diff options
| author | Luke Shumaker <LukeShu@sbcglobal.net> | 2011-11-27 11:22:36 -0500 |
|---|---|---|
| committer | Luke Shumaker <LukeShu@sbcglobal.net> | 2011-11-27 11:22:36 -0500 |
| commit | 3d6790614bb0dc776e02a95835e5c274263d1d1a (patch) | |
| tree | aad032777fccb7fbdc80551a6f89f4bb4845a510 /shell/pwhash.php | |
| parent | 66c84cedfb411ad6ca0508d9f45d6d33c8ad474d (diff) | |
This zip file was identified as ltshell-3.zip
Diffstat (limited to 'shell/pwhash.php')
| -rw-r--r-- | shell/pwhash.php | 107 |
1 files changed, 0 insertions, 107 deletions
diff --git a/shell/pwhash.php b/shell/pwhash.php deleted file mode 100644 index 08e8171..0000000 --- a/shell/pwhash.php +++ /dev/null @@ -1,107 +0,0 @@ -<?php -/* - * pwhash.php file for PHP Shell - * Copyright (C) 2005-2010 the Phpshell-team - * Licensed under the GNU GPL. See the file COPYING for details. - * - */ - -define('PHPSHELL_VERSION', '2.2'); - -function stripslashes_deep($value) { - if (is_array($value)) - return array_map('stripslashes_deep', $value); - else - return stripslashes($value); -} - -if (get_magic_quotes_gpc()) - $_POST = stripslashes_deep($_POST); - -$username = isset($_POST['username']) ? $_POST['username'] : ''; -$password = isset($_POST['password']) ? $_POST['password'] : ''; - -?> -<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" - "http://www.w3.org/TR/html4/strict.dtd"> -<html> -<head> - <title>Password Hasher for PHP Shell <?php echo PHPSHELL_VERSION ?></title> - <meta http-equiv="Content-Script-Type" content="text/javascript"> - <meta http-equiv="Content-Style-Type" content="text/css"> - <meta name="generator" content="phpshell"> - <link rel="stylesheet" href="style.css" type="text/css"> -</head> - -<body> - -<h1>Password Hasher for PHP Shell <?php echo PHPSHELL_VERSION ?></h1> - -<form action="<?php $_SERVER['PHP_SELF']; ?>" method="POST"> - -<fieldset> - <legend>Username</legend> - <input name="username" type="text" value="<?php echo $username ?>"> -</fieldset> - -<fieldset> - <legend>Password</legend> - <input name="password" type="text" value="<?php echo $password ?>"> -</fieldset> - -<fieldset> - <legend>Result</legend> - -<?php -if ($username == '' || $password == '') { - echo " <p><i>Enter a username and a password and update.</i></p>\n"; -} else { - - $u = strtolower($username); - - if (preg_match('/[[ |&~!()]/', $u) || $u == 'null' || - $u == 'yes' || $u == 'no' || $u == 'true' || $u == 'false') { - - echo ' <p class="error">Your username cannot contain any of the following reserved - word: "<tt>null</tt>", "<tt>yes</tt>", "<tt>no</tt>", "<tt>true</tt>", or - "<tt>false</tt>". The following characters are also prohibited: - "<tt> </tt>" (space), "<tt>[</tt>" (left bracket), "<tt>|</tt>" (pipe), - "<tt>&</tt>" (ampersand), "<tt>~</tt>" (tilde), "<tt>!</tt>" (exclamation - mark), "<tt>(</tt>" (left parenthesis), or "<tt>)</tt>" (right - parenthesis).</p>' . "\n"; - - echo ' <p>Please choose another username and try again.</p>' . "\n"; - - } else { - echo " <p>Write the following line into <tt>config.php</tt> " . - "in the <tt>users</tt> section:</p>\n"; - - if ( function_exists('sha1') ) { $fkt = 'sha1' ; } else { $fkt = 'md5' ; } ; - $salt = dechex(mt_rand()); - - $hash = $fkt . ':' . $salt . ':' . $fkt($salt . $password); - - echo "<pre>\n"; - echo htmlentities(str_pad($username, 8) . ' = "' . $hash . '"') . "\n"; - echo "</pre>\n"; - } -} -?> - -<p><input type="submit" value="Update"></p> - -</fieldset> - -</form> - - -<hr> - -<address> - Copyright © the Phpshell-team, please see <a href="AUTHORS">AUTHORS</a>. - This is PHP Shell <?php echo PHPSHELL_VERSION ?>, get the latest version at <a - href="http://phpshell.sourceforge.net/">http://phpshell.sourceforge.net/</a>. -</address> - -</body> -</html> |