| Server IP : 184.154.167.98 / Your IP : 3.142.135.24 Web Server : Apache System : Linux pink.dnsnetservice.com 4.18.0-553.22.1.lve.1.el8.x86_64 #1 SMP Tue Oct 8 15:52:54 UTC 2024 x86_64 User : puertode ( 1767) PHP Version : 8.2.26 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /usr/src/csf/ |
Upload File : |
/*
* Copyright 2006-2023, Way to the Web Limited
* URL: http://www.configserver.com
* Email: sales@waytotheweb.com
*/
#include <stdio.h>
#include <sys/types.h>
#include <unistd.h>
#include <string.h>
#include <pwd.h>
main ()
{
FILE *adminFile;
FILE *resellerFile;
uid_t ruid;
char name[100];
struct passwd *pw;
int admin = 0;
int reseller = 0;
setenv("CSF_RESELLER", "", 1);
ruid = getuid();
pw = getpwuid(ruid);
adminFile=fopen ("/usr/local/directadmin/data/admin/admin.list","r");
if (adminFile!=NULL)
{
while(fgets(name,100,adminFile) != NULL)
{
int end = strlen(name) - 1;
if (end >= 0 && name[end] == '\n') name[end] = '\0';
//printf("Name [%s]\n", name);
if (strcmp(pw->pw_name, name) == 0) admin = 1;
}
fclose(adminFile);
}
if (admin == 1)
{
setuid(0);
setgid(0);
execv("/usr/local/directadmin/plugins/csf/exec/da_csf.cgi", NULL);
} else {
resellerFile=fopen ("/usr/local/directadmin/data/admin/reseller.list","r");
if (resellerFile!=NULL)
{
while(fgets(name,100,resellerFile) != NULL)
{
int end = strlen(name) - 1;
if (end >= 0 && name[end] == '\n') name[end] = '\0';
//printf("Name [%s]\n", name);
if (strcmp(pw->pw_name, name) == 0)
{
reseller = 1;
setenv("CSF_RESELLER", pw->pw_name, 1);
}
}
fclose(resellerFile);
}
if (reseller == 1)
{
setuid(0);
setgid(0);
execv("/usr/local/directadmin/plugins/csf/exec/da_csf_reseller.cgi", NULL);
} else {
printf("Permission denied [User:%s UID:%d]\n", pw->pw_name, ruid);
}
}
return 0;
}