318 |
richard |
1 |
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
|
|
2 |
<HTML><!-- written by Rexy -->
|
|
|
3 |
<HEAD>
|
|
|
4 |
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
|
1954 |
richard |
5 |
<TITLE>ALCASAR DNS BL filtering</TITLE>
|
2817 |
rexy |
6 |
<link rel="stylesheet" href="/css/acc.css" type="text/css">
|
318 |
richard |
7 |
</HEAD>
|
|
|
8 |
<body>
|
|
|
9 |
<?
|
449 |
richard |
10 |
function form_filter ($form_content)
|
|
|
11 |
{
|
|
|
12 |
// réencodage iso + format unix + rc fin de ligne (ouf...)
|
|
|
13 |
$list = str_replace("\r\n", "\n", utf8_decode($form_content));
|
|
|
14 |
if (strlen($list) != 0){
|
|
|
15 |
if ($list[strlen($list)-1] != "\n") { $list[strlen($list)]="\n";} ;} ;
|
|
|
16 |
return $list;
|
|
|
17 |
}
|
1344 |
richard |
18 |
function form_filter_ip($form_content, $color)
|
1339 |
richard |
19 |
{
|
1344 |
richard |
20 |
//# reconstruction des ip
|
|
|
21 |
$list = explode("\n", form_filter($form_content));
|
|
|
22 |
$new_list = "";
|
|
|
23 |
foreach($list as &$value)
|
|
|
24 |
{
|
|
|
25 |
if(preg_match('/([0-9]{1,3}.){3}[0-9]{1,3}/', $value))
|
|
|
26 |
{
|
|
|
27 |
$new_list = $new_list.$value."\n";
|
|
|
28 |
}
|
|
|
29 |
}
|
|
|
30 |
if($color == "white")
|
|
|
31 |
{
|
1867 |
raphael.pi |
32 |
return preg_replace("/(.*)\n/", "add wl_ip_allowed $1\n", $new_list);
|
1344 |
richard |
33 |
}
|
|
|
34 |
else
|
|
|
35 |
{
|
1867 |
raphael.pi |
36 |
return preg_replace("/(.*)\n/", "add bl_ip_blocked $1\n", $new_list);
|
1344 |
richard |
37 |
}
|
1339 |
richard |
38 |
}
|
1488 |
richard |
39 |
function echo_file ($filename)
|
2688 |
lucas.echa |
40 |
{
|
|
|
41 |
if (file_exists($filename))
|
1488 |
richard |
42 |
{
|
2688 |
lucas.echa |
43 |
if (filesize($filename) != 0)
|
1488 |
richard |
44 |
{
|
|
|
45 |
$pointeur=fopen($filename,"r");
|
|
|
46 |
$tampon = fread($pointeur, filesize($filename));
|
|
|
47 |
fclose($pointeur);
|
|
|
48 |
echo $tampon;
|
|
|
49 |
}
|
2688 |
lucas.echa |
50 |
}
|
1488 |
richard |
51 |
else
|
2688 |
lucas.echa |
52 |
{
|
1488 |
richard |
53 |
echo "$filename doesn't exist";
|
|
|
54 |
}
|
2688 |
lucas.echa |
55 |
}
|
1488 |
richard |
56 |
function echo_ip_file ($filename)
|
|
|
57 |
{
|
2299 |
tom.houday |
58 |
$filename = escapeshellarg($filename);
|
1488 |
richard |
59 |
exec("cat $filename | cut -d ' ' -f3", $resultat);
|
|
|
60 |
for($i=0; $i<exec("wc -l $filename"); $i++)
|
|
|
61 |
{
|
|
|
62 |
echo $resultat[$i]."\n";
|
|
|
63 |
}
|
|
|
64 |
}
|
1818 |
raphael.pi |
65 |
|
318 |
richard |
66 |
# Choice of language
|
|
|
67 |
$Language = 'en';
|
|
|
68 |
if(isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])){
|
1899 |
raphael.pi |
69 |
$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);
|
2648 |
lucas.echa |
70 |
$Language = strtolower(substr(chop($Langue[0]),0,2));
|
2688 |
lucas.echa |
71 |
}
|
318 |
richard |
72 |
if($Language == 'fr'){
|
2769 |
rexy |
73 |
$l_bl="Liste noire principale";
|
1899 |
raphael.pi |
74 |
$l_load="Chargement...";
|
|
|
75 |
$l_list_version="Version de la liste : ";
|
|
|
76 |
$l_bl_categories="Sélectionnez les catégories à filtrer";
|
|
|
77 |
$l_download_bl="Télécharger la dernière version";
|
|
|
78 |
$l_fingerprint="L'empreinte numérique du fichier téléchargé est : ";
|
|
|
79 |
$l_fingerprint2="Vérifiez-là en suivant ce lien (ligne 'blacklists.tar.gz') : ";
|
|
|
80 |
$l_activate_bl="Activer la nouvelle version";
|
|
|
81 |
$l_reject_bl="Rejeter";
|
2150 |
richard |
82 |
$l_warning="Temps estimé : une minute";
|
1899 |
raphael.pi |
83 |
$l_specific_filtering="Filtrage special";
|
1958 |
richard |
84 |
$l_maj_rehabilitated="Noms de domaine ou adresses IP réhabilités";
|
1899 |
raphael.pi |
85 |
$l_rehabilitated_dns="Noms de domaine réhabilités";
|
|
|
86 |
$l_rehabilitated_dns_explain="Entrez ici des noms de domaine bloqués par la liste noire <BR> que vous souhaitez réhabiliter.";
|
1925 |
richard |
87 |
$l_add_to_bl="Noms de domaine ou adresses IP à ajouter à la liste noire";
|
1958 |
richard |
88 |
$l_rehabilitated_ip="Adresses IP réhabilitées";
|
1899 |
raphael.pi |
89 |
$l_rehabilitated_ip_explain="Entrez ici des IP bloquées par la liste noire <BR> que vous souhaitez réhabiliter.";
|
1936 |
richard |
90 |
$l_one_dns="Entrez une adresse DNS par ligne (exemple : www.domaine.com)";
|
1899 |
raphael.pi |
91 |
$l_one_ip="Entrez une IP par ligne (exemple : 123.123.123.123)";
|
2688 |
lucas.echa |
92 |
$l_one_dns_ip="Entrez un nom de domaine ou une adresse IP ou une adresse de réseau par ligne<br>exemple (domaine) : domaine.org. - exemple (ip) : 61.54.52.56 - exemple (réseau) : 172.16.0.0/16";
|
1899 |
raphael.pi |
93 |
$l_record="Enregistrer les modifications";
|
|
|
94 |
$l_wait="Une fois validées, 10 secondes sont nécessaires pour traiter vos modifications";
|
|
|
95 |
$l_ip_filtering="Filtrer les URLs contenant une adresse IP au lieu d'un nom de domaine (ex: http://25.56.58.59/index.htm)";
|
2662 |
lucas.echa |
96 |
$l_safe_searching="Activer le contrôle scolaire/parental pour 'YouTube' et pour les moteurs de recherche 'Google', 'Bing' et 'Qwant'.";
|
1899 |
raphael.pi |
97 |
$l_error_open_file="Erreur d'ouverture du fichier";
|
2769 |
rexy |
98 |
$l_additional_file_title="Listes noires additionnelles";
|
1899 |
raphael.pi |
99 |
$l_file_list="Liste des fichiers";
|
|
|
100 |
$l_add_file="Ajouter un fichier";
|
2648 |
lucas.echa |
101 |
$l_add_file_explain="Chaque ligne du fichier doit être une adresse IP ou un nom de domaine";
|
1899 |
raphael.pi |
102 |
$l_file_name="Nom du fichier";
|
1938 |
richard |
103 |
$l_file_action="Action";
|
1899 |
raphael.pi |
104 |
$l_error_upload="Erreur d'envoi du fichier";
|
|
|
105 |
$l_remove="Supprimer";
|
|
|
106 |
$l_submit="Envoyer";
|
|
|
107 |
$l_nb_ip="Nombre d'IP";
|
|
|
108 |
$l_nb_domain_names="Nombre de noms de domaine";
|
|
|
109 |
$l_nbDomainNames="Noms de domaine :";
|
|
|
110 |
$l_nbUrl="Url :";
|
|
|
111 |
$l_nbIp="Ip :";
|
2769 |
rexy |
112 |
$l_update_cat="Blacklist principale (catégorie 'malware' uniquement)";
|
|
|
113 |
$l_update_cat_header="Mise à jour automatique des Blacklists";
|
2853 |
rexy |
114 |
$l_update_success="Échec de la mise à jour";
|
2769 |
rexy |
115 |
$l_update_failed="Mise à jour réussie";
|
1899 |
raphael.pi |
116 |
$l_disable="Désactiver";
|
|
|
117 |
$l_enable="Activer";
|
2769 |
rexy |
118 |
$l_update="Mise a jour";
|
2853 |
rexy |
119 |
$l_no_update_configured="Aucun script de mise à jour trouvé";
|
1899 |
raphael.pi |
120 |
$l_file_state="Etat";
|
2853 |
rexy |
121 |
} else if ($Language == 'es'){
|
|
|
122 |
$l_bl="Lista negra general";
|
|
|
123 |
$l_load="Cargando...";
|
|
|
124 |
$l_list_version="Version de la lista : ";
|
|
|
125 |
$l_bl_categories="Seleccione las categorías para filtrar";
|
|
|
126 |
$l_download_bl="Descargar la última versión";
|
|
|
127 |
$l_fingerprint="La huella digital de la lista negra descargada es: ";
|
|
|
128 |
$l_fingerprint2="Verifíquelo con este enlace (línea 'blacklists.tar.gz') : ";
|
|
|
129 |
$l_activate_bl="Activar la nueva versión";
|
|
|
130 |
$l_reject_bl="Rechazar";
|
|
|
131 |
$l_warning="Tiempo estimado: un minuto";
|
|
|
132 |
$l_specific_filtering="Specific filtering";
|
|
|
133 |
$l_allowed_dns="Sitios permitidos";
|
|
|
134 |
$l_maj_rehabilitated="Nombres de dominio o direcciones IP para rehabilitar";
|
|
|
135 |
$l_rehabilitated_dns="Nombres de dominio para rehabilitar";
|
|
|
136 |
$l_rehabilitated_dns_explain="Ingrese aquí los nombres de dominio que están bloqueados por la lista negra <BR> y que desea rehabilitar.";
|
|
|
137 |
$l_add_to_bl="Nombres de dominio o direcciones IP para agregar a la lista negra";
|
|
|
138 |
$l_rehabilitated_ip="Direcciones IP para rehabilitar";
|
|
|
139 |
$l_rehabilitated_ip_explain="Ingrese aquí las IP que están bloqueadas por la lista negra <BR> y que desea rehabilitar.";
|
|
|
140 |
$l_one_dns="Ingrese un DNS por línea (ejemplo: www.dominio.com)";
|
|
|
141 |
$l_one_ip="Ingrese una IP por línea (ejemplo: 123.123.123.123)";
|
|
|
142 |
$l_one_dns_ip="Ingrese un nombre de dominio o una dirección IP o una dirección de red por línea <br> ejemplo (dominio): domain.org. - ejemplo (ip): 61.54.56.52 - ejemplo (red): 172.16.0.0/16";
|
|
|
143 |
$l_record="Guardar cambios";
|
|
|
144 |
$l_wait="Una vez validado, son necesarios 10 segundos para aplicar sus modificaciones";
|
|
|
145 |
$l_ip_filtering="Filtrado de URL que contienen una dirección IP en lugar de un nombre de dominio (es decir: http://25.56.58.59/index.htm)";
|
|
|
146 |
$l_safe_searching="Habilitación del control escolar / parental para 'YouTube' y para los motores de búsqueda 'Google', 'Bing' y 'Qwant'";
|
|
|
147 |
$l_error_open_file="Error al abrir el archivo";
|
|
|
148 |
$l_additional_file_title="Archivos de lista negra adicionales";
|
|
|
149 |
$l_file_list="Lista de archivos";
|
|
|
150 |
$l_add_file="Agregar un archivo";
|
|
|
151 |
$l_add_file_explain="Cada línea del archivo debe ser una dirección IP o un nombre de dominio";
|
|
|
152 |
$l_file_name="Nombre de archivo";
|
|
|
153 |
$l_file_action="Acción";
|
|
|
154 |
$l_error_upload="Error durante el proceso de carga";
|
|
|
155 |
$l_remove="Borrar";
|
|
|
156 |
$l_submit="Enviar";
|
|
|
157 |
$l_nb_ip="Números de IP";
|
|
|
158 |
$l_nb_domain_names="Números de sitios";
|
|
|
159 |
$l_nbDomainNames="Domain names: ";
|
|
|
160 |
$l_nbUrl="Url :";
|
|
|
161 |
$l_nbIp="Ip :";
|
|
|
162 |
$l_update_cat="¿Actualizar automáticamente las categorías cada 12 horas (solo 'malware' por ahora)?";
|
|
|
163 |
$l_update_cat_header="Actualización automática de la lista negra";
|
|
|
164 |
$l_update_success="actualización fallida";
|
|
|
165 |
$l_update_failed="actualización exitosa";
|
|
|
166 |
$l_disable="Desactivar";
|
|
|
167 |
$l_enable="Activar";
|
|
|
168 |
$l_update="actualizando";
|
|
|
169 |
$l_no_update_configured="No se encontró ningún script de actualización";
|
|
|
170 |
$l_file_state="Estado";
|
|
|
171 |
} else {
|
2864 |
rexy |
172 |
$l_bl="Main BlackList";
|
1899 |
raphael.pi |
173 |
$l_load="Loading...";
|
|
|
174 |
$l_list_version="List version : ";
|
|
|
175 |
$l_bl_categories="Select the categories to filter";
|
|
|
176 |
$l_download_bl="Download the last version";
|
|
|
177 |
$l_fingerprint="The digital fingerprint of the downloaded blacklist is : ";
|
|
|
178 |
$l_fingerprint2="Verify it with this link (line 'blacklists.tar.gz') : ";
|
|
|
179 |
$l_activate_bl="Activate the new version";
|
|
|
180 |
$l_reject_bl="Reject";
|
2150 |
richard |
181 |
$l_warning="Estimated time : one minute";
|
1899 |
raphael.pi |
182 |
$l_specific_filtering="Specific filtering";
|
|
|
183 |
$l_allowed_dns="Allowed domain names";
|
1958 |
richard |
184 |
$l_maj_rehabilitated="Domain names or IP addresses to rehabilitated";
|
|
|
185 |
$l_rehabilitated_dns="Domain names to rehabilitated";
|
1899 |
raphael.pi |
186 |
$l_rehabilitated_dns_explain="Enter here domain names that are blocked by the blacklist <BR> and you want to rehabilitate.";
|
1925 |
richard |
187 |
$l_add_to_bl="Domain names or IP addresses to add to the blacklist";
|
1958 |
richard |
188 |
$l_rehabilitated_ip="IP addresses to rehabilitated";
|
1899 |
raphael.pi |
189 |
$l_rehabilitated_ip_explain="Enter here IP that are blocked by the blacklist <BR> and you want to rehabilitate.";
|
2688 |
lucas.echa |
190 |
$l_one_dns="Enter one DNS per row (example : www.domain.com)";
|
1899 |
raphael.pi |
191 |
$l_one_ip="Enter one IP per row (example : 123.123.123.123)";
|
2688 |
lucas.echa |
192 |
$l_one_dns_ip="Enter one domain name or one IP address or one network address per row <br>example (domain): domain.org. - example (ip): 61.54.56.52 - example (network) : 172.16.0.0/16";
|
1899 |
raphael.pi |
193 |
$l_record="Save changes";
|
|
|
194 |
$l_wait="Once validated, 10 seconds are necessary to compute your modifications";
|
|
|
195 |
$l_ip_filtering="Filtering URLs that contain an IP address instead of a domain name (ie: http://25.56.58.59/index.htm)";
|
2662 |
lucas.echa |
196 |
$l_safe_searching="Enabling school/parental control for 'YouTube' and for the search engines 'Google', 'Bing' and 'Qwant'";
|
1899 |
raphael.pi |
197 |
$l_error_open_file="Error opening file";
|
2769 |
rexy |
198 |
$l_additional_file_title="Additional blacklists";
|
1899 |
raphael.pi |
199 |
$l_file_list="Files list";
|
|
|
200 |
$l_add_file="Add a file";
|
2648 |
lucas.echa |
201 |
$l_add_file_explain="Each line of the file must be an IP address or a domain name";
|
1899 |
raphael.pi |
202 |
$l_file_name="Filename";
|
1938 |
richard |
203 |
$l_file_action="Action";
|
1899 |
raphael.pi |
204 |
$l_error_upload="Error during the upload process";
|
|
|
205 |
$l_remove="Delete";
|
|
|
206 |
$l_submit="Submit";
|
|
|
207 |
$l_nb_ip="Number of IP";
|
|
|
208 |
$l_nb_domain_names="Number of domain names";
|
|
|
209 |
$l_nbDomainNames="Domain names :";
|
|
|
210 |
$l_nbUrl="Url :";
|
|
|
211 |
$l_nbIp="Ip :";
|
2769 |
rexy |
212 |
$l_update_cat="Main Blacklist (only 'malware' category)";
|
|
|
213 |
$l_update_cat_header="Automatic Update of Blacklists";
|
|
|
214 |
$l_update_success="Update succeeded";
|
|
|
215 |
$l_update_failed="Update failed";
|
1899 |
raphael.pi |
216 |
$l_disable="Disable";
|
|
|
217 |
$l_enable="Enable";
|
2769 |
rexy |
218 |
$l_update="Update";
|
|
|
219 |
$l_no_update_configured="No update script configured";
|
1899 |
raphael.pi |
220 |
$l_file_state="State";
|
318 |
richard |
221 |
}
|
1041 |
richard |
222 |
$dir_etc="/usr/local/etc/";
|
2521 |
armand.ito |
223 |
$dir_dg="/etc/e2guardian/lists/";
|
1936 |
richard |
224 |
$dir_blacklist=$dir_dg."blacklists/";
|
1339 |
richard |
225 |
$dir_bl_ip="/usr/local/share/iptables-bl/";
|
1954 |
richard |
226 |
$dir_bl_ip_enabled="/usr/local/share/iptables-bl-enabled/";
|
2688 |
lucas.echa |
227 |
$dir_bl_domain_names="/usr/local/share/unbound-bl/";
|
|
|
228 |
$dir_bl_domain_names_enabled="/usr/local/share/unbound-bl-enabled/";
|
1041 |
richard |
229 |
$bl_categories=$dir_etc."alcasar-bl-categories";
|
|
|
230 |
$bl_categories_enabled=$dir_etc."alcasar-bl-categories-enabled";
|
|
|
231 |
$conf_file=$dir_etc."alcasar.conf";
|
2688 |
lucas.echa |
232 |
$domainfilter_file="/etc/unbound/conf.d/blacklist/domainfilter.conf";
|
1041 |
richard |
233 |
$bannedsite_file=$dir_dg."bannedsitelist";
|
885 |
richard |
234 |
$dir_tmp="/tmp/blacklists";
|
1870 |
raphael.pi |
235 |
$update_file_cat="/usr/local/etc/update_cat.conf";
|
2769 |
rexy |
236 |
$update_file_ossi_cat="/usr/local/etc/update_ossi_cat.conf";
|
2688 |
lucas.echa |
237 |
$bl_safesearch="off";
|
|
|
238 |
$bl_pureip="off";
|
2769 |
rexy |
239 |
$updateable_ossi_bls=["ossi-bl-candc"];
|
1870 |
raphael.pi |
240 |
|
885 |
richard |
241 |
# default values
|
|
|
242 |
if (is_file ($conf_file))
|
2688 |
lucas.echa |
243 |
{
|
885 |
richard |
244 |
$tab=file($conf_file);
|
|
|
245 |
if ($tab)
|
2688 |
lucas.echa |
246 |
{
|
|
|
247 |
foreach ($tab as $line)
|
885 |
richard |
248 |
{
|
|
|
249 |
$field=explode("=", $line);
|
2688 |
lucas.echa |
250 |
switch ($field[0]) {
|
|
|
251 |
case 'PRIVATE_IP':
|
|
|
252 |
$PRIVATE_IP_MASK=trim($field[1]);
|
|
|
253 |
$tmp = explode("/",$PRIVATE_IP_MASK);
|
|
|
254 |
$PRIVATE_IP=$tmp[0];
|
|
|
255 |
break;
|
|
|
256 |
|
|
|
257 |
case 'BL_SAFESEARCH':
|
|
|
258 |
if (strtolower(trim($field[1])) == 'on') {
|
|
|
259 |
$bl_safesearch='on';
|
|
|
260 |
}
|
|
|
261 |
break;
|
|
|
262 |
|
|
|
263 |
case 'BL_PUREIP':
|
|
|
264 |
if (strtolower(trim($field[1])) == 'on') {
|
|
|
265 |
$bl_pureip='on';
|
|
|
266 |
}
|
|
|
267 |
break;
|
885 |
richard |
268 |
}
|
|
|
269 |
}
|
2648 |
lucas.echa |
270 |
}
|
2688 |
lucas.echa |
271 |
}
|
885 |
richard |
272 |
else { echo "$l_error_open_file $conf_file";}
|
318 |
richard |
273 |
if (isset($_POST['choix'])){ $choix=$_POST['choix']; } else { $choix=""; }
|
|
|
274 |
switch ($choix)
|
|
|
275 |
{
|
2688 |
lucas.echa |
276 |
case 'Download_list' :
|
|
|
277 |
exec ("sudo /usr/local/bin/alcasar-bl.sh --download");
|
|
|
278 |
break;
|
|
|
279 |
case 'Active_list' :
|
|
|
280 |
exec ("sudo /usr/local/bin/alcasar-bl.sh --adapt");
|
|
|
281 |
exec ("sudo /usr/local/bin/alcasar-bl.sh --reload");
|
|
|
282 |
break;
|
|
|
283 |
case 'Reject_list' :
|
|
|
284 |
unlink ("$dir_tmp/blacklists.tar.gz"); unlink ("$dir_tmp/md5sum");
|
|
|
285 |
break;
|
|
|
286 |
case 'MAJ_cat_bl' :
|
|
|
287 |
if (file_exists($bl_categories_enabled))
|
1940 |
richard |
288 |
{
|
2688 |
lucas.echa |
289 |
exec("/bin/sed -i \"/^ossi-/!d\" $bl_categories_enabled"); // keep ossi custom categories
|
|
|
290 |
$pointeur=fopen($bl_categories_enabled, "a+");
|
|
|
291 |
foreach ($_POST as $key => $value)
|
2648 |
lucas.echa |
292 |
{
|
2688 |
lucas.echa |
293 |
if (strstr($key,'chk-'))
|
1867 |
raphael.pi |
294 |
{
|
2688 |
lucas.echa |
295 |
$line=str_replace('chk-','',$key)."\n";
|
|
|
296 |
fwrite($pointeur,$line);
|
1867 |
raphael.pi |
297 |
}
|
318 |
richard |
298 |
}
|
2688 |
lucas.echa |
299 |
fclose($pointeur);
|
1940 |
richard |
300 |
}
|
2688 |
lucas.echa |
301 |
else {echo "$l_error_open_file $bl_categories_enabled";}
|
|
|
302 |
$fichier=fopen($dir_blacklist."ossi-bl/domains","w+");
|
|
|
303 |
fputs($fichier, form_filter($_POST['OSSI_bl']));
|
1957 |
richard |
304 |
fclose($fichier);
|
2688 |
lucas.echa |
305 |
unset($_POST['OSSI_bl']);
|
|
|
306 |
$fichier=fopen($dir_dg."exceptionsitelist","w+");
|
|
|
307 |
fputs($fichier, form_filter($_POST['BL_rehabilited_domains']));
|
|
|
308 |
fclose($fichier);
|
|
|
309 |
unset($_POST['BL_rehabilited_domains']);
|
|
|
310 |
$fichier=fopen($dir_dg."exceptioniplist","w+");
|
|
|
311 |
fputs($fichier, form_filter($_POST['BL_rehabilited_ip']));
|
|
|
312 |
fclose($fichier);
|
|
|
313 |
unset($_POST['BL_rehabilited_ip']);
|
|
|
314 |
exec ("sudo /usr/local/bin/alcasar-bl.sh --reload");
|
|
|
315 |
break;
|
|
|
316 |
case 'Specific_filtering':
|
|
|
317 |
$bl_pureip='off';
|
|
|
318 |
$bl_safesearch='off';
|
|
|
319 |
foreach ($_POST as $key => $value)
|
1339 |
richard |
320 |
{
|
2688 |
lucas.echa |
321 |
if (strstr($key,'chk-ip')) $bl_pureip="on";
|
|
|
322 |
if (strstr($key,'chk-safesearch')) $bl_safesearch="on";
|
|
|
323 |
}
|
|
|
324 |
exec ("sudo /usr/local/bin/alcasar-url_filter_bl.sh -safesearch_$bl_safesearch -pureip_$bl_pureip");
|
|
|
325 |
break;
|
|
|
326 |
case 'MAJ_ossi_file' :
|
|
|
327 |
foreach($_POST as $fichier => $value)
|
|
|
328 |
{
|
2769 |
rexy |
329 |
if($fichier != "choix" && $fichier != "update_cat")
|
1899 |
raphael.pi |
330 |
{
|
2688 |
lucas.echa |
331 |
$action=$_POST[$fichier];
|
|
|
332 |
if($action == $l_remove) //delete
|
|
|
333 |
{
|
|
|
334 |
exec("/bin/sed -i ".escapeshellarg("/^$fichier\$/d")." $bl_categories_enabled");
|
|
|
335 |
exec("/bin/sed -i ".escapeshellarg("/$fichier\$/d")." $bl_categories");
|
|
|
336 |
exec("rm -rf $dir_blacklist".escapeshellarg($fichier));
|
|
|
337 |
exec("sudo /usr/local/bin/alcasar-bl.sh --reload");
|
|
|
338 |
}
|
|
|
339 |
if($action == $l_disable) //disable
|
|
|
340 |
{
|
2769 |
rexy |
341 |
|
2688 |
lucas.echa |
342 |
exec("/bin/sed -i ".escapeshellarg("/^$fichier\$/d")." $bl_categories_enabled");
|
|
|
343 |
exec("sudo /usr/local/bin/alcasar-bl.sh --reload");
|
|
|
344 |
}
|
|
|
345 |
if($action == $l_enable) //enable
|
|
|
346 |
{
|
2769 |
rexy |
347 |
file_put_contents($bl_categories_enabled, $fichier."\n", FILE_APPEND);
|
|
|
348 |
exec("sudo /usr/local/bin/alcasar-bl.sh --reload 2>&1", $out, $ret);
|
2688 |
lucas.echa |
349 |
}
|
2769 |
rexy |
350 |
if($action == $l_update) //update
|
|
|
351 |
{
|
|
|
352 |
if ($fichier == ossi-bl-candc)
|
|
|
353 |
{
|
|
|
354 |
exec("sudo /usr/local/bin/alcasar-bl-autoupdate.sh --update_ossi-bl-candc 2>&1", $out, $ret);
|
|
|
355 |
if ($ret == 0)
|
|
|
356 |
{
|
|
|
357 |
echo "<p>".$l_update_success."</p>";
|
|
|
358 |
}
|
|
|
359 |
else
|
|
|
360 |
{
|
|
|
361 |
echo "<p>".$l_update_failed.":</p>";
|
|
|
362 |
foreach($out as $line)
|
|
|
363 |
{
|
|
|
364 |
echo "<p>".$line."</p>";
|
|
|
365 |
}
|
|
|
366 |
}
|
|
|
367 |
}
|
|
|
368 |
}
|
|
|
369 |
}
|
|
|
370 |
}
|
|
|
371 |
break;
|
|
|
372 |
case 'Autoupdate' :
|
|
|
373 |
// Reset updatelists, truncate files
|
|
|
374 |
$f = fopen($update_file_ossi_cat, 'w');
|
|
|
375 |
fclose($f);
|
|
|
376 |
$f = fopen($update_file_ossi_cat, 'w');
|
|
|
377 |
fclose($f);
|
|
|
378 |
|
|
|
379 |
foreach($_POST as $fichier => $value)
|
|
|
380 |
{
|
|
|
381 |
// General BL
|
|
|
382 |
if ($fichier == 'update_cat' && $value == 1)
|
|
|
383 |
{
|
|
|
384 |
if (file_exists($bl_categories_enabled))
|
|
|
385 |
{
|
|
|
386 |
file_put_contents($update_file_cat, "malware rsync://ftp.ut-capitole.fr/blacklist/dest/malware\n", FILE_APPEND);
|
|
|
387 |
}
|
1899 |
raphael.pi |
388 |
}
|
2769 |
rexy |
389 |
// C&C Server List
|
|
|
390 |
if ($fichier == 'ossi-bl-candc' && $value == 1)
|
|
|
391 |
{
|
|
|
392 |
file_put_contents($update_file_ossi_cat, "alcasar-bl-autoupdate.sh --update_ossi-bl-candc\n", FILE_APPEND);
|
|
|
393 |
}
|
2688 |
lucas.echa |
394 |
}
|
|
|
395 |
break;
|
|
|
396 |
case 'MAJ_ossi_file_upload' :
|
|
|
397 |
$file_name = str_replace (".", "_",basename($_FILES['fichier_ip']['name']));
|
|
|
398 |
$dest_dir = $dir_blacklist."ossi-bl-".$file_name; # /etc/e2guardian/list/blacklist/ossi-bl-XXXXXXXX
|
|
|
399 |
if((!empty($file_name)) && (!file_exists($dest_dir)))
|
|
|
400 |
{
|
|
|
401 |
exec("mkdir ".escapeshellarg($dest_dir));
|
|
|
402 |
$file=$_FILES['fichier_ip']['tmp_name'];
|
|
|
403 |
exec('/usr/bin/dos2unix '.escapeshellarg($file));
|
|
|
404 |
if(move_uploaded_file($_FILES['fichier_ip']['tmp_name'], $dest_dir."/domains")) // copy in the file "domains" (containing @ip & domain names (like over Toulouse categories))
|
1899 |
raphael.pi |
405 |
{
|
2688 |
lucas.echa |
406 |
touch ($dest_dir."/urls"); // create the URL file even if it isn't used
|
2769 |
rexy |
407 |
file_put_contents ($bl_categories, $dest_dir."\n", FILE_APPEND); // add to the categories list
|
2688 |
lucas.echa |
408 |
file_put_contents ($bl_categories_enabled, "ossi-bl-".$file_name."\n", FILE_APPEND); //Enabled by default
|
1954 |
richard |
409 |
exec("sudo /usr/local/bin/alcasar-bl.sh --reload");
|
1899 |
raphael.pi |
410 |
}
|
2688 |
lucas.echa |
411 |
else
|
1899 |
raphael.pi |
412 |
{
|
2688 |
lucas.echa |
413 |
exec("rm -rf ".escapeshellarg($dest_dir));
|
|
|
414 |
echo $l_error_upload;
|
1899 |
raphael.pi |
415 |
}
|
1416 |
richard |
416 |
}
|
2688 |
lucas.echa |
417 |
break;
|
318 |
richard |
418 |
}
|
|
|
419 |
?>
|
1488 |
richard |
420 |
<table width="100%" border="0" cellspacing="0" cellpadding="0">
|
|
|
421 |
<tr><th>
|
2521 |
armand.ito |
422 |
<?php echo $l_list_version; echo date ("F d Y", filemtime ('/etc/e2guardian/lists/blacklists/README'));?>
|
1488 |
richard |
423 |
</th></tr>
|
|
|
424 |
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
|
|
|
425 |
</table>
|
|
|
426 |
<TABLE width="100%" border=1 cellspacing=0 cellpadding=1>
|
|
|
427 |
<tr><td valign="middle" align="left" colspan=10>
|
|
|
428 |
<FORM action='bl_filter.php' method=POST>
|
318 |
richard |
429 |
<?php
|
1488 |
richard |
430 |
if ((file_exists("$dir_tmp/blacklists.tar.gz")) && (file_exists("$dir_tmp/md5sum")))
|
2688 |
lucas.echa |
431 |
{
|
1488 |
richard |
432 |
echo "$l_fingerprint"; echo_file ("$dir_tmp/md5sum");
|
2150 |
richard |
433 |
echo "<br>$l_fingerprint2<a href='http://dsi.ut-capitole.fr/blacklists/download/MD5SUM.LST' target='cat_help' onclick=\"window.open('http://dsi.ut-capitole.fr/blacklists/download/MD5SUM.LST','cat_help','width=600,height=150,toolbar=no,scrollbars=yes,resizable=yes')\" title='verify fingerprint'>dsi.ut-capitole.fr/blacklists/download/MD5SUM.LST</a><br>";
|
1488 |
richard |
434 |
echo "<input type='hidden' name='choix' value='Active_list'>";
|
2054 |
raphael.pi |
435 |
echo "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_activate_bl'> ($l_warning)</FORM>";
|
1488 |
richard |
436 |
echo "<FORM action='bl_filter.php' method=POST>";
|
|
|
437 |
echo "<input type='hidden' name='choix' value='Reject_list'>";
|
2054 |
raphael.pi |
438 |
echo "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_reject_bl'></form>";
|
2688 |
lucas.echa |
439 |
}
|
1488 |
richard |
440 |
else
|
2688 |
lucas.echa |
441 |
{
|
1488 |
richard |
442 |
echo "<input type='hidden' name='choix' value='Download_list'>";
|
2054 |
raphael.pi |
443 |
echo "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_download_bl'> ($l_warning)</form>";
|
2688 |
lucas.echa |
444 |
}
|
318 |
richard |
445 |
?>
|
1488 |
richard |
446 |
</td></tr>
|
2150 |
richard |
447 |
</table><br>
|
1488 |
richard |
448 |
<table width="100%" border="0" cellspacing="0" cellpadding="0">
|
|
|
449 |
<tr><th><?php echo $l_bl; ?></th></tr>
|
|
|
450 |
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
|
|
|
451 |
</table>
|
2150 |
richard |
452 |
<FORM action='bl_filter.php' method=POST>
|
|
|
453 |
<input type='hidden' name='choix' value='MAJ_cat_bl'>
|
1488 |
richard |
454 |
<table width="100%" border=1 cellspacing=0 cellpadding=1>
|
|
|
455 |
<tr><td valign="middle" align="left" colspan=10>
|
|
|
456 |
<?php
|
|
|
457 |
echo "<center>";
|
1954 |
richard |
458 |
// total number of IP, DNS & URLs
|
2688 |
lucas.echa |
459 |
$nbDomainNames = exec("wc -l /usr/local/share/unbound-bl/* | tail -n 1 | awk '{print $1}'") / 2;
|
2521 |
armand.ito |
460 |
$nbUrl = exec("for file in `find /etc/e2guardian/lists/blacklists/ -name 'urls'`; do nb=$((nb+$(wc -l \$file | awk '{print $1}'))); done; echo \$nb");
|
2299 |
tom.houday |
461 |
$nbIp = exec("wc -l /usr/local/share/iptables-bl/* | tail -n 1 | awk '{print $1}'");
|
1488 |
richard |
462 |
echo "<b>$l_nbDomainNames</b> $nbDomainNames, <b>$l_nbUrl</b> $nbUrl, <b>$l_nbIp</b> $nbIp<br/>";
|
2648 |
lucas.echa |
463 |
echo "$l_bl_categories</center></td></tr>";
|
1936 |
richard |
464 |
//read & display all BL categories (checked or not)
|
2648 |
lucas.echa |
465 |
$cols=1;
|
1488 |
richard |
466 |
if (file_exists($bl_categories))
|
2688 |
lucas.echa |
467 |
{
|
1936 |
richard |
468 |
$bl_files = file($bl_categories);
|
|
|
469 |
$bl_files = preg_grep("/ossi-/", $bl_files, 1); // don't display ossi custom categories
|
|
|
470 |
foreach($bl_files as $fichier => $value)
|
2688 |
lucas.echa |
471 |
{
|
1936 |
richard |
472 |
if ($cols == 1) { echo "<tr>";}
|
|
|
473 |
$categorie=trim(basename($value));
|
2150 |
richard |
474 |
echo "<td><a href='bl_categories_help.php?liste=bl&cat=$categorie' target='cat_help' onclick=\"window.open('bl_categories_help.php','cat_help','width=600,height=450,toolbar=no,scrollbars=yes,resizable=yes')\" title='categories help page'>$categorie</a><br>";
|
1936 |
richard |
475 |
echo "<input type='checkbox' name='chk-$categorie'";
|
1954 |
richard |
476 |
// if the line is commented, the category is disable
|
1936 |
richard |
477 |
if (preg_match('/^#/',$value, $r)) { echo ">";}
|
2150 |
richard |
478 |
else { echo " checked>"; }
|
1936 |
richard |
479 |
echo "</td>";
|
|
|
480 |
$cols++;
|
|
|
481 |
if ($cols > 10) {
|
2150 |
richard |
482 |
echo "</tr>\n";
|
2688 |
lucas.echa |
483 |
$cols=1;
|
1488 |
richard |
484 |
}
|
|
|
485 |
}
|
2688 |
lucas.echa |
486 |
}
|
|
|
487 |
else {
|
1488 |
richard |
488 |
echo "$l_error_open_file $bl_categories";
|
1870 |
raphael.pi |
489 |
}
|
|
|
490 |
|
2150 |
richard |
491 |
echo "</tr>\n";
|
1488 |
richard |
492 |
echo "<tr><td valign='middle' align='left' colspan=10>";
|
2769 |
rexy |
493 |
echo "<center>
|
1870 |
raphael.pi |
494 |
<input type='submit' value='$l_record'></center>";
|
|
|
495 |
echo "</td></tr>";
|
|
|
496 |
echo "<tr><td valign='middle' align='left' colspan=10>";
|
1488 |
richard |
497 |
echo "<center><b>$l_maj_rehabilitated</b></center></td></tr>";
|
|
|
498 |
echo "<tr><td width=50% colspan=5 align=center>";
|
|
|
499 |
echo "<H3>$l_rehabilitated_dns</H3>$l_rehabilitated_dns_explain<BR>$l_one_dns<BR>";
|
|
|
500 |
echo "<textarea name='BL_rehabilited_domains' rows=3 cols=40>";
|
|
|
501 |
echo_file ($dir_dg."exceptionsitelist");
|
|
|
502 |
echo "</textarea></td>";
|
|
|
503 |
echo "<td width=50% colspan=5 align=center>";
|
|
|
504 |
echo "<H3>$l_rehabilitated_ip</H3>$l_rehabilitated_ip_explain<BR>$l_one_ip<BR>";
|
|
|
505 |
echo "<textarea name='BL_rehabilited_ip' rows=3 cols=40>";
|
|
|
506 |
echo_file ($dir_dg."exceptioniplist");
|
1936 |
richard |
507 |
echo "</textarea></td></tr>";
|
1488 |
richard |
508 |
echo "<tr><td valign='middle' align='left' colspan=10>";
|
|
|
509 |
echo "<center><b>$l_add_to_bl</b></center></td></tr>";
|
1925 |
richard |
510 |
echo "<tr><td width=100% colspan=10 align=center>";
|
|
|
511 |
echo "$l_one_dns_ip<BR>";
|
1936 |
richard |
512 |
echo "<textarea name='OSSI_bl' rows=3 cols=40>";
|
|
|
513 |
echo_file ($dir_blacklist."ossi-bl/domains");
|
1488 |
richard |
514 |
echo "</textarea></td>";
|
1925 |
richard |
515 |
echo "</tr><tr><td colspan=10>";
|
2054 |
raphael.pi |
516 |
echo "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_record'>";
|
2150 |
richard |
517 |
echo "</td></tr></table><br>";
|
1488 |
richard |
518 |
echo "</form> ($l_wait)";
|
|
|
519 |
?>
|
|
|
520 |
<table width="100%" border="0" cellspacing="0" cellpadding="0">
|
1665 |
richard |
521 |
<tr><th><?php echo $l_additional_file_title; ?></th></tr>
|
1488 |
richard |
522 |
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
|
|
|
523 |
</table>
|
|
|
524 |
<table width="100%" border=1 cellspacing=0 cellpadding=1>
|
|
|
525 |
<?php
|
|
|
526 |
echo "<tr><td width=50% colspan=5 align=center>";
|
|
|
527 |
echo "<H3>$l_file_list</H3>";
|
2150 |
richard |
528 |
echo "<form action='bl_filter.php' method='POST'>";
|
|
|
529 |
echo "<input type='hidden' name='choix' value='MAJ_ossi_file'>";
|
2769 |
rexy |
530 |
echo "<table cellspacing=2 cellpadding=3 border=1><tr><th>$l_file_name<th>$l_nb_ip<th>$l_nb_domain_names<th colspan=3>$l_file_action</tr>";
|
1936 |
richard |
531 |
//list OSSI custom categories
|
|
|
532 |
$fichiersbl = array_diff(scandir($dir_blacklist), array('..','.','ossi-bl','ossi-wl'));
|
1940 |
richard |
533 |
$fichiersbl = preg_grep("/^ossi-bl-/",$fichiersbl);
|
1925 |
richard |
534 |
foreach($fichiersbl as $fichier => $value)
|
1488 |
richard |
535 |
{
|
2150 |
richard |
536 |
echo "<tr><td><center><a href='bl_categories_help.php?liste=bl&cat=$value&filtre=domain' target='cat_help' onclick=\"window.open('bl_categories_help','cat_help','width=600,height=450,toolbar=no,scrollbars=yes,resizable=yes')\" title='categories help page'>".substr($value,8)."</a></center></td><td><center>".exec("wc -l $dir_bl_ip$value | cut -d\" \" -f1")."</center></td><td><center>".exec("wc -l $dir_bl_domain_names$value.conf | cut -d\" \" -f1")."</center></td><td><center><input type='submit' name='$value'";
|
1954 |
richard |
537 |
if (file_exists ($dir_bl_domain_names_enabled.$value)) echo " value='$l_disable'>"; else echo " value='$l_enable'>";
|
2769 |
rexy |
538 |
echo "</center></td><td><center><input type='submit' name='$value' value='$l_remove'></center></td>";
|
|
|
539 |
if (in_array($value,$updateable_ossi_bls)) echo "<td><center><input type='submit' name='$value' value='$l_update'></center></td>"; else echo "<td><center>$l_no_update_configured</center></td>";
|
|
|
540 |
echo "</tr>";
|
1488 |
richard |
541 |
}
|
2769 |
rexy |
542 |
|
|
|
543 |
echo "</table>";
|
|
|
544 |
echo "</form><br></td>";
|
2150 |
richard |
545 |
echo "<td width=50% colspan=5 align=center><H3>$l_add_file</H3>";
|
1665 |
richard |
546 |
echo "$l_add_file_explain";
|
2150 |
richard |
547 |
echo "<form action='bl_filter.php' method='POST' enctype='multipart/form-data'>";
|
|
|
548 |
echo "<input type='hidden' name='choix' value='MAJ_ossi_file_upload'>";
|
1488 |
richard |
549 |
echo "<input type='file' name='fichier_ip'>";
|
2054 |
raphael.pi |
550 |
echo "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_submit'>";
|
2150 |
richard |
551 |
echo "</form>";
|
1488 |
richard |
552 |
echo "</td></tr>";
|
2150 |
richard |
553 |
echo "</table><br>";
|
2769 |
rexy |
554 |
|
|
|
555 |
// Autoupdate Section
|
|
|
556 |
// ----------------------
|
|
|
557 |
echo '<table width="100%" border="0" cellspacing="0" cellpadding="0">';
|
|
|
558 |
echo ' <tr><th>'.$l_update_cat_header.'</th></tr>';
|
|
|
559 |
echo ' <tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>';
|
|
|
560 |
echo '</table>';
|
|
|
561 |
|
|
|
562 |
echo "<form action='bl_filter.php' method='POST'>";
|
|
|
563 |
echo "<input type='hidden' name='choix' value='Autoupdate'>";
|
1488 |
richard |
564 |
?>
|
2769 |
rexy |
565 |
<table width="100%" border=1 cellspacing=0 cellpadding=1>
|
|
|
566 |
<tr><td>
|
|
|
567 |
<?php
|
|
|
568 |
echo "<table cellspacing=2 cellpadding=3 border=1>";
|
|
|
569 |
echo "<tr>";
|
|
|
570 |
|
|
|
571 |
// general BL
|
|
|
572 |
$update_select = ["", ""];
|
|
|
573 |
if ( 0 == filesize( $update_file_cat ) ) $update_select[0] = "checked";
|
|
|
574 |
else $update_select[1] = "checked";
|
|
|
575 |
echo "<td>".$l_update_cat."</td>";
|
|
|
576 |
echo "<td><input type='radio' name='update_cat' value=0 ".$update_select[0]." >".$l_disable;
|
|
|
577 |
echo "<input type='radio' name='update_cat' value=1 ".$update_select[1]." >".$l_enable;
|
|
|
578 |
echo "</td>";
|
|
|
579 |
// Display update checkbox for each updateable ossi-bl
|
|
|
580 |
foreach($updateable_ossi_bls as $value)
|
|
|
581 |
{
|
|
|
582 |
//check if autoupdate is enabled
|
|
|
583 |
$update_ossi_select = ["", ""];
|
|
|
584 |
if ( strpos(file_get_contents($update_file_ossi_cat),$value) !== false ) $update_ossi_select[1] = "checked";
|
|
|
585 |
else $update_ossi_select[0] = "checked";
|
|
|
586 |
echo "<tr><td>".$value."</td>";
|
|
|
587 |
echo "<td><input type='radio' name='".$value."' value=0 ".$update_ossi_select[0]." >".$l_disable;
|
|
|
588 |
echo "<input type='radio' name='".$value."' value=1 ".$update_ossi_select[1]." >".$l_enable."</td>";
|
|
|
589 |
echo "</tr>";
|
|
|
590 |
}
|
|
|
591 |
echo "</tr></td><br />";
|
|
|
592 |
echo "</table>";
|
|
|
593 |
echo "<input type='submit' value='$l_record'></center>";
|
|
|
594 |
echo "</table>";
|
|
|
595 |
echo "</form>";
|
|
|
596 |
?>
|
1488 |
richard |
597 |
<table width="100%" border="0" cellspacing="0" cellpadding="0">
|
|
|
598 |
<tr><th><?php echo $l_specific_filtering; ?></th></tr>
|
|
|
599 |
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
|
|
|
600 |
</table>
|
|
|
601 |
<FORM action='bl_filter.php' method='POST'>
|
|
|
602 |
<input type='hidden' name='choix' value='Specific_filtering'>
|
2150 |
richard |
603 |
<table width="100%" border=1 cellspacing=0 cellpadding=1>
|
1488 |
richard |
604 |
<tr><td>
|
2688 |
lucas.echa |
605 |
<input type='checkbox' name='chk-ip' <?= $bl_pureip == 'on' ? 'checked' : ''; ?>><?= $l_ip_filtering; ?>
|
1488 |
richard |
606 |
</td></tr>
|
|
|
607 |
<tr><td>
|
2688 |
lucas.echa |
608 |
<input type='checkbox' name='chk-safesearch' <?= $bl_safesearch == 'on' ? 'checked' : ''; ?>><?= $l_safe_searching; ?>
|
|
|
609 |
</tr></td>
|
|
|
610 |
<tr><td>
|
|
|
611 |
<?= "<input type='submit' onClick=\"this.disabled=true; this.value='$l_load';submit();\" value='$l_record'>"; ?>
|
|
|
612 |
</td></tr>
|
2150 |
richard |
613 |
</table>
|
2648 |
lucas.echa |
614 |
</form>
|
318 |
richard |
615 |
</BODY>
|
|
|
616 |
</HTML>
|