Context Navigation

← Previous Revision
Latest Revision
Next Revision →
Blame
Revision Log
Repository URL

upload.cgi @ 29

Last change on this file since 29 was 29, checked in by mitty, 14 years ago
add Sn Uploader from http://sugachan.dip.jp/obsolete/snup/
File size: 46.8 KB

Line
1	#!/usr/bin/perl
2	use CGI;
3	use vars qw(%set %in);
4	use strict;
5	$set{'log_file'} = './log.cgi'; #Ot@C¼
6	$set{'max_log'} = 30; #Û
7	$set{'max_size'} = 1*1024; #ÅåeeÊ(KB)
8	$set{'min_flag'} = 0; #Å¬eÊ§Àðgp·é=1
9	$set{'min_size'} = 100; #Å¬eeÊ(KB)
10	$set{'max_all_flag'} = 0; #eÊ§Àðgp·é=1
11	$set{'max_all_size'} = 20*1024; #§ÀeÊ(KB)
12	$set{'file_pre'} = 'up'; #t@CÚª«
13	$set{'pagelog'} = 10; #1y[WÉ\¦·ét@C
14	$set{'base_html'} = 'upload.html'; #1y[WÚÌt@C¼
15	$set{'interval'} = 0; #¯êIPeÔub
16	$set{'deny_host'} = ''; #eÖ~IP/HOST ,ÅæØé ex.(bbtec.net,219.119.66,ac.jp)
17	$set{'admin_name'} = 'admin'; #ÇÒOCID
18	$set{'admin_pass'} = '1234'; #ÇÒpX[h
19
20	# Èº5ÚðÄÝè·éÛÉÍPATHCfBNgÍ / ÅIíé±Æ
21	# $set{'html_dir'},$set{'base_cgi'}ð ./ ÈOÉÝè·éê,
22	# Ü½ÍDLkeyðgpµ È¨©ÂHTMLLbV($set{'dummy_html'} = 2 or 3)ðgp·éêÍ
23	# $set{'base_cgi'} , $set{'http_html_path'} , $set{'http_src_path'} ðtpX(http://`` or /``)ÅLq·é
24	$set{'html_dir'} = './'; # àHTMLÛ¶fBNg
25	$set{'src_dir'} = './src/'; # àt@CÛ¶fBNg
26	$set{'base_cgi'} = './upload.cgi'; # ±ÌXNvg¼ http://`ÌwèÂ\
27	$set{'http_html_path'} = './'; # htmlQÆ httpPATH http://`ÌwèÂ\
28	$set{'http_src_path'} = './src/'; # fileQÆ httpPATH http://`ÌwèÂ\
29
30	$set{'dlkey'} = 0; # DLKeyðgp·é=1,DLkeyK{=2
31	$set{'up_ext'} = 'txt,lzh,zip,rar,gca,mpg,mp3,avi,swf,bmp,jpg,gif,png'; #Abv[hÅ«éî{g£q ¼pp¬¶ ,ÅæØé
32	$set{'up_all'} = 0; #o^ÈOÌàÌàUP³¹çêéæ¤É·é=1
33	$set{'ext_org'} = 0; #$set{'up_all'}ª1ÌIWiÌg£qÉ·é=1
34	$set{'deny_ext'} = 'php,php3,phtml,rb,sh,bat,dll'; #eÖ~Ìg£q ¼pp¬¶ ,ÅæØé
35	$set{'change_ext'} = 'cgi->txt,pl->txt,log->txt,jpeg->jpg,mpeg->mpg'; #g£qÏ· O->ã ¼pp¬¶ ,ÅæØé
36
37	$set{'home_url'} = ''; #[HOME]ÌNæ ÎpXÍ http://©çnÜéâÎpX
38	$set{'html_all'} = 1; #[ALL]ðo·=1
39	$set{'dummy_html'} = 0; #t@CÂÊHTMLðì¬·é Êít@CÌÝ=1,DLKeyÝèt@CÌÝ=2,·×Ä=3
40	$set{'find_crypt'} = 1; #Ã»ZIPðo·é=1
41	$set{'binary_compare'} = 0; #ù¶t@CÆoCiär·é=1
42	$set{'post_flag'} = 0; #PostKeyðgp·é=1
43	$set{'post_key'} = 'postkey'; #PostKey ,ÅæØéÆ¡wè ex.(postkey1,postkey2)
44	$set{'disp_error'} = 1; #[U[ÉG[ð\¦·é=1
45	$set{'error_level'} = 1; #G[OðL^·é=1
46	$set{'error_log'} = './error.cgi'; #G[Ot@C¼
47	$set{'error_size'} = 1024; # G[OÅåeÊ(KB) §ÀÈµ=0
48	$set{'zero_clear'} = 1; #t@Cª©Â©çÈ¢êO©çí·é=1
49
50	$set{'disp_comment'} = 1; #Rgð\¦·é=1
51	$set{'disp_date'} = 1; #útð\¦·é=1
52	$set{'disp_size'} = 1; #TCYð\¦·é=1
53	$set{'disp_mime'} = 1; #MIMETYPEð\¦·é=1
54	$set{'disp_orgname'} = 1; #IWit@C¼ð\¦·é=1
55
56	$set{'per_upfile'} = 0666; #Abv[ht@CÌp[~bV suexec=0604,other=0666
57	$set{'per_dir'} = 0777; #\[XAbvfBNgÌp[~bV suexec=0701,other=0777
58	$set{'per_logfile'} = 0666; #Ot@CÌp[~bV@suexec=0600,other=0666
59	$set{'link_target'} = ''; #target®«
60
61	#------
62	$set{'ver'} = '2005/10/10e CGI.pm';
63	$set{'char_delname'} = 'D';
64
65	$in{'time'} = time(); $in{'date'} = conv_date($in{'time'});
66	$in{'addr'} = $ENV{'REMOTE_ADDR'};
67	$in{'host'} = gethostbyaddr(pack('C4',split(/\./, $in{'addr'})), 2) \|\| $ENV{'REMOTE_HOST'} \|\| '(none)';
68	if($in{'addr'} eq $in{'host'}){ $in{'host'} = '(none)'; }
69
70	$set{'html_head'} =<<"EOM";
71	<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
72	<html lang="ja">
73	<HEAD>
74	<META name="robots" content="noindex,nofollow">
75	<META name="ROBOTS" content="NOINDEX,NOFOLLOW">
76	<META http-equiv="Content-type" content="text/html; charset=Shift_JIS">
77	<META http-equiv="Pragma" content="no-cache">
78	<META http-equiv="Cache-Control" content="no-cache">
79	<META http-equiv="Expires" content="0">
80	<TITLE>Uploader</TITLE>
81	EOM
82
83	$set{'html_css'} =<<"EOM";
84	<META http-equiv="Content-Style-Type" content="text/css">
85	<STYLE type="text/css"><!--
86	input,td{ font-size: 10pt;font-family:Chicago,Verdana,Arial,sans-serif,"lr oSVbN"; }
87	a:hover { background-color:#EECCCC; }
88	input,textarea{ border-top : 1px solid ; border-bottom : 1px solid ; border-left : 1px solid ; border-right : 1px solid ;font-size:10pt;background-color:#FFFFFF; }
89	-->
90	</STYLE>
91	EOM
92
93	unless(-e $set{'log_file'}){ &init; }
94	unless(-e $set{'base_html'}){ &makehtml; }
95
96	{ #fR[h
97	if ($ENV{'REQUEST_METHOD'} eq "POST" && $ENV{'CONTENT_TYPE'} =~ /multipart\/form-data/i){
98	if ($ENV{'CONTENT_LENGTH'} > ($set{'max_size'} * 1024 + 1024)){ if($ENV{'SERVER_SOFTWARE'} =~ /IIS/){ while(read(STDIN,my $buff,8192)){} } &error(106,$ENV{'CONTENT_LENGTH'});}
99	}else{
100	if ($ENV{'CONTENT_LENGTH'} > 1024*100){ error(98); }
101	}
102	my %ck; foreach(split(/;/,$ENV{'HTTP_COOKIE'})){ my($key,$val) = split(/=/); $key =~ s/\s//g; $ck{$key} = $val;}
103	my @ck = split(/<>/,$ck{'SN_USER'});
104	if(length($ck[0]) < 5){
105	my @salt = ('a'..'z', 'A'..'Z', '0'..'9', '.', '/'); srand;
106	my $salt = $salt[int(rand(@salt))] . $salt[int(rand(@salt))];
107	$in{'user'} = crypt($in{'addr'}.$in{'time'}, $salt);
108	}else{ $in{'user'} = $ck[0]; }
109
110	my $q = new CGI;
111	$in{'upfile'} = $q->param('upfile');
112	$in{'tmpfile'} = $q->tmpFileName($in{'upfile'});
113	$in{'type'} = $q->uploadInfo($in{'upfile'})->{'Content-Type'} if ($in{'upfile'});
114	$in{'pass'} = $q->param('pass'); $in{'mode'} = $q->param('mode');
115	$in{'delno'} = $q->param('delno'); $in{'comment'} = $q->param('comment');
116	$in{'jcode'} = $q->param('jcode'); $in{'delpass'} = $q->param('delpass');
117	$in{'orgname'} = $in{'upfile'}; $in{'postkey'} = $q->param('postkey');
118	$in{'org_pass'} = $in{'pass'};
119	$in{'checkmode'} = $q->param('checkmode');
120	$in{'file'} = $q->param('file'); $in{'dlkey'} = $q->param('dlkey');
121	$in{'admin_delno'} = join(',',$q->param('admin_delno'));
122	my @denyhost = split(/,/,$set{'deny_host'});
123	foreach my $value (@denyhost){
124	if ($in{'addr'} =~ /$value/ \|\| $in{'host'} =~ /$value/){ &error(101);}
125	}
126
127	my @form = ($in{'comment'},$in{'orgname'},$in{'type'},$in{'dlkey'});
128	foreach my $value (@form) {
129	if (length($value) > 128) { $value = substr($value,0,128).'...'; }
130	# $value =~ s/&/&/g;
131	$value =~ s/"/"/g;
132	$value =~ s/</</g;
133	$value =~ s/>/>/g;
134	$value =~ s/\r//g;
135	$value =~ s/\n//g;
136	$value =~ s/\t//g;
137	$value =~ s/\0//g;
138	}
139	($in{'comment'},$in{'orgname'},$in{'type'},$in{'dlkey'}) = @form;
140	$in{'tmpfile2'} = &filewrite() if ($in{'upfile'});
141	}
142
143	if($in{'delno'} eq $set{'admin_name'} && $in{'delpass'} eq $set{'admin_pass'}){ &admin_mode(); }
144	if(!$in{'delno'} && $in{'delpass'} eq $set{'admin_pass'}){ &makehtml(); &quit(); }
145	if($in{'mode'} eq 'dl'){ &dlfile;} #DL
146	if($in{'mode'} eq 'delete'){ &delete(); &quit(); }
147
148	{#C
149	if(!$in{'upfile'}){ &error(99); }
150	if($set{'post_flag'} && !check_postkey($in{'postkey'})){ error(109); }
151	if($set{'dlkey'} == 2 && !$in{'dlkey'}){ unlink("$in{'tmpfile2'}"); &error(61); }
152	open(IN,$set{'log_file'})\|\|&error(303);
153	my @log = <IN>;
154	close(IN);
155	my ($no,$lastip,$lasttime) = split(/<>/,$log[0]);
156
157	if($set{'interval'} && $set{'interval'} && $in{'time'} <= ($lasttime + $set{'interval'}) && $in{'addr'} eq $lastip){ &error(203);}
158	$in{'ext'} = extfind($in{'orgname'}); if(!$in{'ext'} && $in{'upfile'}){ &error(202); }
159
160	my $orgname;
161	if(split(/\//,$in{'orgname'}) > split(/\\/,$in{'orgname'})){ my @name = split(/\//,$in{'orgname'}); $orgname = $name[$#name]; }
162	else{ my @name = split(/\\/,$in{'orgname'}); $orgname = $name[$#name];}
163
164	my @salt = ('a'..'z', 'A'..'Z', '0'..'9', '.', '/');
165	srand;
166	my $salt = $salt[int(rand(@salt))] . $salt[int(rand(@salt))];
167	$in{'pass'} = crypt($in{'pass'}, $salt);
168
169	if($set{'binary_compare'}){
170	my @files = globfile("$set{'src_dir'}",".*");
171	my @dir = globdir("$set{'src_dir'}",".*");
172	foreach my $dir (@dir){ push(@files,globfile($dir."/",".*")); }
173	foreach my $value (@files){
174	next if($value =~ /\.temporary$/);
175	if(binarycmp($in{'tmpfile2'},$value)){ unlink($in{'tmpfile2'}); &error(205,$value);}
176	}
177	}
178
179	if($set{'find_crypt'}){
180	open(FILE,$in{'tmpfile'}); binmode(FILE); seek(FILE,0,0); read(FILE,my $buff,4); my $crypt_flag = 0;
181	if($buff =~ /^\x50\x4b\x03\x04$/){ seek(FILE,6,0); read(FILE,my $buff,1); $crypt_flag = 1 if(($buff & "\x01") eq "\x01"); }
182	close(FILE);
183	$in{'comment'} = '<font color="#FF0000">*</font>'.$in{'comment'} if($crypt_flag);
184	}
185
186	open(IN,$set{'log_file'})\|\|&error(303);
187	@log = <IN>;
188	close(IN);
189	($no,$lastip,$lasttime) = split(/<>/,$log[0]);
190	shift(@log);
191	$no++;
192	my $tmpno = sprintf("%04d",$no);
193
194	my $dlsalt;
195	my $filedir;
196	my $allsize = (-s $in{'tmpfile2'});
197
198	if($set{'dlkey'} && $in{'dlkey'}){
199	my @salt = ('a'..'z', 'A'..'Z', '0'..'9'); srand;
200	for (my $c = 1; $c <= 20; ++$c) { $dlsalt .= $salt[int(rand(@salt))]; }
201	$filedir = "$set{'src_dir'}$set{'file_pre'}${tmpno}.$in{'ext'}_$dlsalt/";
202	mkdir($filedir,$set{'per_dir'});
203	rename("$in{'tmpfile2'}","$filedir$set{'file_pre'}$tmpno.$in{'ext'}");
204	open(OUT,">${filedir}index.html");
205	close(OUT);
206	chmod($set{'per_upfile'},"${filedir}index.html");
207	$in{'comment'} = '<font color="#FF0000">[DLKey] </font>'.$in{'comment'};
208	}else{
209	undef $in{'dlkey'};
210	rename("$in{'tmpfile2'}","$set{'src_dir'}$set{'file_pre'}$tmpno.$in{'ext'}");
211	}
212
213	if (length($orgname) > 128) { $orgname = substr($orgname,0,128).'...'; }
214
215	my @note;
216	if($set{'post_flag'} && $set{'post_key'}){
217	push(@note,'PostKey:'.$in{'postkey'});
218	}
219	if($ENV{'SERVER_SOFTWARE'} =~ /Apache\|IIS/){
220	my $disptime;
221	my $time = time() - $in{'time'};
222	my @str = ('Upload:','b');
223	my $disptime = $time.$str[1];
224	push(@note,$str[0].$disptime);
225	}
226	if($in{'dlkey'}){
227	my @salt = ('a'..'z', 'A'..'Z', '0'..'9', '.', '/'); srand;
228	my $salt = $salt[int(rand(@salt))] . $salt[int(rand(@salt))];
229	my $crypt_dlkey = crypt($in{'dlkey'}, $salt);
230	push(@note,"DLKey<!-- DLKey:".$crypt_dlkey." --><!-- DLpath:".$dlsalt." -->");
231	}
232	my $note = join(',',@note);
233	my $usersalt = substr($in{'user'},0,2);
234	my $userid = crypt($in{'user'},$usersalt);
235	$in{'time'} = time();
236	# $in{'date'} = conv_date(time());
237	my @new;
238	$new[0] = "$no<>$in{'addr'}<>$in{'time'}<>1\n";
239	my $addlog = "$no<>$in{'ext'}<>$in{'date'}<>$in{'comment'}<>$in{'type'}<>$orgname<>$in{'addr'}<>$in{'host'}<>$in{'pass'},$userid<>$set{'file_pre'}<>$note<>1\n";
240	$new[1] = $addlog;
241
242	# open(OUT,">>./alllog.cgi"); print OUT $addlog; close(OUT);
243
244	my $i = 2;
245
246	foreach my $value (@log){
247	my ($no,$ext,$date,$comment,$mime,$orgname,$addr,$host,$pass,$filepre,$note,$dummy) = split(/<>/,$value);
248	if(!$dummy){ $filepre = $set{'file_pre'};}
249	$no = sprintf("%04d",$no);
250
251	my $filename;
252	my $filedir;
253	if($note =~ /DLpath:(.+)\s/){
254	my $dlpath = $1;
255	$filename = "$set{'src_dir'}$filepre$no.${ext}_$dlpath/$filepre$no.$ext";
256	$filedir = "$set{'src_dir'}$filepre$no.${ext}_$dlpath/";
257	}else{
258	$filename = "$set{'src_dir'}$filepre$no.$ext";
259	}
260	$allsize += (-s $filename);
261
262	if($i <= $set{'max_log'} && !($set{'max_all_flag'} && $set{'max_all_size'}*1024 < $allsize)){
263	if((-e $filename)\|\|!$set{'zero_clear'}){ push(@new,$value); $i++; }
264	}else{
265	if(unlink($filename)){
266	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } } rmdir($filedir);
267	}elsif(unlink($filename)){
268	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } } rmdir($filedir);
269	}elsif(-e $filename){
270	push(@new,$value);
271	}else{
272	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } } rmdir($filedir);
273	}
274	}
275	}
276	logwrite(@new);
277	if($in{'dlkey'} && ( $set{'dummy_html'} == 2 \|\| $set{'dummy_html'} == 3)){
278	&makedummyhtml("$set{'file_pre'}$tmpno.$in{'ext'}",$in{'comment'},"$set{'file_pre'}$tmpno.$in{'ext'}",$dlsalt,$in{'date'},$in{'type'},$orgname,$no);
279	}elsif(!$in{'dlkey'} && ($set{'dummy_html'} == 1 \|\| $set{'dummy_html'} == 3)){
280	&makedummyhtml("$set{'file_pre'}$tmpno.$in{'ext'}");
281	}
282	&makehtml(); &quit();
283	}
284
285	sub makehtml{
286
287	my ($buff,$init,$postval,$dlkey);
288	my $page = 0; my $i = 1;
289
290	open(IN,$set{'log_file'})\|\|&error(303);
291	my $log = my @log = <IN>;
292	close(IN);
293
294	if($log == 1){ $log++; $init++;}
295	my $lastpage = int(($log - 2)/$set{'pagelog'}) + 1;
296	$postval = ' obj.postkey.value = unescape(p[1]);' if($set{'post_flag'});
297	my $header =<<"EOM";
298	$set{'html_head'}<META http-equiv="Content-Script-Type" content="text/javascript">
299	<script type="text/javascript">
300	<!--
301	function getCookie(obj,cookiename){
302	var i,str; c = new Array(); p = new Array("",""); str = document.cookie;c = str.split(";");
303	for (i = 0; i < c.length; i++) { if (c[i].indexOf(cookiename+"=") >= 0) { p = (c[i].substr(c[i].indexOf("=")+1)).split("<>"); break; }}
304	if(cookiename == "SN_UPLOAD"){ obj.pass.value = unescape(p[0]);$postval }
305	else if(cookiename == "SN_DEL"){ obj.delpass.value = unescape(p[0]);}
306	return true;
307	}
308	function delnoin(no){
309	document.Del.delno.value = no;
310	document.Del.del.focus();
311	}
312	//-->
313	</script>
314	$set{'html_css'}</HEAD>
315	<body bgcolor="#ffffff" text="#000000" LINK="#6060FF" VLINK="#6060FF" ALINK="#6060FF" onload="getCookie(document.Form,'SN_UPLOAD');getCookie(document.Del,'SN_DEL');">
316	<table summary="title" width="100%"><tr><td bgcolor="#caccff"><strong><font size="4" color="#3366cc">Uploader</font></strong></td></tr></table>
317	<p>
318	Now.. Testing..
319	</p>
320	EOM
321	my $maxsize = 'Max '.dispsize($set{'max_size'}*1024);
322	my ($minsize,$total);
323	if($set{'min_flag'}){ $minsize = 'Min '.dispsize($set{'min_size'}*1024).' - '; }
324	if($set{'max_all_flag'}){ $total .= ' Total '.dispsize($set{'max_all_size'}*1024);}
325	$header .= qq\|<FORM METHOD="POST" ENCTYPE="multipart/form-data" ACTION="$set{'base_cgi'}" name="Form">FILE $minsize$maxsize (*$set{'max_log'}Files$total)<br>\|;
326	$header .='<INPUT TYPE=file SIZE="40" NAME="upfile">';
327	$header .= ' DLKey: <INPUT TYPE=text SIZE="8" NAME="dlkey" maxlength="8">' if($set{'dlkey'});
328	$header .= '
329	DELKey: <INPUT TYPE=password SIZE="10" NAME="pass" maxlength="8"><br>
330	COMMENT<br>
331	<INPUT TYPE=text SIZE="45" NAME="comment">
332	<INPUT TYPE=hidden NAME="jcode" VALUE="¿">
333	<INPUT TYPE=submit VALUE="Upload"><INPUT TYPE=reset VALUE="Cancel"><br>
334	';
335	if($set{'post_flag'}){ $header .= 'PostKey<br><INPUT TYPE=password SIZE="10" NAME="postkey" maxlength="10">'; }
336	$header .= '</FORM>';
337
338	my $allsize = 0;
339	my @files = globfile("$set{'src_dir'}",".*");
340	my @dir = globdir("$set{'src_dir'}",".*");
341	foreach my $dir (@dir){ push(@files,globfile($dir."/",".*")); }
342	foreach my $value (@files){ $allsize += (-s "$value"); }
343
344	$allsize = dispsize($allsize);
345
346	my $footer = "</table><HR size=1>Used ${allsize}\n<br>";
347	if($set{'up_all'} && !$set{'ext_org'}){ $footer .= $set{'up_ext'}.' +'; }
348	elsif(!$set{'up_all'}){ $footer .= $set{'up_ext'}; }
349	$footer .= "\n<table summary=\"footer\" width=\"100%\"><tr><td><div align=left><FORM METHOD=POST ACTION=\"$set{'base_cgi'}\" name=\"Del\"><span style='font-size:9pt'><input type=hidden name=mode value=delete>No.<input type=text size=4 name=delno> key<input type=password size=4 name=delpass> <input type=submit value=\"del\" name=del></span></form></div>\n";
350	$footer .= "</td><td><div align=right><!-- $set{'ver'} --><a href=\"http://sugachan.dip.jp/download/\" target=\"_blank\"><small>Sn Uploader</small></a></div></td></tr></table>\n</body>\n</html>";
351
352	my $info_title = "<table summary=\"upinfo\" width=\"100%\">\n<tr><td></td><td>NAME</td>";
353	if($set{'disp_comment'}){ $info_title .= "<td>COMMENT</td>"; } if($set{'disp_size'}){ $info_title .= "<td>SIZE</td>"; } if($set{'disp_date'}){ $info_title .= "<td>DATE</td>"; }
354	if($set{'disp_mime'}){ $info_title .= "<td>MIME</td>"; } if($set{'disp_orgname'}){ $info_title .= "<td>ORIG</td>"; }
355	$info_title .= "</tr>\n";
356
357	my $home_url_link;
358	if($set{'home_url'}){ $home_url_link = qq\|<a href="$set{'home_url'}">[HOME]</a> \|;}
359	if($set{'html_all'}){
360	my $buff; my $no = 1; my $time = time; my $subheader;
361	foreach my $value (@log){
362	my ($no,$ext,$date,$comment,$mime,$orgname,$addr,$host,$pass,$dummy) = split(/<>/,$value);
363	if(!$dummy){ next; }
364	$buff .= makeitem($value);
365	}
366	$subheader .= "[ALL] ";
367	while($no <= $lastpage){
368	if($no == $page) { $subheader .= "\[$no\] ";}
369	else{ if($no == 1){ $subheader .= "<a href=\"$set{'http_html_path'}$set{'base_html'}?$time\">\[$no\]</a> "}
370	else{$subheader .= "<a href=\"$set{'http_html_path'}$no.html?$time\">\[$no\]</a> ";} }
371	$no++;
372	}
373	$subheader .= $info_title;
374	open(OUT,">$set{'html_dir'}all.html")\|\|&error(306,"$set{'html_dir'}all.html");
375	print OUT $header."<hr size=1>".$home_url_link.$subheader."<hr size=1>".$buff.$footer;
376	close(OUT);
377	chmod($set{'per_upfile'},"$set{'html_dir'}all.html");
378	}else{ unlink("$set{'html_dir'}all.html"); }
379
380	while($log > $i){
381	$buff .= makeitem($log[$i]) unless($init);
382	if(($i % $set{'pagelog'}) == 0\|\|$i == $log -1){
383	$page++; my $subheader; my $no = 1; my $time = time;
384	if($set{'html_all'}){ $subheader .= "<a href=\"./all.html?$time\">[ALL]</a> "; }
385	while($no <= $lastpage){
386	if($no == $page) { $subheader .= "\[$no\] ";}
387	else{ if($no == 1){ $subheader .= "<a href=\"$set{'http_html_path'}$set{'base_html'}?$time\">\[$no\]</a> "}
388	else{$subheader .= "<a href=\"$set{'http_html_path'}$no.html?$time\">\[$no\]</a> ";}
389	}
390	$no++;
391	}
392	$subheader .= $info_title;
393	my $loghtml;
394	if($page == 1){ $loghtml = "$set{'html_dir'}$set{'base_html'}"; }
395	else{ $loghtml = "$set{'html_dir'}$page.html"; }
396
397	open(OUT,">$loghtml") \|\| &error(306,"$loghtml");
398	print OUT $header."<hr size=1>".$home_url_link.$subheader."<hr size=1>".$buff.$footer;
399	close(OUT);
400	chmod($set{'per_upfile'},$loghtml);
401	undef $buff;
402	}
403	$i++;
404	}
405
406	while($page < 1000){
407	$page ++;
408	if(-e "$set{'html_dir'}$page.html"){ unlink("$set{'html_dir'}$page.html"); }else{ last; }
409	}
410	}
411
412	sub filewrite{
413	my $random = int(rand(900000)) + 100000;
414	if(-e "$set{'src_dir'}$random.temporary"){ $random++; }
415	if(-e "$set{'src_dir'}$random.temporary"){ &error(204); }
416	open (FILE,">$set{'src_dir'}$random.temporary") \|\| &error(204);
417	binmode(FILE);
418	eval{ while(my $read = read($in{'upfile'}, my $buff, 8192)){ print FILE $buff; }};
419	close(FILE);
420	chmod($set{'per_upfile'},"$set{'src_dir'}$random.temporary");
421	if((-s "$set{'src_dir'}$random.temporary") == 0){ unlink("$set{'src_dir'}$random.temporary"); &error(99); }
422	my $size = (-s "$set{'src_dir'}$random.temporary");
423	if($set{'min_flag'} && ($size < $set{'min_size'} * 1024)){ unlink("$set{'src_dir'}$random.temporary"); &error(107,$size);}
424	if($size > $set{'max_size'} * 1024){ unlink("$set{'src_dir'}$random.temporary"); &error(106,$size);}
425	eval { close($in{'upfile'});};
426	unlink($in{'tmpfile'});
427	return("$set{'src_dir'}$random.temporary");
428	}
429
430	sub delete{
431	my $mode = $_[0];
432	my @delno = split(/,/,$_[1]);
433	my $delno; my $flag = 0; my $tmpaddr;
434	my $delnote;
435
436	if($in{'delno'} =~ /(\d+)/){ $delno = $1; }
437	if($mode ne 'admin' && !$in{'delno'}){ return; }
438	elsif($mode ne 'admin' && !$delno){ &error(401,$in{'delno'}); }
439
440	open(IN,$set{'log_file'})\|\| &error(303);
441	my @log = <IN>;
442	close(IN);
443
444	if($in{'addr'} =~ /(\d+).(\d+).(\d+).(\d+)/){ $tmpaddr = "$1.$2.$3."; }
445	my $findflag = 0;
446	foreach my $value (@log){
447	my ($no,$ext,$date,$comment,$mime,$orgname,$addr,$host,$pass,$filepre,$note,$dummy) = split(/<>/,$value);
448	$delnote = $note;
449	my $delflag = 0;
450	if(!$addr){ next; }
451	if($mode eq 'admin'){
452	foreach my $delno (@delno){ if($no == $delno){ $delflag = 1; last; } }
453	}elsif($no == $delno){
454	$findflag = 1;
455	unless ($addr =~ /^$tmpaddr/){
456	my ($pass,$id) = split(/,/,$pass);
457	my $delpass = $in{'delpass'} \|\| $in{'addr'}.time();
458	my $salt = substr($pass, 0, 2); $delpass = crypt($delpass,$salt);
459	my $usersalt = substr($in{'user'},0,2); my $userid = crypt($in{'user'},$usersalt);
460	if ($in{'delpass'} ne $set{'admin_pass'} && $delpass ne $pass && $userid ne $id){
461	if($mode ne 'admin'){ if(!$dummy){ $filepre = $set{'file_pre'};} $no = sprintf("%04d",$no); &error(404,"$filepre$no.$ext");}
462	}
463	}
464	$delflag = 1;
465	}
466	if($delflag){
467	# open(OUT,">>./del.cgi"); print OUT $value; close(OUT);
468	$flag = 1;
469	if(!$dummy){ $filepre = $set{'file_pre'};}
470	$no = sprintf("%04d",$no);
471	my $filename;
472	my ($dlpath,$filedir);
473	if($delnote =~ /DLpath:(.+)\s/){
474	$dlpath = $1;
475	$filename = "$set{'src_dir'}$filepre$no.${ext}_$dlpath/$filepre$no.$ext";
476	$filedir = "$set{'src_dir'}$filepre$no.${ext}_$dlpath/";
477	}else{
478	$filename = "$set{'src_dir'}$filepre$no.$ext";
479	}
480
481	if(unlink($filename)){
482	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } rmdir($filedir);} undef $value;
483	}elsif(unlink($filename)){
484	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } rmdir($filedir);} undef $value;
485	}elsif(!(-e $filename)){
486	unlink("$set{'src_dir'}$filepre$no.$ext.html"); if($filedir){ foreach(globfile($filedir,".*")){ unlink; } rmdir($filedir);} undef $value;
487	}else{
488	if($mode ne 'admin'){ &error(403,"$filepre$no.$ext");}
489	}
490	}
491	}
492	if($mode ne 'admin' && !$findflag){ &error(402,$delno); }
493	if($flag){
494	logwrite(@log);
495	&makehtml();
496	}
497	}
498
499	sub quit{
500	my ($cookiename,$buff);
501	my $flag = 0;
502	my @tmpfiles = globfile("$set{'src_dir'}","\.temporary");
503	foreach my $value (@tmpfiles){ if((stat($value))[10] < time - 60*60){ unlink("$value"); $flag++; } }
504	&makehtml() if($flag);
505	$buff =<<"EOM";
506	$set{'html_head'}<META HTTP-EQUIV="Refresh" CONTENT="1;URL=$set{'http_html_path'}$set{'base_html'}">
507	EOM
508	if($in{'jcode'} \|\| $in{'mode'} eq 'delete'){
509	$buff .=<<"EOM";
510	<META HTTP-EQUIV="Set-Cookie" content="SN_USER=$in{'user'}<>1; path=/; expires=Tue, 31-Dec-2030 23:59:59 GMT">
511	<META HTTP-EQUIV="CONTENT-SCRIPT-TYPE" CONTENT="text/javascript">
512	<script type="text/javascript">
513	<!--
514	setCookie();
515	function setCookie() {
516	var key1,key2;
517	var tmp = "path=/; expires=Tue, 31-Dec-2030 23:59:59; ";
518	EOM
519	if($in{'jcode'}){
520	my %ck; foreach(split(/;/,$ENV{'HTTP_COOKIE'})){ my($key,$val) = split(/=/); $key =~ s/\s//g; $ck{$key} = $val;}
521	my @ck = split(/<>/,$ck{'SN_DEL'});
522	if(!$ck[0] && $in{'org_pass'}){ $buff .= qq\|\tdocument.cookie = "SN_DEL="+escape('$in{'org_pass'}')+"<>;"+ tmp;\n\|;}
523	$cookiename = 'SN_UPLOAD'; $buff .= "\tkey1 = escape('$in{'org_pass'}'); key2 = escape('$in{'postkey'}');\n";}
524	else{ $cookiename = 'SN_DEL'; $buff .= "\tkey1 = escape('$in{'delpass'}'); key2 = '';\n"; }
525	$buff .= qq\|\tdocument.cookie = "$cookiename="+key1+"<>"+key2+"; "+ tmp;\n}\n//-->\n</script>\n\|;
526	}
527	$buff .=<<"EOM";
528	<body>
529	<br><br><div align=center><font size="+1"><br><br>
530	<a href="$set{'http_html_path'}$set{'base_html'}?$in{'time'}">click here!</a></font><br>
531	</div>
532	</body></html>
533	EOM
534	print "Content-type: text/html\n\n";
535	print $buff;
536	exit;
537	}
538
539	sub admin_mode{
540	&errorclear() if($in{'mode'} eq 'errorclear');
541	&delete('admin',$in{'admin_delno'}) if($in{'mode'} eq 'delete');
542
543	open(IN,$set{'log_file'})\|\|error(303);
544	my @log = <IN>;
545	close(IN);
546
547	my ($header,$buff,$footer,$value);
548	$buff =<<"EOM";
549	$set{'html_head'}$set{'html_css'}</HEAD>
550	<body bgcolor="#ffffff" text="#000000" LINK="#6060FF" VLINK="#6060FF" ALINK="#6060FF">
551	EOM
552
553	$buff .= leaddisp(0,1,1).'<a name="up"></a><table summary="title" width="100%"><tr><td bgcolor="#caccff"><strong><font size="4" color="#3366cc">Upload Info</font></strong></td></tr></table>';
554	$buff .= qq\|<table summary="check"><tr><td><form action="$set{'base_cgi'}" method="POST"><input type=hidden name="checkmode" value="allcheck"><input type=hidden name=delno value="$in{'delno'}"><input type=hidden name=delpass value="$in{'delpass'}"><input type=submit value="·×Ä`FbN"></form></td><td><form action="$set{'base_cgi'}" method="POST"><input type=hidden name="checkmode" value="nocheck"><input type=hidden name=delno value="$in{'delno'}"><input type=hidden name=delpass value="$in{'delpass'}"><input type=submit value="·×ÄO·"></form></td><td><form action="$set{'base_cgi'}" method="POST"><input type=hidden name=delpass value="$set{'admin_pass'}"><input type=submit value="HTMLðXV·é/OAEg"></form></td></tr></table>\n<form action="$set{'base_cgi'}" method="POST"><input type=hidden name="mode" value="delete"><input type=hidden name=delno value="$in{'delno'}"><input type=hidden name=delpass value="$in{'delpass'}"><input type=submit value="`FbNµ½àÌðí"><br>\n\|."<table summary=\"upinfo\" width=\"100%\">\n<tr><td>DEL</td><td>NAME</td><td>COMMENT</td><td>SIZE</td><td>ADDR</td><td>HOST</td><td>DATE</td><td>NOTE</td><td>MIME</td><td>ORIG</td></tr>\n";
555	shift(@log);
556	foreach (@log){ $buff .= makeitem($_,'admin'); }
557	$buff .= '</table></form><br><br>';
558
559	if($set{'error_level'}){
560	$buff .= leaddisp(-1,0,1).'<a name="error"></a><table summary="errortitle" width="100%"><tr><td bgcolor="#caccff"><strong><font size="4" color="#3366cc">Error Info</font></strong></td></tr></table>';
561	$buff .= qq\|<form action="$set{'base_cgi'}" method="POST"><input type=hidden name=mode value="errorclear"><input type=hidden name=delno value="$in{'delno'}"><input type=hidden name=delpass value="$in{'delpass'}"><input type=submit value="G[ONA"></form>\|;
562	$buff .= "<table summary=\"errorinfo\" width=\"100%\">\n<tr><td>DATE</td><td>ADDR</td><td>HOST</td><td>NOTE</td></tr>\n";
563	if(open(IN,$set{'error_log'})){ @log = reverse(<IN>); close(IN); foreach (@log){ my ($date,$no,$note,$addr,$host) = split(/<>/); $buff .= "<tr><td>$date</td><td>$addr</td><td>$host</td><td>$note</td></tr>\n"; }}
564	$buff .= "</table><br><br>\n";
565	}
566
567	$buff .= leaddisp(-1,-1,0);
568	$buff .= '<a name="set"></a><table summary="settitle" width="100%"><tr><td bgcolor="#caccff"><strong><font size="4" color="#3366cc">Setting Info</font></strong></td></tr></table>'."\n<table summary=\"setting\">\n";
569	$buff .= tablestr('XNvgVer',$set{'ver'});
570	$buff .= tablestr('COt@C',$set{'log_file'});
571	if($set{'error_level'}){
572	$buff .= tablestr('G[Ot@C',$set{'error_log'});
573	if($set{'error_size'}){ $buff .= tablestr('G[OÅåeÊ',dispsize($set{'error_size'}1024).' '.($set{'error_size'}1024).'Bytes'); }
574	else{ $buff .= tablestr('G[OÅåeÊ§À','³'); }
575	}else{ $buff .= tablestr('G[OL^','³'); }
576	$buff .= tablestr('Û',$set{'max_log'});
577	$buff .= tablestr('ÅåeeÊ',dispsize($set{'max_size'}1024).' '.($set{'max_size'}1024).'Bytes');
578
579	if($set{'min_flag'}){ $buff .= tablestr('Å¬§ÀeÊ',dispsize($set{'min_size'}1024).' '.($set{'min_size'}1024).'Bytes'); }
580	else{ $buff .= tablestr('Å¬§ÀeÊ',"³"); }
581	if($set{'max_all_flag'}){ $buff .= tablestr('eÊ§À',dispsize($set{'max_all_size'}1024).' '.($set{'max_all_size'}1024).'Bytes'); }
582	else{ $buff .= tablestr('eÊ§À',"³"); }
583
584	$buff .= tablestr("t@CÚª«",$set{'file_pre'});
585	$buff .= tablestr("HTMLÛ¶fBNg",$set{'html_dir'});
586	$buff .= tablestr("t@CÛ¶fBNg",$set{'src_dir'});
587	if($set{'http_html_path'} && $set{'html_dir'} ne $set{'http_html_path'}){ $buff .= "<tr><td>HTTP_HTML_PATH</td><td>$set{'http_html_path'}</td></tr>\n";}
588	if($set{'http_src_path'} && $set{'src_dir'} ne $set{'http_src_path'}){ $buff .= "<tr><td>HTTP_SRC_PATH</td><td>$set{'http_src_path'}</td></tr>\n";}
589	$buff .= tablestr('1y[WÉ\¦·ét@C',$set{'pagelog'});
590	if($set{'interval'} > 0){ $value = $set{'interval'}.'b'; }else{ $value = '³'; }
591	$buff .= tablestr('¯êIPeÔub§À',$value);
592	if($set{'up_ext'}){ $set{'up_ext'} =~ s/,/ /g; $buff .= tablestr('eÂ\î{g£q',$set{'up_ext'}); }
593	if($set{'deny_ext'}){ $set{'deny_ext'} =~ s/,/ /g; $buff .= tablestr('eÖ~g£q',$set{'deny_ext'}); }
594	if($set{'change_ext'}){ $set{'change_ext'} =~ s/,/ /g; $set{'change_ext'} =~ s/>/>/g; $buff .= tablestr('g£qÏ·',$set{'change_ext'}); }
595
596	if($set{'up_all'}){ $buff .= tablestr('wèOg£qAbv[hÂ','L'); if($set{'ext_org'}){ $buff .= tablestr('wèOt@Cg£q','IWi'); }else{ $buff .= tablestr('wèOt@Cg£q','bin'); }}
597	else{$buff .= tablestr('wèOg£qAbv[hÂ','³');}
598
599	if($set{'find_crypt'}){ $value = 'L'; }else{ $value = '³';}
600	$buff .= tablestr('Ã»A[JCuo(ZIP)',$value);
601	if($set{'binary_compare'}){ $value = 'L'; }else{ $value = '³';}
602	$buff .= tablestr('oCiär',$value);
603	if($set{'post_flag'}){ $value = 'L'; }else{ $value = '³';}
604	$buff .= tablestr('PostKeye§À',$value);
605	if($set{'dlkey'}){ if($set{'dlkey'} == 2){$value = 'K{'}else{$value = 'CÓ';}}else{ $value = '³';}
606	$buff .= tablestr('DLkey',$value);
607	if($set{'dummy_html'}){ if($set{'dummy_html'} == 3){$value = 'ALL'}elsif($set{'dummy_html'} == 2){$value = 'DLKeyÌÝ';}else{$value = 'Êít@CÌÝ';}}else{ $value = '³';}
608	$buff .= tablestr('ÂÊHTMLLbV',$value);
609	if($set{'disp_error'}){ $value = 'L'; }else{ $value = '³';}
610	$buff .= tablestr('[UG[\¦',$value);
611	if($set{'zero_clear'}){ $value = 'L'; }else{ $value = '³';}
612	$buff .= tablestr('íÏt@CXg©®Á',$value);
613	if($set{'home_url'}){ $buff .= "<tr><td>HOMEURL</td><td>$set{'home_url'}</td></tr>\n";}
614
615	$buff .= '</table></body></html>';
616
617	print "Content-type: text/html\n\n";
618	print $buff;
619	exit;
620	}
621
622	sub extfind{
623	my $orgname = @_[0];
624	my @filename = split(/\./,$orgname);
625	my $ext = $filename[$#filename];
626	$ext =~ tr/[A-Z]/[a-z]/;
627	foreach my $value (split(/,/,$set{'change_ext'})){ my ($src,$dst) = split(/->/,$value); if($ext eq $src){ $ext = $dst; last; }}
628	foreach my $value (split(/,/,$set{'deny_ext'})){ if($ext eq $value){ &error(206,$ext); }}
629	foreach my $value (split(/,/,$set{'up_ext'})){ if ($ext eq $value) { return $value; } }
630	if(length($ext) >= 5 \|\| length($ext) == 0){ $ext = 'bin'; }
631	unless ($ext =~ /^[A-Za-z0-9]+$/){ $ext = 'bin'; }
632	if($set{'up_all'} && $set{'ext_org'}){ return $ext;}
633	elsif($set{'up_all'}){ return 'bin'; }
634	return 0;
635	}
636
637	sub conv_date{
638	my @date = gmtime($_[0] + 96060);
639	$date[5] -= 100; $date[4]++;
640	if ($date[5] < 10) { $date[5] = "0$date[5]" ; } if ($date[4] < 10) { $date[4] = "0$date[4]" ; }
641	if ($date[3] < 10) { $date[3] = "0$date[3]" ; } if ($date[2] < 10) { $date[2] = "0$date[2]" ; }
642	if ($date[1] < 10) { $date[1] = "0$date[1]" ; } if ($date[0] < 10) { $date[0] = "0$date[0]" ; }
643	my @w = ('Sun','Mon','Tue','Wed','Thu','Fri','Sat');
644	return ("$date[5]/$date[4]/$date[3]($w[$date[6]]),$date[2]:$date[1]:$date[0]");
645	}
646
647	sub dispsize{
648	my $size = $_[0];
649	if($size >= 102410241024*100){ $size = int($size/1024/1024/1024).'GB';}
650	elsif($size >= 102410241024*10){ $size = sprintf("%.1fGB",$size/1024/1024/1024);}
651	elsif($size > 102410241024){ $size = sprintf("%.2fGB",$size/1024/1024/1024);}
652	elsif($size >= 10241024100){ $size = int($size/1024/1024).'MB'; }
653	elsif($size > 1024*1024){ $size = sprintf("%.1fMB",$size/1024/1024); }
654	elsif($size > 1024){ $size = int($size/1024).'KB'; }
655	else{ $size = int($size).'B';}
656	return $size;
657	}
658
659	sub makeitem{
660	my ($src,$mode) = @_; my ($buff,$check,$target);
661	my ($no,$ext,$date,$comment,$mime,$orgname,$addr,$host,$pass,$filepre,$note,$dummy) = split(/<>/,$src);
662	if(!$dummy){ $filepre = $set{'file_pre'}; }
663	my $orgno = $no;
664	$no = sprintf("%04d",$no);
665	my $size = 0;
666	my $dlpath = 0;
667
668	if($note =~ /DLpath:(.+)\s/){
669	$dlpath = $1;
670	$size = dispsize(-s "$set{'src_dir'}$filepre$no.${ext}_$dlpath/$filepre$no.$ext");
671	}else{
672	$size = dispsize(-s "$set{'src_dir'}$filepre$no.$ext");
673	}
674
675	my $path = $set{'http_src_path'} \|\| $set{'src_dir'};
676	if($set{'link_target'}){ $target = qq\| target="$set{'link_target'}"\|; }
677	if($mode eq 'admin'){
678	if($dlpath){ $path .= "$filepre$no.${ext}_$dlpath/"; }
679	if($addr eq $host){ undef $host; }
680	if($in{'checkmode'} eq 'allcheck'){$check = ' checked';}
681	$buff = "<tr><td><INPUT TYPE=checkbox NAME=\"admin_delno\" VALUE=\"$no\"$check></td><td><a href=\"$path$filepre$no.$ext\"$target>$filepre$no.$ext</a></td><td>$comment</td><td>$size</td><td>$addr</td><td>$host</td><td>$date</td><td>$note</td><td>$mime</td><td>$orgname</td></tr>\n";
682	}else{
683	my($d_com,$d_date,$d_size,$d_mime,$d_org);
684	if($set{'disp_comment'}){ $d_com = "<td>$comment</td>"; } if($set{'disp_size'}){ $d_size = "<td>$size</td>"; } if($set{'disp_date'}){ $d_date= "<td>$date</td>"; }
685	if($set{'disp_mime'}){ $d_mime = "<td>$mime</td>"; } if($set{'disp_orgname'}){ $d_org = "<td>$orgname</td>"; }
686	if(-e "$set{'src_dir'}$filepre$no.$ext.html"){$buff = "<tr><td><SCRIPT type=\"text/javascript\" Language=\"JavaScript\"><!--\ndocument.write(\"<a href=\\\"javascript:delnoin($orgno)\\\">$set{'char_delname'}<\\/a>\");\n// --></SCRIPT></td><td><a href=\"$path$filepre$no.$ext.html\"$target>$filepre$no.$ext</a></td>$d_com$d_size$d_date$d_mime$d_org</tr>\n";}
687	elsif($dlpath){$buff = "<tr><td><SCRIPT type=\"text/javascript\" Language=\"JavaScript\"><!--\ndocument.write(\"<a href=\\\"javascript:delnoin($orgno)\\\">$set{'char_delname'}<\\/a>\");\n// --></SCRIPT></td><td><a href=\"$set{'base_cgi'}?mode=dl&file=$orgno\">$filepre$no.$ext</a></td>$d_com$d_size$d_date$d_mime$d_org</tr>\n";}
688	else{ $buff = "<tr><td><SCRIPT type=\"text/javascript\" Language=\"JavaScript\"><!--\ndocument.write(\"<a href=\\\"javascript:delnoin($orgno)\\\">$set{'char_delname'}<\\/a>\");\n// --></SCRIPT></td><td><a href=\"$path$filepre$no.$ext\"$target>$filepre$no.$ext</a></td>$d_com$d_size$d_date$d_mime$d_org</tr>\n";}
689	}
690	return $buff;
691	}
692
693	sub makedummyhtml{
694	my ($filename,$com,$file,$orgdlpath,$date,$mime,$orgname,$no) = @_;
695	my $buff;
696
697	if(!$no){
698	$buff = "<html><head><title>$filename</title></head><body>";
699	$buff .= qq\|Download <a href="./$filename">$filename</a>\|;
700	$buff .= '</body></html>';
701	}else{
702	$buff = cryptfiledl($com,$file,$orgdlpath,$date,$mime,$orgname,$no);
703	}
704
705	open(OUT,">$set{'src_dir'}$filename.html")\|\|&error(307,"$set{'src_dir'}$filename.html");
706	print OUT $buff;
707	close(OUT);
708	chmod($set{'per_upfile'},"$set{'src_dir'}$filename.html");
709	return 1;
710	}
711
712	sub logwrite{
713	my @log = @_;
714	open(OUT,"+>$set{'log_file'}")\|\|&error(304);
715	eval{ flock(OUT, 2);};
716	eval{ truncate(OUT, 0);};
717	seek(OUT, 0, 0);
718	print OUT @log;
719	eval{ flock(OUT, 8);};
720	close(OUT);
721	chmod($set{'per_upfile'},$set{'log_file'});
722	return 1;
723	}
724
725	sub binarycmp{
726	my ($src,$dst) = @_;
727	return 0 if (-s $src != -s $dst);
728	open(SRC,$src)\|\|return 0; open(DST,$dst)\|\|return 0;
729	my ($buff,$buff2);
730	binmode(SRC); binmode(DST); seek(SRC,0,0); seek(DST,0,0);
731	while(read(SRC,$buff,8192)){ read(DST,$buff2,8192); if($buff ne $buff2){ close(SRC); close(DST); return 0; } }
732	close(SRC); close(DST);
733	return 1;
734	}
735
736	sub init{
737	my $buff;
738	if(open(OUT,">$set{'log_file'}")){
739	print OUT "0<>0<>0<>1\n";
740	close(OUT);
741	chmod($set{'per_logfile'},$set{'log_file'});
742	}else{
743	$buff = "<tr><td>COÌì¬É¸sµÜµ½</td></tr>";
744	}
745
746	unless (-d "$set{'src_dir'}"){
747	if(mkdir("$set{'src_dir'}",$set{'per_dir'})){
748	chmod($set{'per_dir'},"$set{'src_dir'}");
749	open(OUT,">$set{'src_dir'}index.html");
750	close(OUT);
751	chmod($set{'per_upfile'},"$set{'src_dir'}index.html");
752	}else{
753	$buff .= "<tr><td>SourceÛ¶fBNgÌì¬É¸sµÜµ½</td></tr>";
754	}
755	}
756
757	unless (-d "$set{'html_dir'}"){
758	if(mkdir("$set{'html_dir'}",$set{'per_dir'})){
759	chmod($set{'per_dir'},"$set{'html_dir'}");
760	}else{
761	$buff .= "<tr><td>HTMLÛ¶fBNgÌì¬É¸sµÜµ½</td></tr>";
762	}
763	}
764
765	if($buff){
766	$buff .= "<tr><td>fBNgÉ«Ý Àª é©mFµÄ¾³¢</td></tr>";
767	&error_disp($buff,'init');
768	}
769	}
770
771	sub check_postkey{
772	my $inputkey = @_[0];
773	my @key = split(/,/,$set{'post_key'});
774	foreach my $key (@key){ if($inputkey eq $key){ return 1; } }
775	return 0;
776	}
777
778	sub leaddisp{
779	my @src = @_;
780	my ($str,$count);
781	foreach my $value (@src){
782	my ($mark,$name,$link); $count++;
783	if($count == 1){ $name = 'Upload Info'; $link = 'up'; }
784	elsif($count == 2){ $name = 'Error Info'; $link = 'error'; next if(!$set{'error_level'}); }
785	elsif($count == 3){ $name = 'Setting Info'; $link = 'set'; }
786	if($value){ if($value > 0){ $mark = '¥'; }else{ $mark = '£'; } $str .= qq\|<a href="#$link">${mark}${name}</a> \|; }
787	else{ $str .= qq\|[$name] \|; }
788	}
789	return $str;
790	}
791
792	sub errorclear{
793	open(OUT,">$set{'error_log'}")\|\|return 0;
794	eval{ flock(OUT, 2);}; eval{ truncate(OUT, 0);}; seek(OUT, 0, 0); eval{ flock(OUT, 8);}; close(OUT);
795	chmod($set{'per_upfile'},$set{'log_file'});
796	return 1;
797	}
798
799	sub tablestr{
800	my ($value1,$value2) = @_;
801	return ("<tr><td>$value1</td><td>$value2</td></tr>\n");
802	}
803
804	sub globfile{
805	my ($src_dir,$filename) = @_;
806	opendir(DIR,$src_dir)\|\|return 0; my @dir = readdir(DIR); closedir(DIR);
807	my @new = (); foreach my $value (@dir){ push(@new,"$src_dir$value") if($value =~ /$filename/ && !(-d "$src_dir$value")); }
808	return @new;
809	}
810
811	sub globdir{
812	my ($src_dir,$dir) = @_;
813	opendir(DIR,$src_dir)\|\|return 0; my @dir = readdir(DIR); closedir(DIR);
814	my @new = (); foreach my $value (@dir){ if($value eq '.' \|\|$value eq '..' ){ next; } push(@new,"$src_dir$value") if($value =~ /$dir/ && (-d "$src_dir$value")); }
815	return @new;
816	}
817
818	sub error_disp{
819	my ($message,$mode) = @_;
820	my $url;
821	if($mode eq 'init'){ $url = qq\|<a href="$set{'base_cgi'}">[[h]</a>\|; }else{ $url = qq\|<a href="$set{'http_html_path'}$set{'base_html'}">[ßé]</a>\|; }
822	my $buff =<<"EOM";
823	$set{'html_head'}$set{'html_css'}</HEAD>
824	<body bgcolor="#ffffff" text="#000000" LINK="#6060FF" VLINK="#6060FF" ALINK="#6060FF">
825	<div align="center">
826	<table summary="error">
827	$message
828	<tr><td></td></tr>
829	<tr><td><div align="center">$url</div></td></tr>
830	</table>
831	<br><br>
832	<table summary="info">
833	<tr>
834	<td>DATE</td><td>$in{'date'}</td></tr>
835	<tr><td>ADDR</td><td>$in{'addr'}</td></tr>
836	<tr><td>HOST</td><td>$in{'host'}</td></tr>
837	</table>
838	</div>
839	</body></html>
840	EOM
841	print "Content-type: text/html\n\n";
842	print $buff;
843	exit;
844	}
845
846	sub error{
847	my ($no,$note) = @_;
848	if (length($note) > 64) { $note = substr($note,0,64).'...'; }
849	$note =~ s/&/&/g; $note =~ s/\"/"/g; $note =~ s/</</g; $note =~ s/>/>/g; $note =~ s/\r//g; $note =~ s/\n//g; $note =~ s/\t//g; $note =~ s/\0//g;
850	my ($message,$dispmsg,$flag);
851	if($no == 98){ $message = ""; }
852	elsif($no == 99){ $message = "UpFileÈµ"; }
853	elsif($no == 101){ $message = "eÖ~HOST"; }
854	elsif($no == 106){ $flag = 1; $message = "POSTTCY´ß"; $note = dispsize($note); $dispmsg= '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>Abv[ht@C('.$note.')Í ÅåeÊÝè('.dispsize($set{'max_size'}*1024).')ðz¦Ä¢Ü·</td></tr>';}
855	elsif($no == 107){ $flag = 1; $message = "POSTTCYß¬"; $note = dispsize($note); $dispmsg= '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>Abv[ht@C('.$note.')Í Å¬eÊÝè('.dispsize($set{'min_size'}*1024).')¢Å·</td></tr>';}
856	# elsif($no == 108){ $flag = 1; $message = "POSTf[^s®S"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>POSTf[^ªs®SÅ·</td></tr>';}
857	elsif($no == 109){ $flag = 1; $message = "POSTKeysêv"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>POSTKeyªêvµÜ¹ñ</td></tr>';}
858	elsif($no == 202){ $flag = 1; $message = "g£qí¸"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>eÅ«ég£qÍ'.$set{'up_ext'}.'Å·</td></tr>';}
859	elsif($no == 203){ $flag = 1; $message = "e·¬"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>¯êIPAhX©ç'.$set{'interval'}.'bÈàÉÄeÅ«Ü¹ñ</td></tr>';}
860	elsif($no == 204){ $flag = 1; $message = "êt@C«ß¸"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>êt@CÌì¬É¸sµÜµ½</td></tr>';}
861	elsif($no == 205){ $flag = 1; $message = "¯êt@C¶Ý"; $note =~ /([^\/]+)$/; my $filename = $1; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>¯êt@Cª '.$filename.' É¶ÝµÜ·</td></tr>';}
862	elsif($no == 206){ $flag = 1; $message = "Ö~g£q"; $dispmsg = '<tr><td>t@CðAbv[hÅ«Ü¹ñÅµ½</td></tr><tr><td>g£q '.$note.' ÍAbv[hÅ«Ü¹ñ</td></tr>';}
863	elsif($no == 303){ $flag = 1; $message = "Ot@CÉÇÝß¸"; $dispmsg = '<tr><td>COÌÇÝÝÉ¸sµÜµ½</td></tr>';}
864	elsif($no == 304){ $flag = 1; $message = "Ot@CÉ«ß¸"; $dispmsg = '<tr><td>COÌ«ÝÉ¸sµÜµ½</td></tr>';}
865	elsif($no == 306){ $message = "t@CXgHTML«ß¸";}
866	elsif($no == 307){ $message = "t@CHTMLt@C«ß¸";}
867	elsif($no == 401){ $flag = 1; $message = "íNo.oÅ«¸"; $dispmsg = '<tr><td>t@CðíÅ«Ü¹ñÅµ½</td></tr><tr><td>'.$note.' ©çíNo.ðoÅ«Ü¹ñÅµ½</td></tr><tr><td>'.$set{'file_pre'}.'0774.zipÌê No.ÉÍ 774 ðüÍµÜ·</td></tr>';}
868	elsif($no == 402){ $flag = 1; $note = sprintf("%04d",int($note)); $message = "íNo.¶Ý¹¸"; $dispmsg = '<tr><td>t@CðíÅ«Ü¹ñÅµ½</td></tr><tr><td>'.$set{'file_pre'}.$note.'.*** ÍCOÉ¶ÝµÜ¹ñ</td></tr>';}
869	elsif($no == 403){ $flag = 1; $message = "íANZXÛ"; $dispmsg = '<tr><td>t@CðíÅ«Ü¹ñÅµ½</td></tr><tr><td>t@CíðÍ½µÄ¢Ü·ª '.$note.' Ìt@CÌíªÛ³êÜµ½</td></tr><tr><td>ANZXªßèÈêÍÔðu¢ÄÄì·éÆíÅ«é±Æª èÜ·</td></tr>';}
870	elsif($no == 404){ $flag = 1; $message = "íKeysêv"; $dispmsg = '<tr><td>t@CðíÅ«Ü¹ñÅµ½</td></tr><tr><td>'.$note.' íKeyªêvµÜ¹ñÅµ½</td></tr>';}
871
872	elsif($no == 51){ $flag = 1; $message = "[DLMode] No.©Â©ç¸"; $dispmsg = '<tr><td>[DLMode] t@Cª©Â©èÜ¹ñÅµ½</td></tr><tr><td>'.$note.' ©çt@CNo.ðoÅ«Ü¹ñÅµ½</td></tr>'; }
873	elsif($no == 52){ $flag = 1; $message = "[DLMode] File©Â©ç¸"; $dispmsg = '<tr><td>[DLMode] t@Cª©Â©èÜ¹ñÅµ½</td></tr><tr><td>'.$set{'file_pre'}.$note.'.*** ÍCOÉ¶ÝµÜ¹ñ</td></tr>'; }
874	elsif($no == 53){ $flag = 1; $message = "[DLMode] DLkey¢Ýè"; $dispmsg = '<tr><td>[DLMode] orgDLkeyError</td></tr><tr><td>'.$note.' DLKeyª¢ÝèÅ·</td></tr>'; }
875	elsif($no == 54){ $flag = 1; $message = "[DLMode] DLkeysêv"; $dispmsg = '<tr><td>[DLMode] orgDLkeyError</td></tr><tr><td>'.$note.' DLKeyªêvµÜ¹ñÅµ½</td></tr>'; }
876	elsif($no == 55){ $flag = 1; $message = "[DLMode] File Oepn Error"; $dispmsg = '<tr><td>[DLMode] Open Error</td></tr><tr><td>'.$note.' t@CÌÇÝÝÉ¸sµÜµ½</td></tr>'; }
877	elsif($no == 56){ $flag = 1; $message = "[DLMode] File Not Found"; $dispmsg = '<tr><td>[DLMode] Not Found</td></tr><tr><td>'.$note.' t@Cª¶ÝµÜ¹ñ</td></tr>'; }
878
879	elsif($no == 61){ $flag = 1; $message = "DLkey¢Ýè"; $dispmsg = '<tr><td>DLKeyª¢ÝèÅ·</td></tr>'; }
880
881	if($note){$message .= ' ';}
882	eval { close($in{'upfile'}); };
883	unlink($in{'tmpfile'});
884	if($set{'error_level'} && $no > 100){
885	unless(-e $set{'error_log'}){
886	open(OUT,">$set{'error_log'}");
887	close(OUT);
888	chmod($set{'per_logfile'},$set{'error_log'});
889	}
890	if($set{'error_size'} && ((-s $set{'error_log'}) > $set{'error_size'} * 1024)){
891	my $err_bkup = "$set{'error_log'}.bak.cgi";
892	unlink($err_bkup);
893	rename($set{'error_log'},$err_bkup);
894	open(OUT,">$set{'error_log'}");
895	close(OUT);
896	chmod($set{'per_logfile'},$set{'error_log'});
897	}
898	open(OUT,">>$set{'error_log'}");
899	print OUT "$in{'date'}<>$no<>$message$note<>$in{'addr'}<>$in{'host'}<>1\n";
900	close(OUT);
901	}
902	&error_disp($dispmsg) if($flag && $set{'disp_error'});
903	&quit();
904	}
905
906	sub dlfile{
907	my $msg;
908	my ($orgdlkey,$orgdlpath);
909	my ($dlext,$dlfilepre);
910	my ($dl_date,$dl_comment,$dl_size,$dl_mime,,$dl_orgname);
911	my $dlno = 0;
912	my $findflag;
913
914	open(IN,$set{'log_file'})\|\|&error(303);
915	my @log = <IN>;
916	close(IN);
917	shift(@log);
918
919	if($in{'file'} =~ /(\d+)/){ $dlno = $1; }
920	if($dlno == 0) { &error(51,$in{'file'}); }
921
922	foreach my $value (@log){
923	my ($no,$ext,$date,$comment,$mime,$orgname,$addr,$host,$pass,$filepre,$note,$dummy) = split(/<>/,$value);
924	my @note = split(/,/,$note);
925	if(int($dlno) == $no){
926	$dl_comment = $comment;
927	$dl_mime = $mime;
928	$dl_date = $date;
929	$dl_orgname = $orgname;
930	$dlext = $ext;
931	$dlfilepre = $filepre;
932	foreach my $tmpnote (@note){
933	if($tmpnote =~ /\!--\sDLKey:(.+)\s--.*\!--\sDLpath:(.+)\s--/){
934	$orgdlkey = $1;
935	$orgdlpath = $2;
936	last;
937	}
938	}
939	$findflag = 1;
940	last;
941	}
942	}
943
944	my $dlfile = $dlfilepre.sprintf("%04d",int($dlno)).'.'.$dlext;
945	if(!(-e "$set{'src_dir'}${dlfile}_$orgdlpath/$dlfile")){ &error(56,"$dlfile----$set{'src_dir'}${dlfile}_$orgdlpath/$dlfile"); }
946
947	if($in{'dlkey'}){
948	my $dlsalt = substr($orgdlkey,0,2);
949	my $dlkey = crypt($in{'dlkey'},$dlsalt);
950
951	if($findflag == 0){ &error(52,$dlfile); }
952	elsif(!$orgdlkey){ &error(53,$dlfile); }
953	elsif($orgdlkey ne $dlkey && $set{'admin_pass'} ne $in{'dlkey'}){ &error(54,$dlfile); }
954	#print "Location: $set{'http_src_path'}${dlfile}_$orgdlpath/$dlfile\n\n";
955	my $buff =<<"EOM";
956	$set{'html_head'}$set{'html_css'}
957	<META HTTP-EQUIV="Refresh" CONTENT="1;URL=$set{'http_src_path'}${dlfile}_$orgdlpath/$dlfile">
958	</HEAD>
959	<body bgcolor="#ffffff" text="#000000" LINK="#6060FF" VLINK="#6060FF" ALINK="#6060FF">
960	<div align="center">
961	<br>
962	<table summary="dlfrom">
963	<tr><td>òÎÈ¢êÍ <a href="$set{'http_src_path'}${dlfile}_$orgdlpath/$dlfile">±¿ç</a> ©ç</td></tr>
964	</table>
965	</div>
966	</body></html>
967	EOM
968	print "Content-type: text/html\n\n";
969	print $buff;
970	}else{
971	my $buff = cryptfiledl($dl_comment,$dlfile,$orgdlpath,$dl_date,$dl_mime,$dl_orgname,$dlno);
972	print "Content-type: text/html\n\n";
973	print $buff;
974	}
975	exit;
976	}
977
978	sub cryptfiledl{
979	my($com,$file,$orgdlpath,$date,$mime,$orgname,$no) = @_;
980	my($d_com,$d_date,$d_size,$d_mime,$d_org);
981
982	if($set{'disp_comment'}){ $d_com = "<tr><td>COMMENT</td><td>$com</td></td>"; } if($set{'disp_size'}){ $d_size = "<tr><td>SIZE</td><td>".dispsize(-s "$set{'src_dir'}${file}_$orgdlpath/$file")." (".(-s "$set{'src_dir'}${file}_$orgdlpath/$file")."bytes)"."</td></tr>"; } if($set{'disp_date'}){ $d_date= "<tr><td>DATE</td><td>$date</td></tr>"; }
983	if($set{'disp_mime'}){ $d_mime = "<tr><td>ORGMIME</td><td>$mime</td></tr>"; } if($set{'disp_orgname'}){ $d_org = "<tr><td>ORGNAME</td><td>$orgname</td></tr>"; }
984
985	my $buff =<<"EOM";
986	$set{'html_head'}$set{'html_css'}</HEAD>
987	<body bgcolor="#ffffff" text="#000000" LINK="#6060FF" VLINK="#6060FF" ALINK="#6060FF">
988	<div align="center">
989	<br>
990	$file ÉÍDLKeyªÝè³êÄ¢Ü·
991	<table summary="dlform">
992	<tr><td></td></tr>
993	<FORM METHOD=POST ACTION="$set{'base_cgi'}" name="DL">
994	<tr><td>
995	<input type=hidden name=file value=$no>
996	<input type=hidden name=jcode value="¿">
997	<input type=hidden name=mode value=dl></td></tr>
998	$d_com$d_date$d_size$d_mime$d_org
999	<tr><td>DLKey:<input type=text size=8 name="dlkey"></td></tr>
1000	<tr><td><input type=submit value="DownLoad"></td></tr>
1001	</FORM>
1002	</table>
1003	</div>
1004	</body></html>
1005	EOM
1006
1007	return $buff;
1008	}

Note: See TracBrowser for help on using the repository browser.

Context Navigation

source: lab/vendor/SnUploader/snup_051010e/uploader+cgipm/upload.cgi @ 29

Download in other formats: