Subversion Repositories php-qbpwcf

Rev

Rev 3 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed

Rev Author Line No. Line
3 liveuser 1 
#!/usr/bin/php
2 
<?php
3 
 
4 
/*
5 
	QBPWCF, Quick Build PHP website Component base on Fedora Linux.
226 liveuser 6 
    Copyright (C) 2014~2025 MIN ZHI, CHEN
3 liveuser 7 
 
8 
    This file is part of QBPWCF.
9 
 
10 
    QBPWCF is free software: you can redistribute it and/or modify
11 
    it under the terms of the GNU General Public License as published by
12 
    the Free Software Foundation, either version 3 of the License, or
13 
    (at your option) any later version.
14 
 
15 
    QBPWCF is distributed in the hope that it will be useful,
16 
    but WITHOUT ANY WARRANTY; without even the implied warranty of
17 
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
18 
    GNU General Public License for more details.
19 
 
20 
    You should have received a copy of the GNU General Public License
21 
    along with QBPWCF.  If not, see <http://www.gnu.org/licenses/>.
226 liveuser 22 
 
3 liveuser 23 
*/
24 
 
25 
#使用命名空間qbpwcf
26 
namespace qbpwcf;
27 
 
28 
#取得 lib path
29 
exec("php -f ".escapeshellarg(pathinfo(__FILE__)["dirname"]."/libexec/folderOfUsrLib.php"),$output,$status);
30 
 
31 
#如果執行失敗
32 
if($status!==0){
33 
 
34 
	#debug
35 
	var_dump(__LINE__,$output);
36 
 
37 
	#結束執行,回傳shell 1.
38 
	exit(1);
39 
 
40 
	}#if end
41 
 
42 
#儲存lib path
43 
$folderOfUsrLib=$output[0];
44 
 
45 
#以該檔案的實際位置的 lib path 為 include path 首位
46 
$output=array();
47 
exec("cd ".escapeshellarg(pathinfo(__FILE__)["dirname"]."/../".$folderOfUsrLib."/qbpwcf").";pwd;",$output,$status);
48 
 
49 
#如果執行失敗
50 
if($status!==0){
51 
 
52 
	#debug
53 
	var_dump(__LINE__,$output);
54 
 
55 
	#結束執行,回傳shell 1.
56 
	exit(1);
57 
 
58 
	}#if end
59 
 
226 liveuser 60 
#設置 include path
3 liveuser 61 
set_include_path($output[0].PATH_SEPARATOR.get_include_path());
62 
#匯入外部套件
63 
include("allInOne.php");
64 
 
65 
#涵式說明:
66 
#檢查 httpd 與 postfix/smtpd 的 log 與 named 的log 把惡意連線的 IP 用防火牆阻阻擋
67 
#回傳結果:
68 
#$result["status"],執行是否正常,"true"代表正常,"false"代表不正常.
69 
#$result["error"],錯誤訊息.
70 
#$result["function"],當前執行的函數名稱.
71 
#$result["argu"],所使用的參數.
72 
#$result["found"],是否有找到符合的檔案,"true"代表有;"false"代表沒有.
73 
#$result["content"],找到的檔案陣列.
74 
#必填參數:
75 
#$conf["fileArgu"],字串,php變數__FILE__的內容,亦即該檔案在檔案系統的絕對路徑
76 
$conf["fileArgu"]=__FILE__;
77 
#可省略參數:
78 
#$conf["logPath"],字串,httpd的log位置,預設為 "/var/log/httpd"
79 
#$conf["logPath"]="";
80 
#$conf["username"],字串,要用什麼使用者來執行,預設為root使用者
81 
#$conf["username"]="";
82 
#$conf["password"],字串,root使用者的密碼,
83 
#$conf["password"]="";
84 
#$conf["getIplistOnly"],字串,是否不阻擋IP只取得有問題的IP,預設為"false",要阻擋IP;"true"代表只取得有問題的IP.
85 
$conf["getIplistOnly"]="true";
86 
#備註:
87 
#要增加https的攻擊偵測.
88 
$blockAcctackIp=cmd::blockAcctackIp($conf);
89 
unset($conf);
90 
 
91 
#如果執行失敗
92 
if($blockAcctackIp["status"]==="false"){
93 
 
94 
	#設置執行失敗
95 
	$result["status"]="false";
96 
 
97 
	#設置錯誤訊息
98 
	$result["error"]=$blockAcctackIp;
99 
 
100 
	#印出結果
101 
	var_dump($result);
226 liveuser 102 
 
3 liveuser 103 
	#結束執行
104 
	exit;
105 
 
106 
	}#if end
226 liveuser 107 
 
3 liveuser 108 
#如果有執行封鎖IP的情形
109 
if(isset($blockAcctackIp["content"])){
110 
 
111 
	#comment
112 
	echo "本次發現有問題的IP的結果如下:".PHP_EOL;
113 
	echo json_encode($blockAcctackIp["content"]);
114 
 
115 
	}#if end
226 liveuser 116 
 
3 liveuser 117 
#反之
118 
else{
119 
 
120 
	#反之
121 
	echo "本次無發現有問題的IP".PHP_EOL;
122 
 
123 
	}#else end
124 
 
125 
?>