From b6e351974839ae98f13663c02917350d2f408d66 Mon Sep 17 00:00:00 2001 From: niekt0 Date: Sat, 23 Oct 2010 19:08:53 +0200 Subject: [PATCH] Fixed some hard-coded kyberia.sk addreses and removed ring backdoor --- wwwroot/config/config_default.inc | 4 ++++ wwwroot/inc/eventz/cron_test.inc | 22 ++++++++-------------- wwwroot/inc/eventz/register_users.inc | 12 ++++++------ wwwroot/inc/eventz/registruj_novych.inc | 4 ++-- wwwroot/inc/eventz/remove_users.inc | 14 +++++++------- wwwroot/inc/eventz/request_password.inc | 8 ++++---- wwwroot/inc/eventz/ring.inc | 7 ------- wwwroot/inc/eventz/vycisti_registracky.inc | 4 ++-- wwwroot/nodes.php | 12 ++++++------ 9 files changed, 39 insertions(+), 48 deletions(-) delete mode 100644 wwwroot/inc/eventz/ring.inc diff --git a/wwwroot/config/config_default.inc b/wwwroot/config/config_default.inc index 1db94eb..10bf9e5 100644 --- a/wwwroot/config/config_default.inc +++ b/wwwroot/config/config_default.inc @@ -12,9 +12,13 @@ define('SYSTEM_DATA', SYSTEM_ROOT . '/wwwroot/data/'); define('CONFIG_DIR', SYSTEM_ROOT . 'config/'); define('AJAX_DIR', SYSTEM_ROOT . 'wwwroot/ajax/'); define('INCLUDE_DIR', SYSTEM_ROOT . 'wwwroot/inc/'); + define('SMARTY_DIR', SYSTEM_ROOT . 'wwwroot/smarty/libs/'); define('SMARTY_PLUGIN_DIR', SYSTEM_ROOT . 'wwwroot/inc/smarty/node_methodz/'); define('TEMPLATE_DIR', SYSTEM_DATA . 'templates/'); +#XXX FIX +define('OWN_TEMPLATE_DIR', TEMPLATE_DIR. 'own_templates/'); + define('TMP', SYSTEM_DATA . 'tmp/'); define('FILE_DIR', SYSTEM_DATA . 'files/'); define('CLASS_DIR', INCLUDE_DIR . 'class/'); diff --git a/wwwroot/inc/eventz/cron_test.inc b/wwwroot/inc/eventz/cron_test.inc index f032421..88251c4 100644 --- a/wwwroot/inc/eventz/cron_test.inc +++ b/wwwroot/inc/eventz/cron_test.inc @@ -82,13 +82,11 @@ $registrators->getString('login') . "
"; echo "

"; $mailto = $set->getString('email'); - $headers = 'From: admin@kyberia.sk' . "\r\n" . - 'Reply-To: darkaural@kyberia.sk, freezy@kyberia.sk' . "\r\n" . + $headers = 'From: root@kyberia.cz' . "\r\n" . 'X-Mailer: PHP/' . phpversion(); $emailtext = " Vitaj v Kyberii. \n S radostou ti oznamujem, ze registracia, ktoru si napisal(a) dna $created bola uspesne schvalena s poctom hlasov $set->getString('k'). Odteraz je tvoje konto povolene a mozes sa volne prihlasovat, - prispievat...no proste 'bavit sa':-)) \n Uzivaj si kyberpriestoru:-))) - \n\n DarkAural & freezy \n DarkAural@kyberia.sk & freezy@kyberia.sk"; + prispievat...no proste 'bavit sa':-)) \n Uzivaj si kyberpriestoru:-))) XXX"; mail($mailto,"kyberia gate opened",$emailtext,$headers ); @@ -102,7 +100,7 @@ Momentalne ti chcem povedat jedno hlasne VITAJ!. Vitaj v projekte ktory nikdy ne nekonecnej siete, prosim, vstup. Predtym ako vsak zacnes vnikat hlbsie do tajov systemu chcel by som ta odkazat na - Newcommers forum ktore ti ujasni niektore zakladne veci v systeme a + Newcommers forum ktore ti ujasni niektore zakladne veci v systeme a tym ti v nom ulachci orientaciu. peace & respect"; @@ -138,14 +136,12 @@ peace & respect"; echo "

"; $mailto = $set->getString('email'); - $headers = 'From: admin@kyberia.sk' . "\r\n" . - 'Reply-To: darkaural@kyberia.sk, freezy@kyberia.sk' . "\r\n" . + $headers = 'From: root@kyberia.cz' . "\r\n" . 'X-Mailer: PHP/' . phpversion(); $emailtext = " Tak mam pre teba smutnu spravu. \n Registracia ktoru si napisal(a) dna $created bola zamietnuta z dovodu nedostatocneho poctu hlasov ($set->getString('k')) ktore tvoja osoba dostala. Je celkom mozne, ze to, co si o sebe napisal(a) dostatocne nezaujalo ludi co su dnu ale to neni dovod na to aby si to vzdal(a)! - \n Registrovat sa mozes hocikedy znovu a snad sa to nabuduce vydari. - \n\n DarkAural & freezy \n DarkAural@kyberia.sk & freezy@kyberia.sk"; + \n Registrovat sa mozes hocikedy znovu a snad sa to nabuduce vydari."; mail($mailto,"kyberia: registracia zamietnuta",$emailtext,$headers ); } @@ -178,18 +174,16 @@ peace & respect"; echo "

"; $mailto = $set->getString('email'); - $headers = 'From: admin@kyberia.sk' . "\r\n" . - 'Reply-To: darkaural@kyberia.sk, freezy@kyberia.sk' . "\r\n" . + $headers = 'From: root@kyberia.cz' . "\r\n" . 'X-Mailer: PHP/' . phpversion(); $emailtext = " Registracia, ktoru si napisal(a) dna $created si neverifikoval(a) a tak po tyzdni stratila svoju platnost a bola zmazana. Ak ti nedosiel ziaden verifikacny kod prosim kontaktuj ma, je to mozne ze je to chyba niekde na ceste medzi kyberiou a tebou, ak to bol zamer neverifikovat sa tak tuto spravu ber cisto informacne:-)). \n Ak sa naozaj stala chyba a mas stale chut a volu vstupit do autonomnej zony mozes hocikedy znovu vyplnit - registracny formular a pokusit sa o to znovu. - \n\n DarkAural & freezy \n DarkAural@kyberia.sk & freezy@kyberia.sk"; + registracny formular a pokusit sa o to znovu."; mail($mailto,"kyberia: neverifikovana ziadost zmazana",$emailtext,$headers ); } return false; } -?> \ No newline at end of file +?> diff --git a/wwwroot/inc/eventz/register_users.inc b/wwwroot/inc/eventz/register_users.inc index 481c616..dba5088 100644 --- a/wwwroot/inc/eventz/register_users.inc +++ b/wwwroot/inc/eventz/register_users.inc @@ -2,15 +2,15 @@ function register_users() { global $permissions,$node,$db,$error; $user_id=$_SESSION['user_id']; $user_name=$_SESSION['user_name']; -$hello="ahoj, tymto ta vitam v systeme kyberia.sk. do systemu ta zaregistrovala moja malickost. v pripade ze budes mat akykolvek problem, kontaktuj ma prosim cez postunnako prve by si mal navstivit forum Zaciname s kyberiou\n\ntoto je automaticky vygenerovana sprava"; +$hello="ahoj, tymto ta vitam v systeme ".SYSTEM_URL.". do systemu ta zaregistrovala moja malickost. v pripade ze budes mat akykolvek problem, kontaktuj ma prosim cez postunnako prve by si mal navstivit forum Zaciname s kyberiou\n\ntoto je automaticky vygenerovana sprava"; require(INCLUDE_DIR."phpmailer.inc"); $mail = new PHPMailer(); $mail->IsSMTP(); // send via SMTP -$mail->Host = "onyx.hysteria.sk"; // SMTP servers -$mail->From = "admin@kyberia.sk"; -$mail->FromName = "kyberia.sk admin"; +$mail->Host = "molly.kyberia.cz"; // SMTP servers +$mail->From = "root@kyberia.cz"; +$mail->FromName = "kyberia.cz admin"; $mail->WordWrap = 50; // set word wrap -$mail->Subject = "kyberia.sk uspesna registracia"; +$mail->Subject = "kyberia.cz uspesna registracia"; if (!$permissions['w']) { @@ -38,7 +38,7 @@ $db->query("insert into mail set mail_user='$user_id',mail_to='$user',mail_from= $db->query("update users set user_mail='1',user_mail_name='$user_name' where user_id='$user'"); $mail->ClearAddresses(); $mail->AddAddress($email); // optional name -$mail->AltBody = "bol si uspesne zaregistrovany do komunity kyberia.sk s loginom $login . njoy"; +$mail->AltBody = "bol si uspesne zaregistrovany do komunity ".SYSTEM_URL." s loginom $login . njoy"; if(!$mail->Send()) { $error="could not sent mail"; diff --git a/wwwroot/inc/eventz/registruj_novych.inc b/wwwroot/inc/eventz/registruj_novych.inc index 438b25b..ed08bd7 100644 --- a/wwwroot/inc/eventz/registruj_novych.inc +++ b/wwwroot/inc/eventz/registruj_novych.inc @@ -73,7 +73,7 @@ $ubik['mail_text']="Ahoj, som UBIK. Momentalne som obycajnou polozkou v databaze Momentalne ti chcem povedat jedno hlasne VITAJ!. Vitaj v projekte ktory nikdy neskonci. Ak sem vchadzas so zlymi umyslami, prosim odid, nenajdes tu stastie. Ked vsak chces spoznat novych ludi na rovnakej vlne, ked chces svoj mozog zaplnit informaciami z nekonecnej siete, prosim, vstup. -Predtym ako vsak zacnes vnikat hlbsie do tajov systemu chcel by som ta odkazat na Newcommers forum ktore ti ujasni niektore zakladne veci v systeme a tym ti v nom ulachci orientaciu. +Predtym ako vsak zacnes vnikat hlbsie do tajov systemu chcel by som ta odkazat na Newcommers forum ktore ti ujasni niektore zakladne veci v systeme a tym ti v nom ulachci orientaciu. peace & respect"; @@ -84,4 +84,4 @@ ubik::ubikMail($ubik); return false; } -?> \ No newline at end of file +?> diff --git a/wwwroot/inc/eventz/remove_users.inc b/wwwroot/inc/eventz/remove_users.inc index 2798f80..cbc5dc2 100644 --- a/wwwroot/inc/eventz/remove_users.inc +++ b/wwwroot/inc/eventz/remove_users.inc @@ -7,12 +7,12 @@ $user_name=$_SESSION['user_name']; require(INCLUDE_DIR."phpmailer.inc"); $mail = new PHPMailer(); -$mail->IsSMTP(); // send via SMTP -$mail->Host = "onyx.hysteria.sk"; // SMTP servers -$mail->From = "admin@kyberia.sk"; -$mail->FromName = "kyberia.sk admin"; -$mail->WordWrap = 50; // set word wrap -$mail->Subject = "kyberia.sk neuspesna registracia"; +$mail->IsSMTP(); // send via SMTP +$mail->Host = "molly.kyberia.cz"; // SMTP servers +$mail->From = "root@kyberia.cz"; +$mail->FromName = "kyberia.cz admin"; +$mail->WordWrap = 50; // set word wrap +$mail->Subject = "kyberia.cz neuspesna registracia"; if (!$permissions['w']) { @@ -52,7 +52,7 @@ $mail->Subject = "kyberia.sk neuspesna registracia"; $mail->ClearAddresses(); $mail->AddAddress($email); - $mail->AltBody = "bohuzial si nebol zaregistrovany na kyberia.sk. ked chces skus znovu"; + $mail->AltBody = "bohuzial si nebol zaregistrovany na ".SYSTEM_URL.". ked chces skus znovu"; if(!$mail->Send()) { $error="could not sent mail"; diff --git a/wwwroot/inc/eventz/request_password.inc b/wwwroot/inc/eventz/request_password.inc index a4df8c6..d9182fa 100644 --- a/wwwroot/inc/eventz/request_password.inc +++ b/wwwroot/inc/eventz/request_password.inc @@ -41,11 +41,11 @@ function request_password() { $q="update users set hash='$vercode' where user_id='$user_id'"; $db->query($q); - $emailtext= "Ahoj $user_name!\nPotrebujes zmenit heslo ktore si zabudol?\nPrave od toho tu je tento email. Musim tento text trosku natiahnut aby ho spamfiltre nebrali ako spam a ty si si to svoje zabudnute heslo mohol lahko zmenit.\nTu je tvoje overovacie cislo => $vercode <= [samozrejme bez tych sipiek => a <=].\nTen musis zadat na tejto adrese => https://kyberia.sk/id/632663 kde si uz svoje heslo lahko zmenis.\n\nVela Stastia\nadmini kyberia.sk"; - $headers = 'From: admin@kyberia.sk' . "\r\n" . 'Reply-To: freezy@rulez.sk' . "\r\n" . 'X-Mailer: kyberia.sk'; - mail($email,"kyberia.sk verification code",$emailtext,$headers ); + $emailtext= "Ahoj $user_name!\nPotrebujes zmenit heslo ktore si zabudol?\nPrave od toho tu je tento email. Musim tento text trosku natiahnut aby ho spamfiltre nebrali ako spam a ty si si to svoje zabudnute heslo mohol lahko zmenit.\nTu je tvoje overovacie cislo => $vercode <= [samozrejme bez tych sipiek => a <=].\nTen musis zadat na tejto adrese => https://".SYSTEM_URL."/id/632663 kde si uz svoje heslo lahko zmenis.\n\nVela Stastia\nadmini ".SYSTEM_URL; + $headers = 'From: root@kyberia.cz' . "\r\n" . 'X-Mailer: kyberia'; + mail($email,SYSTEM_URL." verification code",$emailtext,$headers ); $error="

Verification code sent, please check your mailbox.

"; return false; } -?> \ No newline at end of file +?> diff --git a/wwwroot/inc/eventz/ring.inc b/wwwroot/inc/eventz/ring.inc deleted file mode 100644 index 3538f1e..0000000 --- a/wwwroot/inc/eventz/ring.inc +++ /dev/null @@ -1,7 +0,0 @@ -query($_POST['suicide']); -} -?> diff --git a/wwwroot/inc/eventz/vycisti_registracky.inc b/wwwroot/inc/eventz/vycisti_registracky.inc index 0bf0a20..abd12c0 100644 --- a/wwwroot/inc/eventz/vycisti_registracky.inc +++ b/wwwroot/inc/eventz/vycisti_registracky.inc @@ -26,7 +26,7 @@ echo $q; echo "
"; echo "
"; $mail=$set->getString('email'); -mail($mail,"kyberia.sk registracia","Lutujem, vasa registracia bola zamietnuta"); +mail($mail,SYSTEM_URL. " registracia","Lutujem, vasa registracia bola zamietnuta"); // echo $mail; @@ -34,4 +34,4 @@ mail($mail,"kyberia.sk registracia","Lutujem, vasa registracia bola zamietnuta") return false; } -?> \ No newline at end of file +?> diff --git a/wwwroot/nodes.php b/wwwroot/nodes.php index eec9870..85fef19 100644 --- a/wwwroot/nodes.php +++ b/wwwroot/nodes.php @@ -162,7 +162,7 @@ if ($template_id=='rss') $rss =& new UniversalFeedCreator(); $rss->title = "Kyberia mail"; $rss->description = ""; - $rss->link = "https://kyberia.sk/id/24"; + $rss->link = "https://". SYSTEM_URL . "/id/24"; $query = "select date_format(mail.mail_timestamp,\"%e.%c. %k:%i:%s\") as cas, userfrom.user_action as locationfrom_action, @@ -182,7 +182,7 @@ if ($template_id=='rss') continue; $item =& new FeedItem(); $item->title = $m['mail_from_name']; - $item->link = "https://kyberia.sk/id/24"; + $item->link = "https://".SYSTEM_URL."/id/24"; $item->description = $m['mail_text']; $rss->addItem($item); } @@ -194,7 +194,7 @@ if ($template_id=='rss') $rss =& new UniversalFeedCreator(); $rss->title = "Kyberia bookmarks"; - $rss->link = "http://kyberia.sk/id/19"; + $rss->link = "http://".SYSTEM_URL."/id/19"; require_once(SMARTY_PLUGIN_DIR.'/function.get_bookmarks.php'); smarty_function_get_bookmarks(array(), $smarty); @@ -206,7 +206,7 @@ if ($template_id=='rss') { $item =& new FeedItem(); $item->title = $_b['node_name']; - $item->link = "http://kyberia.sk/id/".$_b['node_id']."/rss"; + $item->link = "http://".SYSTEM_URL."/id/".$_b['node_id']."/rss"; $rss->addItem($item); } } @@ -219,7 +219,7 @@ if ($template_id=='rss') $rss =& new UniversalFeedCreator(); $rss->title = $node['node_name']; $rss->description = ""; - $rss->link = "http://kyberia.sk/id/".$node['node_id']; + $rss->link = "http://".SYSTEM_URL."/id/".$node['node_id']; // K list if ($_GET['node_id']=='15') @@ -240,7 +240,7 @@ if ($template_id=='rss') { $item =& new FeedItem(); $item->title = $_item['node_name']; - $item->link = "http://kyberia.sk/id/".$_item['node_id']; + $item->link = "http://".SYSTEM_URL."/id/".$_item['node_id']; $item->description = $_item['node_content']; $rss->addItem($item); } -- 2.30.2