| Dir : /proc/self/root/usr/src/csf/ |
| Server: Linux server1.ngambekcore.com 4.18.0-553.51.1.el8_10.x86_64 #1 SMP Wed Apr 30 04:00:07 EDT 2025 x86_64 IP: 159.198.77.92 |
| Dir : //proc/self/root/usr/src/csf/csf.c |
/*
* Copyright 2006-2023, Way to the Web Limited
* URL: http://www.configserver.com
* Email: sales@waytotheweb.com
*/
#include <stdio.h>
#include <sys/types.h>
#include <unistd.h>
#include <string.h>
#include <pwd.h>
main ()
{
FILE *adminFile;
FILE *resellerFile;
uid_t ruid;
char name[100];
struct passwd *pw;
int admin = 0;
int reseller = 0;
setenv("CSF_RESELLER", "", 1);
ruid = getuid();
pw = getpwuid(ruid);
adminFile=fopen ("/usr/local/directadmin/data/admin/admin.list","r");
if (adminFile!=NULL)
{
while(fgets(name,100,adminFile) != NULL)
{
int end = strlen(name) - 1;
if (end >= 0 && name[end] == '\n') name[end] = '\0';
//printf("Name [%s]\n", name);
if (strcmp(pw->pw_name, name) == 0) admin = 1;
}
fclose(adminFile);
}
if (admin == 1)
{
setuid(0);
setgid(0);
execv("/usr/local/directadmin/plugins/csf/exec/da_csf.cgi", NULL);
} else {
resellerFile=fopen ("/usr/local/directadmin/data/admin/reseller.list","r");
if (resellerFile!=NULL)
{
while(fgets(name,100,resellerFile) != NULL)
{
int end = strlen(name) - 1;
if (end >= 0 && name[end] == '\n') name[end] = '\0';
//printf("Name [%s]\n", name);
if (strcmp(pw->pw_name, name) == 0)
{
reseller = 1;
setenv("CSF_RESELLER", pw->pw_name, 1);
}
}
fclose(resellerFile);
}
if (reseller == 1)
{
setuid(0);
setgid(0);
execv("/usr/local/directadmin/plugins/csf/exec/da_csf_reseller.cgi", NULL);
} else {
printf("Permission denied [User:%s UID:%d]\n", pw->pw_name, ruid);
}
}
return 0;
}