⚝
One Hat Cyber Team
⚝
Your IP:
216.73.216.93
Server IP:
65.108.141.171
Server:
Linux server.heloix.com 5.4.0-214-generic #234-Ubuntu SMP Fri Mar 14 23:50:27 UTC 2025 x86_64
Server Software:
Apache
PHP Version:
7.4.33
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
usr
/
share
/
webmin
/
Edit File: session_login.cgi
#!/usr/bin/perl # session_login.cgi # Display the login form used in session login mode BEGIN { push(@INC, "."); }; use WebminCore; $pragma_no_cache = 1; #$ENV{'MINISERV_INTERNAL'} || die "Can only be called by miniserv.pl"; &init_config(); &ReadParse(undef, undef, undef, 2); if ($gconfig{'loginbanner'} && $ENV{'HTTP_COOKIE'} !~ /banner=1/ && !$in{'logout'} && !$in{'failed'} && !$in{'timed_out'}) { # Show pre-login HTML page print "Set-Cookie: banner=1; path=/\r\n"; &PrintHeader(); $url = $in{'page'}; open(BANNER, "<$gconfig{'loginbanner'}"); while(<BANNER>) { s/LOGINURL/$url/g; print; } close(BANNER); return; } &get_miniserv_config(\%miniserv); $sec = uc($ENV{'HTTPS'}) eq 'ON' ? "; secure" : ""; if (!$miniserv{'no_httponly'}) { $sec .= "; httpOnly"; } $sidname = $miniserv{'sidname'} || "sid"; print "Set-Cookie: banner=0; path=/$sec\r\n" if ($gconfig{'loginbanner'}); print "Set-Cookie: $sidname=x; path=/$sec\r\n" if ($in{'logout'}); print "Set-Cookie: testing=1; path=/$sec\r\n"; $title = $text{'session_header'}; if ($gconfig{'showhost'}) { $title = &get_display_hostname()." : ".$title; } &ui_print_unbuffered_header( undef, undef, undef, undef, undef, 1, 1, undef, "<title>$title</title>", "onLoad='document.forms[0].user.focus()'"); if ($tconfig{'inframe'}) { # Framed themes lose original page $in{'page'} = "/"; } print "<center>\n"; if (&miniserv_using_default_cert()) { print "<h3>",&text('defcert_error', ucfirst(&get_product_name()), ($ENV{'MINISERV_KEYFILE'} || $miniserv{'keyfile'})),"</h3><p></p>\n"; } if (defined($in{'failed'})) { if ($in{'twofactor_msg'}) { print "<h3>",&text('session_twofailed', &html_escape($in{'twofactor_msg'})),"</h3><p></p>\n"; } else { print "<h3>$text{'session_failed'}</h3><p></p>\n"; } } elsif ($in{'logout'}) { print "<h3>$text{'session_logout'}</h3><p></p>\n"; } elsif ($in{'timed_out'}) { print "<h3>",&text('session_timed_out', int($in{'timed_out'}/60)),"</h3><p></p>\n"; } print "$text{'session_prefix'}\n"; print &ui_form_start("@{[&get_webprefix()]}/session_login.cgi", "post"); print &ui_hidden("page", $in{'page'}); print &ui_table_start($text{'session_header'}, "width=40% class='loginform'", 2); # Login message if ($gconfig{'realname'}) { $host = &get_display_hostname(); } else { $host = $ENV{'HTTP_HOST'}; $host =~ s/:\d+//g; $host = &html_escape($host); } print &ui_table_row(undef, &text($gconfig{'nohostname'} ? 'session_mesg2' : 'session_mesg', "<tt>$host</tt>"), 2, [ "align=center", "align=center" ]); # Username and password $tags = $gconfig{'noremember'} ? "autocomplete=off" : ""; print &ui_table_row($text{'session_user'}, &ui_textbox("user", $in{'failed'}, 20, 0, undef, $tags)); print &ui_table_row($text{'session_pass'}, &ui_password("pass", undef, 20, 0, undef, $tags)); # Two-factor token, for users that have it if ($miniserv{'twofactor_provider'}) { print &ui_table_row($text{'session_twofactor'}, &ui_textbox("twofactor", undef, 20, 0, undef, "autocomplete='one-time-code'")); } # Remember session cookie? if (!$gconfig{'noremember'}) { print &ui_table_row(" ", &ui_checkbox("save", 1, $text{'session_save'}, 0)); } print &ui_table_end(),"\n"; print &ui_submit($text{'session_login'}); print &ui_reset($text{'session_clear'}); print &ui_form_end(); print "</center>\n"; print "$text{'session_postfix'}\n"; # Output frame-detection Javascript, if theme uses frames if ($tconfig{'inframe'}) { print <<EOF; <script> if (window != window.top) { window.top.location = window.location; } </script> EOF } &ui_print_footer();
Simpan