version 1.4, 2002/08/01 22:36:11
|
version 1.15, 2005/03/03 05:44:51
|
Line 32 use strict;
|
Line 32 use strict;
|
use Apache::Constants qw(:common :remotehost); |
use Apache::Constants qw(:common :remotehost); |
use Apache::lonnet(); |
use Apache::lonnet(); |
use Apache::File(); |
use Apache::File(); |
|
use IO::Socket; |
|
|
sub handler { |
sub handler { |
my $r = shift; |
my $r = shift; |
my $reqhost; |
my $reqhost = $r->get_remote_host(REMOTE_NOLOOKUP); |
unless ($reqhost=$r->get_remote_host(REMOTE_DOUBLE_REV)) { |
my %iphost=&Apache::lonnet::get_iphost(); |
$r->log_reason("Spoof request"); |
my $hostids=$iphost{$reqhost}; |
return FORBIDDEN; |
if (!$hostids && $reqhost ne '127.0.0.1' ) { |
|
$r->log_reason("Unable to find a host for ". |
|
$r->get_remote_host(REMOTE_NOLOOKUP)); |
|
return FORBIDDEN; |
|
} |
|
if ($reqhost eq '127.0.0.1') { |
|
return OK; |
} |
} |
my $readline; |
my $readline; |
my $lontabdir=$r->dir_config('lonTabDir'); |
my $lontabdir=$r->dir_config('lonTabDir'); |
Line 49 sub handler {
|
Line 56 sub handler {
|
return FORBIDDEN; |
return FORBIDDEN; |
} |
} |
while ($readline=<$fh>) { |
while ($readline=<$fh>) { |
my ($id,$domain,$role,$name,$ip)=split(/:/,$readline); |
$readline=~s/\s*$//; |
if ($name =~ /$reqhost/i) { return OK; } |
my ($id,$domain,$role,$name)=split(/:/,$readline); |
|
foreach my $hostid (@{$hostids}) { |
|
my $hostname=$Apache::lonnet::hostname{$hostid}; |
|
if ($name =~ /^\Q$hostname\E$/i) { |
|
return OK; |
|
} |
|
} |
} |
} |
|
|
} |
} |
$r->log_reason("Invalid request for user file transfer from $reqhost", |
$r->log_reason("Invalid request for user file transfer from $reqhost (".join(",",@{$hostids}).")", |
$r->filename); |
$r->filename); |
return FORBIDDEN; |
return FORBIDDEN; |
} |
} |
|
|
|
sub removefile { |
|
my $r=shift; |
|
if ($r->status==200) { |
|
unlink($r->filename); |
|
#&Apache::lonnet::logthis('Unlinking '.$r->filename); |
|
} else { |
|
&Apache::lonnet::logthis('Failed to transfer '.$r->filename); |
|
} |
|
} |
1; |
1; |
__END__ |
__END__ |
|
|