wok-6.x annotate ppp/stuff/ppp.cgi @ rev 19457
ppp.cgi: anti phishing attack trick
author | Pascal Bellard <pascal.bellard@slitaz.org> |
---|---|
date | Fri Oct 21 15:36:54 2016 +0200 (2016-10-21) |
parents | 50aef5b483cb |
children | df2a96b56a0f |
rev | line source |
---|---|
pascal@18017 | 1 #!/bin/sh |
pascal@18017 | 2 # |
pascal@18017 | 3 # Network/PPP configuration CGI interface |
pascal@18017 | 4 # |
pascal@18017 | 5 # Copyright (C) 2015 SliTaz GNU/Linux - BSD License |
pascal@18017 | 6 # |
pascal@18017 | 7 |
pascal@18017 | 8 # Common functions from libtazpanel |
pascal@18017 | 9 . lib/libtazpanel |
pascal@18017 | 10 get_config |
pascal@18017 | 11 |
pascal@18017 | 12 |
pascal@18017 | 13 case "$1" in |
pascal@18017 | 14 menu) |
pascal@18017 | 15 TEXTDOMAIN_original=$TEXTDOMAIN |
pascal@18017 | 16 export TEXTDOMAIN='ppp' |
pascal@18017 | 17 |
pascal@18025 | 18 case "$2" in |
pascal@18025 | 19 *VPN*) |
pascal@18025 | 20 [ "$(which pptp 2>/dev/null)$(which pptpd 2>/dev/null)" ] && cat <<EOT |
al@18065 | 21 <li><a data-icon="vpn" href="ppp.cgi#pptp" data-root>$(_ 'PPTP')</a></li> |
pascal@18025 | 22 EOT |
pascal@18025 | 23 [ "$(which pppssh 2>/dev/null)" ] && cat <<EOT |
pascal@18066 | 24 <li><a data-icon="vpn" href="ppp.cgi#pppssh" data-root>$(_ 'PPP/SSH')</a></li> |
pascal@18025 | 25 EOT |
pascal@18025 | 26 ;; |
pascal@18025 | 27 *) |
pascal@18025 | 28 cat <<EOT |
al@18065 | 29 <li><a data-icon="modem" href="ppp.cgi" data-root>$(_ 'PPP Modem')</a></li> |
pascal@18017 | 30 EOT |
pascal@18025 | 31 esac |
pascal@18017 | 32 export TEXTDOMAIN=$TEXTDOMAIN_original |
pascal@18017 | 33 exit |
pascal@18017 | 34 esac |
pascal@18017 | 35 |
pascal@18017 | 36 |
pascal@18017 | 37 # |
pascal@18017 | 38 # Commands |
pascal@18017 | 39 # |
pascal@18017 | 40 |
pascal@18017 | 41 case " $(GET) " in |
pascal@18025 | 42 *\ setppppstn\ *) |
pascal@18025 | 43 if [ "$(GET start_pstn)" -a "$(GET user)" ]; then |
pascal@18017 | 44 grep -s "$(GET user)" /etc/ppp/pap-secrets || |
pascal@18017 | 45 echo "$(GET user) * $(GET pass)" >> /etc/ppp/pap-secrets |
pascal@18017 | 46 grep -s "$(GET user)" /etc/ppp/chap-secrets || |
pascal@18017 | 47 echo "$(GET user) * $(GET pass)" >> /etc/ppp/chap-secrets |
pascal@18017 | 48 sed -i 's/^name /d' /etc/ppp/options |
pascal@18017 | 49 echo "name $(GET user)" >> /etc/ppp/options |
pascal@18017 | 50 /etc/ppp/scripts/ppp-off |
pascal@18017 | 51 /etc/ppp/scripts/ppp-on & |
pascal@18017 | 52 fi |
pascal@18025 | 53 if [ "$(GET stop_pstn)" ]; then |
pascal@18017 | 54 /etc/ppp/scripts/ppp-off |
pascal@18017 | 55 fi |
pascal@18017 | 56 ;; |
pascal@18017 | 57 *\ setpppoe\ *) |
pascal@18017 | 58 if [ "$(GET start_pppoe)" -a "$(GET user)" ]; then |
pascal@18017 | 59 grep -s "$(GET user)" /etc/ppp/pap-secrets || |
pascal@18017 | 60 echo "$(GET user) * $(GET pass)" >> /etc/ppp/pap-secrets |
pascal@18017 | 61 grep -s "$(GET user)" /etc/ppp/chap-secrets || |
pascal@18017 | 62 echo "$(GET user) * $(GET pass)" >> /etc/ppp/chap-secrets |
pascal@18017 | 63 grep -qs pppoe /etc/ppp/options || cat > /etc/ppp/options <<EOT |
pascal@18017 | 64 plugin rp-pppoe.so |
pascal@18017 | 65 noipdefault |
pascal@18017 | 66 defaultroute |
pascal@18017 | 67 mtu 1492 |
pascal@18017 | 68 mru 1492 |
pascal@18017 | 69 lock |
pascal@18017 | 70 EOT |
pascal@18017 | 71 sed -i 's/^name /d' /etc/ppp/options |
pascal@18017 | 72 echo "name $(GET user)" >> /etc/ppp/options |
pascal@18017 | 73 ( . /etc/network.conf ; pppd $INTERFACE & ) |
pascal@18017 | 74 fi |
pascal@18017 | 75 if [ "$(GET stop_pppoe)" ]; then |
pascal@18017 | 76 killall pppd |
pascal@18017 | 77 fi |
pascal@18017 | 78 ;; |
pascal@18017 | 79 *\ setpppssh\ *) |
pascal@18017 | 80 cat > /etc/ppp/pppssh <<EOT |
pascal@18017 | 81 PEER="$(GET peer)" |
pascal@18017 | 82 SSHARG="$(GET ssharg)" |
pascal@18017 | 83 LOCALIP="$(GET localip)" |
pascal@18017 | 84 REMOTEIP="$(GET remoteip)" |
pascal@18017 | 85 LOCALPPP="$(GET localpppopt)" |
pascal@18017 | 86 REMOTEPPP="$(GET remotepppopt)" |
pascal@18017 | 87 ROUTES="$(GET routes)" |
pascal@19355 | 88 UDP="$(GET udp)" |
pascal@18017 | 89 EOT |
pascal@18017 | 90 [ "$(GET pass)" ] && export DROPBEAR_PASSWORD="$(GET pass)" |
pascal@18042 | 91 case " $(GET) " in |
pascal@18042 | 92 *\ send_key\ *) |
pascal@18017 | 93 ( dropbearkey -y -f /etc/dropbear/dropbear_rsa_host_key ; |
pascal@18017 | 94 cat /etc/ssh/ssh_host_rsa_key.pub ) 2> /dev/null | \ |
pascal@18017 | 95 grep ^ssh | dbclient $(echo $(GET send_key) | sed \ |
pascal@18017 | 96 's/.*\([A-Za-z0-9_\.-]*\).*/\1/') "mkdir .ssh 2> /dev/null ; \ |
pascal@18017 | 97 while read key; do for i in authorized_keys authorized_keys2; do \ |
pascal@18017 | 98 grep -qs '\$key' .ssh/\$i || echo '\$key' >> .ssh/\$i ; done ; done ; \ |
pascal@18017 | 99 chmod 700 .ssh ; chmod 600 .ssh/authorized_keys*" |
pascal@18042 | 100 ;; |
pascal@18042 | 101 *\ stop_pppssh\ *) |
pascal@18017 | 102 ppp="$(sed '/pppd/!d;s/.*="\([^"]*\).*/\1/' /usr/bin/pppssh)" |
pascal@18042 | 103 kill $(busybox ps x | grep "$ppp" | awk '/pty/{next}/dbclient/{print $1}') |
pascal@18042 | 104 ;; |
pascal@18042 | 105 *\ start_pppssh\ *) |
pascal@18042 | 106 EOT |
pascal@18017 | 107 pppssh "$(GET ssharg) $(GET peer)" \ |
pascal@18017 | 108 "$(GET localip):$(GET remoteip) $(GET localpppopt)" \ |
pascal@19355 | 109 "$(GET remotepppopt)" "$(GET routes)" "$(GET udp)" & |
pascal@18042 | 110 ;; |
pascal@18042 | 111 esac |
pascal@18017 | 112 ;; |
pascal@18017 | 113 esac |
pascal@18017 | 114 |
pascal@18017 | 115 USERNAME="$(sed '/^name/!d;s/^[^ ]* *//' /etc/ppp/options)" |
pascal@18017 | 116 PASSWORD="$(awk -v key=$USERNAME "\$1==key{print \$3}" /etc/ppp/pap-secrets)" |
pascal@18017 | 117 ACCOUNT="$(sed '/^ACCOUNT=/!d;s/^.*=\([^ \t]*\).*/\1/' /etc/ppp/scripts/ppp-on)" |
pascal@18025 | 118 PASSPSTN="$(sed '/^PASSWORD=/!d;s/^.*=\([^ \t]*\).*/\1/' /etc/ppp/scripts/ppp-on)" |
pascal@18017 | 119 PHONE="$(sed '/^TELEPHONE=/!d;s/^.*=\([^ \t]*\).*/\1/' /etc/ppp/scripts/ppp-on)" |
pascal@18017 | 120 TITLE="$(_ 'TazPanel - Network') - $(_ 'PPP Connections')" |
pascal@18017 | 121 header |
pascal@18017 | 122 xhtml_header | sed 's/id="content"/id="content-sidebar"/' |
pascal@18017 | 123 cat << EOT |
pascal@18017 | 124 <div id="sidebar"> |
pascal@18017 | 125 <section> |
pascal@18017 | 126 <header> |
pascal@18017 | 127 $(_ 'Documentation') |
pascal@18017 | 128 </header> |
pascal@19457 | 129 <a data-icon="web" href="http://ppp.samba.org/" target="_blank" rel="noopener">$(_ 'PPP web page')</a><p> |
pascal@19457 | 130 <a data-icon="help" href="index.cgi?exec=pppd%20--help" target="_blank" rel="noopener">$(_ 'PPP help')</a><p> |
pascal@19457 | 131 <a data-icon="help" href="index.cgi?exec=man%20pppd" target="_blank" rel="noopener">$(_ 'PPP Manual')</a><p> |
pascal@18017 | 132 EOT |
pascal@18017 | 133 [ "$(which pptp 2>/dev/null)" ] && cat <<EOT |
pascal@19457 | 134 <a data-icon="web" href="http://pptpclient.sourceforge.net/" target="_blank" rel="noopener">$(_n 'PPTP web page')</a><p> |
pascal@19457 | 135 <a data-icon="help" href="index.cgi?exec=pptp" target="_blank" rel="noopener">$(_ 'PPTP Help')</a><p> |
pascal@18017 | 136 EOT |
pascal@18017 | 137 [ "$(which pptpd 2>/dev/null)" ] && cat <<EOT |
pascal@19457 | 138 <a data-icon="web" href="http://poptop.sourceforge.net/" target="_blank" rel="noopener">$(_n 'PPTPD web page')</a><p> |
pascal@19457 | 139 <a data-icon="help" href="index.cgi?exec=pptpd%20--help" target="_blank" rel="noopener">$(_ 'PPTPD Help')</a><p> |
pascal@18017 | 140 EOT |
pascal@18017 | 141 [ "$(which pppssh 2>/dev/null)" ] && cat <<EOT |
pascal@19457 | 142 <a data-icon="web" href="http://doc.slitaz.org/en:guides:vpn" target="_blank" rel="noopener">$(_n 'VPN Wiki')</a><p> |
pascal@19457 | 143 <a data-icon="help" href="index.cgi?exec=dbclient" target="_blank" rel="noopener">$(_ 'SSH Help')</a><p> |
pascal@18017 | 144 EOT |
pascal@18017 | 145 cat << EOT |
pascal@18017 | 146 <footer> |
pascal@18017 | 147 </footer> |
pascal@18017 | 148 </section> |
pascal@18017 | 149 <section> |
pascal@18017 | 150 <header> |
pascal@18017 | 151 $(_ 'Configuration') |
pascal@18017 | 152 </header> |
pascal@19457 | 153 <a data-icon="conf" href="index.cgi?file=/etc/ppp/scripts/ppp-on" target="_blank" rel="noopener">$(_ 'PPP PSTN script')</a><p> |
pascal@19457 | 154 <a data-icon="conf" href="index.cgi?file=/etc/ppp/scripts/ppp-on-dialer" target="_blank" rel="noopener">$(_ 'PPP dialer chat')</a><p> |
pascal@19457 | 155 <a data-icon="conf" href="index.cgi?file=/etc/ppp/options" target="_blank" rel="noopener">$(_ 'PPP options')</a><p> |
pascal@19457 | 156 <a data-icon="conf" href="index.cgi?file=/etc/ppp/chap-secrets" target="_blank" rel="noopener">$(_ 'chap users')</a><p> |
pascal@19457 | 157 <a data-icon="conf" href="index.cgi?file=/etc/ppp/pap-secrets" target="_blank" rel="noopener">$(_ 'pap users')</a><p> |
pascal@18017 | 158 EOT |
pascal@18017 | 159 for i in /etc/ppp/peers/* ; do |
pascal@18017 | 160 [ -s "$i" ] && cat << EOT |
pascal@19457 | 161 <a data-icon="conf" href="index.cgi?file=$i" target="_blank" rel="noopener">$(basename $i)</a><p> |
pascal@18017 | 162 EOT |
pascal@18017 | 163 done |
pascal@18017 | 164 [ "$(which pptpd 2>/dev/null)" ] && cat <<EOT |
pascal@19457 | 165 <a data-icon="conf" href="index.cgi?file=/etc/pptpd.conf" target="_blank" rel="noopener">$(_ 'pptpd.conf')</a><p> |
pascal@18017 | 166 EOT |
pascal@18017 | 167 if [ "$(busybox ps x | grep "pppd" | awk '/modem/{print $1}')" ]; then |
pascal@18017 | 168 start_disabled='disabled' |
pascal@18017 | 169 else |
pascal@18017 | 170 stop_disabled='disabled' |
pascal@18017 | 171 fi |
pascal@18020 | 172 if [ "$(busybox ps x | grep "pppd" | awk '/eth/{print $1}')" ]; then |
pascal@18020 | 173 startoe_disabled='disabled' |
pascal@18020 | 174 else |
pascal@18020 | 175 stopoe_disabled='disabled' |
pascal@18020 | 176 fi |
pascal@18017 | 177 cat << EOT |
pascal@18017 | 178 <footer> |
pascal@18017 | 179 </footer> |
pascal@18017 | 180 </section> |
pascal@18017 | 181 </div> |
pascal@18017 | 182 |
pascal@18025 | 183 <a name="ppppstn"></a> |
pascal@18017 | 184 <section> |
pascal@18017 | 185 <header> |
pascal@18067 | 186 <span data-icon="modem">$(_ 'PSTN modem') - |
pascal@18025 | 187 $(_ 'Manage PSTN Internet connections')</span> |
pascal@18017 | 188 </header> |
pascal@18017 | 189 <form action="index.cgi" id="indexform"></form> |
pascal@18042 | 190 <form method="get"> |
pascal@18042 | 191 <input type="hidden" name="setppppstn" /> |
pascal@18017 | 192 <table> |
pascal@18017 | 193 <tr> |
pascal@18017 | 194 <td>$(_ 'Username')</td> |
pascal@18017 | 195 <td><input type="text" name="user" size="40" value="$ACCOUNT" /></td> |
pascal@18017 | 196 </tr> |
pascal@18017 | 197 <tr> |
pascal@18017 | 198 <td>$(_ 'Password')</td> |
pascal@18025 | 199 <td><input type="text" name="pass" size="40" value="$PASSPSTN" /></td> |
pascal@18017 | 200 </tr> |
pascal@18017 | 201 <tr> |
pascal@18017 | 202 <td>$(_ 'Phone number')</td> |
pascal@18017 | 203 <td><input type="text" name="phone" size="40" value="$PHONE" /></td> |
pascal@18017 | 204 </tr> |
pascal@18017 | 205 </table> |
pascal@18042 | 206 <footer><!-- |
pascal@18042 | 207 --><button type="submit" name="start_pstn" data-icon="start" $start_disabled>$(_ 'Start' )</button><!-- |
pascal@18042 | 208 --><button type="submit" name="stop_pstn" data-icon="stop" $stop_disabled >$(_ 'Stop' )</button><!-- |
pascal@18042 | 209 --></footer> |
pascal@18017 | 210 </form> |
pascal@18017 | 211 </section> |
pascal@18017 | 212 |
pascal@18017 | 213 <a name="pppoe"></a> |
pascal@18017 | 214 <section> |
pascal@18017 | 215 <header> |
pascal@18017 | 216 <span data-icon="eth">$(_ 'Cable Modem') - |
pascal@18017 | 217 $(_ 'Manage PPPoE Internet connections')</span> |
pascal@18017 | 218 </header> |
pascal@18042 | 219 <form method="get"> |
pascal@18042 | 220 <input type="hidden" name="setpppoe" /> |
pascal@18017 | 221 <table> |
pascal@18017 | 222 <tr> |
pascal@18017 | 223 <td>$(_ 'Username')</td> |
pascal@18017 | 224 <td><input type="text" name="user" size="40" value="$USERNAME" /></td> |
pascal@18017 | 225 </tr> |
pascal@18017 | 226 <tr> |
pascal@18017 | 227 <td>$(_ 'Password')</td> |
pascal@18017 | 228 <td><input type="text" name="pass" size="40" value="$PASSWORD" /></td> |
pascal@18017 | 229 </tr> |
pascal@18017 | 230 </table> |
pascal@18042 | 231 <footer><!-- |
pascal@18042 | 232 --><button type="submit" name="start_pppoe" data-icon="start" $startoe_disabled>$(_ 'Start' )</button><!-- |
pascal@18042 | 233 --><button type="submit" name="stop_pppoe" data-icon="stop" $stopoe_disabled >$(_ 'Stop' )</button><!-- |
pascal@18042 | 234 --></footer> |
pascal@18017 | 235 </form> |
pascal@18017 | 236 </section> |
pascal@18017 | 237 EOT |
pascal@18017 | 238 if [ "$(which pppssh 2>/dev/null)" ]; then |
pascal@18017 | 239 [ -s /etc/ppp/pppssh ] && . /etc/ppp/pppssh |
pascal@18017 | 240 ppp="$(sed '/pppd/!d;s/.*="\([^"]*\).*/\1/' /usr/bin/pppssh)" |
pascal@18017 | 241 if [ "$(busybox ps x | grep "$ppp" | awk '/dbclient/{print $1}')" ]; then |
pascal@18042 | 242 startssh_disabled='disabled' |
pascal@18017 | 243 else |
pascal@18042 | 244 stopssh_disabled='disabled' |
pascal@18017 | 245 fi |
pascal@18017 | 246 cat <<EOT |
pascal@18017 | 247 <a name="pppssh"></a> |
pascal@18017 | 248 <section> |
pascal@18017 | 249 <header> |
pascal@18067 | 250 <span data-icon="vpn">$(_ 'Virtual Private Network') - |
pascal@18017 | 251 $(_ 'Manage private TCP/IP connections')</span> |
pascal@18017 | 252 </header> |
pascal@18042 | 253 <form method="get"> |
pascal@18042 | 254 <input type="hidden" name="setpppssh" /> |
pascal@18017 | 255 <table> |
pascal@18017 | 256 <tr> |
pascal@18017 | 257 <td>$(_ 'Peer')</td> |
pascal@18017 | 258 <td><input type="text" name="peer" size="50" value="${PEER:-user@elsewhere}" /></td> |
pascal@18017 | 259 </tr> |
pascal@18017 | 260 <tr> |
pascal@18017 | 261 <td>$(_ 'SSH options')</td> |
pascal@18017 | 262 <td><input type="text" name="ssharg" size="50" value="$SSHARG" /></td> |
pascal@18017 | 263 </tr> |
pascal@18017 | 264 <tr> |
pascal@18017 | 265 <td>$(_ 'Password')</td> |
paul@18037 | 266 <td><input type="password" name="pass" size="50" title="Should be empty to use the SSH key; useful to send the SSH key only" /></td> |
pascal@18017 | 267 </tr> |
pascal@18017 | 268 <tr> |
pascal@18017 | 269 <td>$(_ 'Local IP address')</td> |
pascal@18017 | 270 <td><input type="text" name="localip" size="50" value="${LOCALIP:-192.168.254.1}" /></td> |
pascal@18017 | 271 </tr> |
pascal@18017 | 272 <tr> |
pascal@18017 | 273 <td>$(_ 'Remote IP address')</td> |
pascal@18017 | 274 <td><input type="text" name="remoteip" size="50" value="${REMOTEIP:-192.168.254.2}" /></td> |
pascal@18017 | 275 </tr> |
pascal@18017 | 276 <tr> |
pascal@18017 | 277 <td>$(_ 'Local PPP options')</td> |
pascal@18017 | 278 <td><input type="text" name="localpppopt" size="50" value="$LOCALPPP" /></td> |
pascal@18017 | 279 </tr> |
pascal@18017 | 280 <tr> |
pascal@18017 | 281 <td>$(_ 'Remote PPP options')</td> |
pascal@18034 | 282 <td><input type="text" name="remotepppopt" size="50" value="${REMOTEPPP:-proxyarp}" title="$(_ "You may need 'proxyarp' to use the new routes")" /></td> |
pascal@18017 | 283 </tr> |
pascal@18017 | 284 <tr> |
pascal@18017 | 285 <td>$(_ 'Peer routes')</td> |
pascal@18041 | 286 <td><input type="text" name="routes" size="50" value="${ROUTES:-192.168.10.0/24 192.168.20.0/28}" title="$(_ "Routes on peer network to import or 'default' to redirect the default route")"/></td> |
pascal@18017 | 287 </tr> |
pascal@19355 | 288 <tr> |
pascal@19355 | 289 <td>$(_ 'UDP port')</td> |
pascal@19355 | 290 <td><input type="text" name="udp" size="50" value="$UDP" title="$(_ "Optional UDP port for a real-time but unencrypted link")"/></td> |
pascal@19355 | 291 </tr> |
pascal@18017 | 292 </table> |
pascal@18042 | 293 <footer><!-- |
pascal@18042 | 294 --><button type="submit" name="start_pppssh" data-icon="start" $startssh_disabled>$(_ 'Start' )</button><!-- |
pascal@18042 | 295 --><button type="submit" name="stop_pppssh" data-icon="stop" $stopssh_disabled>$(_ 'Stop' )</button><!-- |
pascal@18042 | 296 --><button type="submit" name="send_key" data-icon="sync" >$(_ 'Send SSH key' )</button><!-- |
pascal@18042 | 297 --></footer> |
pascal@18017 | 298 </form> |
pascal@18017 | 299 </section> |
pascal@18017 | 300 EOT |
pascal@18017 | 301 fi |
pascal@18017 | 302 |
pascal@18017 | 303 xhtml_footer |
pascal@18017 | 304 exit 0 |