mirror of
https://github.com/usmannasir/cyberpanel.git
synced 2025-11-10 23:36:11 +01:00
bug fix to csf
This commit is contained in:
Usman Nasir
@@ -60,7 +60,7 @@ class secMiddleware:
|
|||||||
|
|
||||||
if request.build_absolute_uri().find('docker') > -1 or request.build_absolute_uri().find('cloudAPI') > -1 or request.build_absolute_uri().find('filemanager') > -1 or request.build_absolute_uri().find('verifyLogin') > -1 or request.build_absolute_uri().find('submitUserCreation') > -1:
|
if request.build_absolute_uri().find('docker') > -1 or request.build_absolute_uri().find('cloudAPI') > -1 or request.build_absolute_uri().find('filemanager') > -1 or request.build_absolute_uri().find('verifyLogin') > -1 or request.build_absolute_uri().find('submitUserCreation') > -1:
|
||||||
continue
|
continue
|
||||||
if key == 'imageByPass' or key == 'passwordByPass' or key == 'cronCommand' or key == 'emailMessage' or key == 'configData' or key == 'rewriteRules' or key == 'modSecRules' or key == 'recordContentTXT' or key == 'SecAuditLogRelevantStatus' or key == 'fileContent':
|
if key == 'ports' or key == 'imageByPass' or key == 'passwordByPass' or key == 'cronCommand' or key == 'emailMessage' or key == 'configData' or key == 'rewriteRules' or key == 'modSecRules' or key == 'recordContentTXT' or key == 'SecAuditLogRelevantStatus' or key == 'fileContent':
|
||||||
continue
|
continue
|
||||||
if value.find(';') > -1 or value.find('&&') > -1 or value.find('|') > -1 or value.find('...') > -1 \
|
if value.find(';') > -1 or value.find('&&') > -1 or value.find('|') > -1 or value.find('...') > -1 \
|
||||||
or value.find("`") > -1 or value.find("$") > -1 or value.find("(") > -1 or value.find(")") > -1 \
|
or value.find("`") > -1 or value.find("$") > -1 or value.find("(") > -1 or value.find(")") > -1 \
|
||||||
|
|||||||
@@ -11,14 +11,11 @@ from plogical.acl import ACLManager
|
|||||||
import plogical.CyberCPLogFileWriter as logging
|
import plogical.CyberCPLogFileWriter as logging
|
||||||
from plogical.virtualHostUtilities import virtualHostUtilities
|
from plogical.virtualHostUtilities import virtualHostUtilities
|
||||||
import subprocess
|
import subprocess
|
||||||
import shlex
|
|
||||||
from plogical.installUtilities import installUtilities
|
|
||||||
from django.shortcuts import HttpResponse, render
|
from django.shortcuts import HttpResponse, render
|
||||||
from random import randint
|
from random import randint
|
||||||
import time
|
import time
|
||||||
from plogical.firewallUtilities import FirewallUtilities
|
from plogical.firewallUtilities import FirewallUtilities
|
||||||
from firewall.models import FirewallRules
|
from firewall.models import FirewallRules
|
||||||
import thread
|
|
||||||
from plogical.modSec import modSec
|
from plogical.modSec import modSec
|
||||||
from plogical.csf import CSF
|
from plogical.csf import CSF
|
||||||
from plogical.processUtilities import ProcessUtilities
|
from plogical.processUtilities import ProcessUtilities
|
||||||
@@ -1482,8 +1479,17 @@ class FirewallManager:
|
|||||||
protocol = data['protocol']
|
protocol = data['protocol']
|
||||||
ports = data['ports']
|
ports = data['ports']
|
||||||
|
|
||||||
|
portsPath = '/tmp/ports'
|
||||||
|
|
||||||
|
if os.path.exists(portsPath):
|
||||||
|
os.remove(portsPath)
|
||||||
|
|
||||||
|
writeToFile = open(portsPath, 'w')
|
||||||
|
writeToFile.write(ports)
|
||||||
|
writeToFile.close()
|
||||||
|
|
||||||
execPath = "sudo /usr/local/CyberCP/bin/python2 " + virtualHostUtilities.cyberPanel + "/plogical/csf.py"
|
execPath = "sudo /usr/local/CyberCP/bin/python2 " + virtualHostUtilities.cyberPanel + "/plogical/csf.py"
|
||||||
execPath = execPath + " modifyPorts --protocol " + protocol + " --ports " + ports
|
execPath = execPath + " modifyPorts --protocol " + protocol + " --ports " + portsPath
|
||||||
output = ProcessUtilities.outputExecutioner(execPath)
|
output = ProcessUtilities.outputExecutioner(execPath)
|
||||||
|
|
||||||
if output.find("1,None") > -1:
|
if output.find("1,None") > -1:
|
||||||
|
|||||||
@@ -212,11 +212,14 @@ class CSF(multi.Thread):
|
|||||||
print '0',str(msg)
|
print '0',str(msg)
|
||||||
|
|
||||||
@staticmethod
|
@staticmethod
|
||||||
def modifyPorts(protocol, ports):
|
def modifyPorts(protocol, portsPath):
|
||||||
try:
|
try:
|
||||||
|
|
||||||
data = open('/etc/csf/csf.conf', 'r').readlines()
|
data = open('/etc/csf/csf.conf', 'r').readlines()
|
||||||
writeToFile = open('/etc/csf/csf.conf', 'w')
|
writeToFile = open('/etc/csf/csf.conf', 'w')
|
||||||
|
|
||||||
|
ports = open(portsPath, 'r').read()
|
||||||
|
|
||||||
if protocol == 'TCP_IN':
|
if protocol == 'TCP_IN':
|
||||||
for items in data:
|
for items in data:
|
||||||
if items.find('TCP_IN') > -1 and items.find('=') > -1 and (items[0] != '#'):
|
if items.find('TCP_IN') > -1 and items.find('=') > -1 and (items[0] != '#'):
|
||||||
@@ -249,6 +252,11 @@ class CSF(multi.Thread):
|
|||||||
command = 'csf -r'
|
command = 'csf -r'
|
||||||
subprocess.call(shlex.split(command))
|
subprocess.call(shlex.split(command))
|
||||||
|
|
||||||
|
try:
|
||||||
|
os.remove(portsPath)
|
||||||
|
except:
|
||||||
|
pass
|
||||||
|
|
||||||
print '1,None'
|
print '1,None'
|
||||||
|
|
||||||
except BaseException, msg:
|
except BaseException, msg:
|
||||||
|
|||||||
Reference in New Issue
Block a user