version_compare(PHP_VERSION, '5.0.0', 'ge') && substr(PHP_OS, 0, 3) != 'WIN') |
||
| 132 | { |
||
| 133 | @ini_set('session.hash_function', 1); |
||
| 134 | @ini_set('session.hash_bits_per_character', 6); |
||
| 135 | } |
||
| 136 | @ini_set('session.save_handler', 'user'); |
||
| 137 | // @ini_set('session.save_path', '../../../includes/session/'); |
||
| 138 | // @ini_set('arg_separator.output', '&'); |
||
| 139 | // @ini_set('url_rewriter.tags', 'a=href,area=href,frame=src,input=src,fieldset='); |
||
| 140 | |||
| 141 | $wb_session_name = 'webbase'; |
||
| 142 | |||
| 143 | @session_unset(); |
||
| 144 | @session_destroy(); |
||
| 145 | |||
| 146 | // wb_newdatabasetable('sessions', $m2, 'session_id', "varchar(255) NOT NULL", |
||
| 147 | // 'last_updated', "datetime NOT NULL", |
||
| 148 | // 'data_value', "text"); |
||
| 149 | |||
| 150 | function sessao_open($aSavaPath, $aSessionName) |
||
| 151 | { |
||
| 152 | sessao_gc( ini_get('session.gc_maxlifetime') ); |
||
| 153 | return True; |
||
| 154 | } |
||
| 155 | |||
| 156 | function sessao_close() |
||
| 157 | { |
||
| 158 | return True; |
||
| 159 | } |
||
| 160 | |||
| 161 | function sessao_read( $aKey ) |
||
| 162 | { |
||
| 163 | global $WBConfig; |
||
| 164 | |||
| 165 | $wb_conn = @mysql_connect($WBConfig->getMySQLServer(), $WBConfig->getMySQLUsername(), $WBConfig->getMySQLPassword()); |
||
| 166 | $wb_selc = @mysql_select_db($WBConfig->getMySQLDatabase(), $wb_conn); |
||
| 167 | |||
| 168 | $busca = mysql_query("SELECT `data_value` FROM `".$WBConfig->getMySQLPrefix()."sessions` WHERE `session_id` = '".mysql_real_escape_string($aKey)."'"); |
||
| 169 | if (mysql_num_rows($busca) == 0) |
||
| 170 | { |
||
| 171 | mysql_query("INSERT INTO `".$WBConfig->getMySQLPrefix()."sessions` (`session_id`, `last_updated`, `data_value`) VALUES ('".mysql_real_escape_string($aKey)."', NOW(), '')"); |
||
| 172 | |||
| 173 | @mysql_close($wb_conn); |
||
| 174 | |||
| 175 | return ''; |
||
| 176 | } |
||
| 177 | else |
||
| 178 | { |
||
| 179 | $r = mysql_fetch_array($busca); |
||
| 180 | |||
| 181 | @mysql_close($wb_conn); |
||
| 182 | |||
| 183 | return wb_decrypt($r['data_value'], $WBConfig->getMySQLUsername().':'.$WBConfig->getMySQLPassword()); |
||
| 184 | } |
||
| 185 | } |
||
| 186 | |||
| 187 | function sessao_write( $aKey, $aVal ) |
||
| 188 | { |
||
| 189 | global $WBConfig; |
||
| 190 | |||
| 191 | $wb_conn = @mysql_connect($WBConfig->getMySQLServer(), $WBConfig->getMySQLUsername(), $WBConfig->getMySQLPassword()); |
||
| 192 | $wb_selc = @mysql_select_db($WBConfig->getMySQLDatabase(), $wb_conn); |
||
| 193 | |||
| 194 | mysql_query("UPDATE `".$WBConfig->getMySQLPrefix()."sessions` SET `data_value` = '".wb_encrypt($aVal, $WBConfig->getMySQLUsername().':'.$WBConfig->getMySQLPassword())."', `last_updated` = NOW() WHERE `session_id` = '".mysql_real_escape_string($aKey)."'"); |
||
| 195 | |||
| 196 | @mysql_close($wb_conn); |
||
| 197 | |||
| 198 | return True; |
||
| 199 | } |
||
| 200 | |||
| 201 | function sessao_destroy( $aKey ) |
||
| 202 | { |
||
| 203 | global $WBConfig; |
||
| 204 | |||
| 205 | $wb_conn = @mysql_connect($WBConfig->getMySQLServer(), $WBConfig->getMySQLUsername(), $WBConfig->getMySQLPassword()); |
||
| 206 | $wb_selc = @mysql_select_db($WBConfig->getMySQLDatabase(), $wb_conn); |
||
| 207 | |||
| 208 | mysql_query("DELETE FROM `".$WBConfig->getMySQLPrefix()."sessions` WHERE `session_id` = '".mysql_real_escape_string($aKey)."'"); |
||
| 209 | if (mysql_affected_rows() > 0) |
||
| 210 | mysql_query("OPTIMIZE TABLE `".$WBConfig->getMySQLPrefix()."sessions`"); |
||
| 211 | |||
| 212 | @mysql_close($wb_conn); |
||
| 213 | |||
| 214 | return True; |
||
| 215 | } |
||
| 216 | |||
| 217 | function sessao_gc( $aMaxLifeTime ) |
||
| 218 | { |
||
| 219 | global $WBConfig; |
||
| 220 | |||
| 221 | $wb_conn = @mysql_connect($WBConfig->getMySQLServer(), $WBConfig->getMySQLUsername(), $WBConfig->getMySQLPassword()); |
||
| 222 | $wb_selc = @mysql_select_db($WBConfig->getMySQLDatabase(), $wb_conn); |
||
| 223 | |||
| 224 | mysql_query("DELETE FROM `".$WBConfig->getMySQLPrefix()."sessions` WHERE UNIX_TIMESTAMP(NOW()) - UNIX_TIMESTAMP(`last_updated`) > ".mysql_real_escape_string($aMaxLifeTime)); |
||
| 225 | if (mysql_affected_rows() > 0) |
||
| 226 | mysql_query("OPTIMIZE TABLE `".$WBConfig->getMySQLPrefix()."sessions`"); |
||
| 227 | |||
| 228 | @mysql_close($wb_conn); |
||
| 229 | |||
| 230 | return True; |
||
| 231 | } |
||
| 232 | |||
| 233 | @session_set_save_handler("sessao_open", "sessao_close", "sessao_read", "sessao_write", "sessao_destroy", "sessao_gc"); |
||
| 234 | |||
| 235 | if (isset($_COOKIE[$wb_session_name])) @session_id($_COOKIE[$wb_session_name]); |
||
| 236 | @session_name($wb_session_name); |
||
| 237 | @session_start(); |
||
| 238 | |||
| 239 | if ((!isset($_SESSION['wb_user_type'])) || ((isset($_SESSION['wb_user_type'])) && ($_SESSION['wb_user_type'] == ''))) |
||
| 240 | { |
||
| 241 | die('<script language="JavaScript"> |
||
| 242 | <!-- |
||
| 243 | alert("Sie sind nicht mehr in Personal WebBase eingeloggt!"); |
||
| 244 | parent.window.close(); |
||
| 245 | // --> |
||
| 246 | </script>'); |
||
| 247 | |||
| 248 | } |
||
| 249 | |||
| 250 | if (version_compare(PHP_VERSION, '5.1.2', 'lt') && isset($_COOKIE[$session_name]) && eregi("\r|\n", $_COOKIE[$session_name])) |
||
| 251 | { |
||
| 252 | die('Angriff'); |
||
| 253 | } |
||
| 254 | |||
| 255 | // http://lists.phpbar.de/pipermail/php/Week-of-Mon-20040322/007749.html |
||
| 256 | // Entnommen von functions.inc.php |
||
| 257 | |||
| 258 | /* function fetchip() |
||
| 259 | { |
||
| 260 | $client_ip = (isset($_SERVER['HTTP_CLIENT_IP'])) ? $_SERVER['HTTP_CLIENT_IP'] : ''; |
||
| 261 | $x_forwarded_for = (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) ? $_SERVER['HTTP_X_FORWARDED_FOR'] : ''; |
||
| 262 | $remote_addr = (isset($_SERVER['REMOTE_ADDR'])) ? $_SERVER['REMOTE_ADDR'] : ''; |
||
| 263 | |||
| 264 | if (!empty($client_ip)) |
||
| 265 | { |
||
| 266 | $ip_expl = explode('.',$client_ip); |
||
| 267 | $referer = explode('.',$remote_addr); |
||
| 268 | if($referer[0] != $ip_expl[0]) |
||
| 269 | { |
||
| 270 | $ip=array_reverse($ip_expl); |
||
| 271 | $return=implode('.',$ip); |
||
| 272 | } |
||
| 273 | else |
||
| 274 | { |
||
| 275 | $return = $client_ip; |
||
| 276 | } |
||
| 277 | } |
||
| 278 | else if (!empty($x_forwarded_for)) |
||
| 279 | { |
||
| 280 | if(strstr($x_forwarded_for,',')) |
||
| 281 | { |
||
| 282 | $ip_expl = explode(',',$x_forwarded_for); |
||
| 283 | $return = end($ip_expl); |
||
| 284 | } |
||
| 285 | else |
||
| 286 | { |
||
| 287 | $return = $x_forwarded_for; |
||
| 288 | } |
||
| 289 | } |
||
| 290 | else |
||
| 291 | { |
||
| 292 | $return = $remote_addr; |
||
| 293 | } |
||
| 294 | unset ($client_ip, $x_forwarded_for, $remote_addr, $ip_expl); |
||
| 295 | return $return; |
||
| 296 | } */ |
||
| 297 | |||
| 298 | $usedns = TRUE; |
||
| 299 | |||
| 300 | $useragent = $_SERVER['HTTP_USER_AGENT']; |
||
| 301 | $host = fetchip(); |
||
| 302 | |||
| 303 | if ($usedns) // <- war im Originalen $global['dns']... was soll das sein?! |
||
| 304 | $dns = @gethostbyaddr($host); |
||
| 305 | else |
||
| 306 | $dns = $host; |
||
| 307 | |||
| 308 | if ((isset($_SESSION['session_secured'])) && ($_SESSION['session_secured'])) |
||
| 309 | { |
||
| 310 | if ( |
||
| 311 | (($_SESSION['host'] != $host) && !$usedns) |
||
| 312 | || ($_SESSION['dns'] != $dns) |
||
| 313 | || ($_SESSION['useragent'] != $useragent) |
||
| 314 | ) { |
||
| 315 | session_regenerate_id(); |
||
| 316 | session_unset(); |
||
| 317 | } |
||
| 318 | } else { |
||
| 319 | $_SESSION['host'] = $host; |
||
| 320 | $_SESSION['dns'] = $dns; |
||
| 321 | $_SESSION['useragent'] = $useragent; |
||
| 322 | $_SESSION['session_secured'] = 1; |
||
| 323 | } |
||
| 324 | |||
| 325 | |||
| 326 | // Zusatz für phpMyAdmin ... |
||
| 327 | // Inhalte für die config.inc.php zwischenspeichern und Zustand wiederherstellen |
||
| 328 | |||
| 329 | $WB_BAK_SESSION = $_SESSION; |
||
| 330 | global $WB_BAK_SESSION; |
||
| 331 | |||
| 332 | @session_write_close(); |
||
| 333 | @session_unset(); |
||
| 334 | @session_regenerate_id(); |
||
| 335 | |||
| 336 | // Wiederherstellen der Dinge |
||
| 337 | |||
| 338 | @ini_set('session.save_handler', $backup_session_save_handler); |
||
| 339 | |||
| 340 | unset($backup_session_save_handler); |
||
| 341 | |||
| 342 | // Ende Personal WebBase-Abschnitt |
||
| 343 | |||
| 344 | ?> |