#!/usr/bin/perl # Drakwizard # Copyright (C) 2003 Mandrakesoft # # Author: Florent Villard # aginies # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. package MDK::Wizard::Proftpd; use strict; use common; use services; use MDK::Wizard::Wizcommon; my $wiz = MDK::Wizard::Wizcommon->new; my $file = "/etc/proftpd.conf"; my ($servername) = cat_($file) =~ /ServerName\s+(\S*.*)/; my ($ftp_port) = cat_($file) =~ /Port\s+(\d+)/; my $o = { name => N("FTP wizard"), var => { wiz_ftp_external => '0', wiz_ftp_internal => '1', wiz_root_login => '', wiz_server_admin => '', wiz_default_root => '', wiz_ftp_resume => '', wiz_ftp_fxp => '', wiz_server_name => '', wiz_port => '', }, needed_rpm => [ 'proftpd' ], defaultimage => "$ENV{__WIZ_HOME__}ftp_wizard/images/FTP.png" }; my %opt = ( "SystemLog" => "/var/log/proftpd/proftpd.log", "TransferLog" => "/var/log/proftpd/xferlog", "Extendedlog" => "/var/log/proftpd/ftp.log", "LogFormat default" => qq("%h %l %u %t "%r" %s %b"), "LogFormat auth" => qq("%v [%P] %h %t "%r" %s"), "LogFormat write" => qq("%h %l %u %t "%r" %s %b"), "ServerIdent" => "off", "DeferWelcome" => "on", "DisplayConnect" => "/etc/banner-proftpd", "AccessDenyMsg" => qq(" !-!! ACCESS DENY !!-! SEEMS YOU HAVE NO RIGHT THERE !!"), "AccessGrantMsg" => qq(" -- Guest access granted for %u --"), "IdentLookups" => "off", "UseReverseDNS" => "off", "TimesGMT" => "off", "DirFakeUser" => "off nobody", "DirFakeGroup" => "off nobody", "DeleteAbortedStores" => "off", "PersistentPasswd" => "off", ); $o->{pages} = { welcome => { name => N("FTP server configuration wizard") . "\n\n" . N("This wizard will help you configuring an FTP server for your network."), no_back => 1, post => \&check, next => 'config' }, config => { name => N("FTP server") . "\n\n" . N("Your server can act as an FTP server toward your internal network (intranet) and as an FTP server for the Internet.") . "\n\n" . N("Select the kind of FTP service you want to activate:"), data => [ { label => N("Enable the FTP server for the intranet"), type => 'bool', val => \$o->{var}{wiz_ftp_internal} }, { label => N("Enable the FTP server for the Internet"), type => 'bool', val => \$o->{var}{wiz_ftp_external} }, ], complete => sub { if ($o->{var}{wiz_ftp_external} == 0 && $o->{var}{wiz_ftp_internal} == 0) { $::in->ask_warn(N("Error"), N("Please choose whether to allow a connection to FTP server from internal or external hosts.")); return 1; } else { return 0 } }, next => 'options' }, options => { name => N("FTP Proftpd server options, step 1") . "\n\n" . N("Permit root login: allow root to log on FTP server.") . "\n" . N("Admin email: email address of the FTP administrator."), pre => sub { $o->{var}{wiz_root_login} ||= 0; $o->{var}{wiz_server_name} = $servername; }, data => [ { label => N('Server name:'), val => \$o->{var}{wiz_server_name} }, { label => N("Admin email:"), val => \$o->{var}{wiz_server_admin}, help => 'admin@guibland.com' }, { label => N("Permit root login:"), type => 'bool', val => \$o->{var}{wiz_root_login} }, ], complete => sub { if (!any { /bash/ } cat_("/etc/shells")) { $::in->ask_warn(N("Error"), N("I can't find bash in list of shells! It seems you have modified it by hand! Please correct.")); return 1; } if (!$o->{var}{wiz_server_name}) { $::in->ask_warn(N("Error"), N("Need a server name")); return 1; } }, next => 'options_step2', }, options_step2 => { name => N('FTP server options, step 2') . "\n\n" . N("Chroot home user: users will only see their home directory.") . "\n" . N("Allow FTP resume: allow resume upload or download on FTP server.") . "\n" . N("Allow FXP: allow file transfer via another FTP."), pre => sub { $o->{var}{wiz_default_root} ||= 1; $o->{var}{wiz_ftp_resume} ||= 1; $o->{var}{wiz_ftp_fxp} ||= 0; $o->{var}{wiz_port} = $ftp_port; }, data => [ { label => N('FTP Port:'), val => \$o->{var}{wiz_port}, help => 'Default port is 21 for an FTP server' }, { label => N("Chroot home user:"), type => 'bool', val => \$o->{var}{wiz_default_root} }, { label => N("Allow FTP resume:"), type => 'bool', val => \$o->{var}{wiz_ftp_resume} }, { label => N("Allow FXP:"), type => 'bool', val => \$o->{var}{wiz_ftp_fxp} }, ], complete => sub { if ($o->{var}{wiz_port} !~ /^\d+$/) { $::in->ask_warn(N('Error'), N('FTP Port should be a number.')); return 1; } }, next => 'summary', }, warning_dhcp => { name => N("Warning.") . "\n\n" . N("You are in DHCP, server may not work with your configuration."), ignore => 1, next => 'config' }, must_be_root => { name => N("Error.") . "\n\n" . N("Sorry, you must be root to do this..."), ignore => 1, next => 'config' }, summary => { name => N("Configuring the FTP server") . "\n\n" . N("The wizard collected the following parameters needed to configure your FTP server") . "\n" . N("To accept those values, and configure your server, click the next button or use the back button to correct them"), pre => sub { $o->{var}{internal} = $o->{var}{wiz_ftp_internal} ? N("enabled") : N("disabled"); $o->{var}{external} = $o->{var}{wiz_ftp_external} ? N("enabled") : N("disabled"); $o->{var}{rootlogin} = $o->{var}{wiz_root_login} ? N("enabled") : N("disabled"); $o->{var}{defaultroot} = $o->{var}{wiz_default_root} ? N("enabled") : N("disabled"); $o->{var}{ftpresume} = $o->{var}{wiz_ftp_resume} ? N("enabled") : N("disabled"); $o->{var}{fxp} = $o->{var}{wiz_ftp_fxp} ? N("enabled") : N("disabled"); }, data => [ { label => N('FTP Port:'), fixed_val => \$o->{var}{wiz_port} }, { label => N("Intranet FTP server:"), fixed_val => \$o->{var}{internal} }, { label => N("Internet FTP server:"), fixed_val => \$o->{var}{external} }, { label => N("Permit root Login"), fixed_val => \$o->{var}{rootlogin} }, { label => N("Chroot Home user"), fixed_val => \$o->{var}{defaultroot} }, { label => N("Allow FTP resume"), fixed_val => \$o->{var}{ftpresume} }, { label => N("Allow FXP"), fixed_val => \$o->{var}{fxp} }, ], post => \&do_it, next => 'end' }, end => { name => N("Congratulations") . "\n\n" . N("The wizard successfully configured your intranet/Internet FTP server"), end => 1, no_back => 1, next => 0 }, error_end => { name => N("Failed"), data => [ { label => N("Please relaunch drakwizard, and try to change some parameters.") } ], no_back => 1, end => 1, next => 0, }, }; sub new { my ($class) = @_; bless { o => $o, }, $class; } sub true { my ($val) = @_; return member($val, qw(1 '1' "1" true 'true' "true")); } sub get_dir { die "no FTP configuration file found! warning." if !-f $file; local *NEW; open(NEW, "< $file") or die "error while opening $file: $!"; local $_; while () { # we need 3 elements to consider section as known if (m/^\s*/s...m!^\s*!s) { if (m/^\s*/s) { return $1; } } } ""; } sub check { $> and return 'must_be_root'; $wiz->{net}->is_dhcp and return 'warning_dhcp'; ''; } sub print_anonymous { my ($arg) = @_; print ' # User ftp Group ftp UserAlias anonymous ftp MaxClients 10 DenyAll # '; } sub change_options { my ($var, $var_in_conf) = @_; my $status; if ($var == 1) { $status = "on" } else { $status = "off" } if (any { /^$var_in_conf/ } cat_($file)) { substInFile { s/$var_in_conf.*/$var_in_conf $status/ } $file; } else { append_to_file($file, "$var_in_conf $status\n"); } } sub add_options { my ($var, $value) = @_; if (any { /^$var/ } cat_($file)) { substInFile { s/$var.*/$var $value/ } $file; } else { append_to_file($file, "$var $value\n"); } } sub do_it { $::testing and return; my $wiz_ftp_internal = $o->{var}{wiz_ftp_external} ? 1 : true $o->{var}{wiz_ftp_internal}; my $wiz_ftp_external = true $o->{var}{wiz_ftp_external}; die "no FTP configuration file found! warning." if !-f $file; MDK::Common::cp_af($file, $file . ".orig"); my $allow; if ($wiz_ftp_internal && !$wiz_ftp_external) { ($allow) = $wiz->{net}->itf_get("IPADDR") =~ qr/^(\d{1,3}\.\d{1,3}\.\d{1,3}\.)\d{1,3}$/; $allow .= " 127.0.0.1"; } elsif ($wiz_ftp_external) { $allow = "all"; } my $conf = cat_($file) . "#EndOfFile"; my ($bloc) = $conf =~ /.*?(#drakwizard_pxe_b.*?#drakwizard_pxe_end)\n.*#EndOfFile/s; if (!$bloc) { $bloc = " #drakwizard_proftpd Order allow,deny Allow from $allow Deny from all #drakwizard_proftpd "; append_to_file($file, $bloc); } else { substInFile { s/Allow from.*/Allow from $allow/ } $file; } # options # wiz_root_login wiz_server_admin wiz_default_root wiz_ftp_resume wiz_ftp_fxp if ($o->{var}{wiz_server_admin}) { if (any { /^ServerAdmin/ } cat_($file)) { substInFile { s/ServerAdmin.*/ServerAdmin $o->{var}{wiz_server_admin}/ } $file; } else { append_to_file($file, "ServerAdmin $o->{var}{wiz_server_admin}\n"); } } else { substInFile { s/ServerAdmin.*// } $file } change_options($o->{var}{wiz_root_login}, "RootLogin"); if ($o->{var}{wiz_root_login} == 1) { substInFile { s/root// } "/etc/ftpusers" } change_options($o->{var}{wiz_ftp_fxp}, "AllowForeignAddress"); # in ftp resume there is two options (store or retrieve) change_options($o->{var}{wiz_ftp_resume}, "AllowStoreRestart"); change_options($o->{var}{wiz_ftp_resume}, "AllowRetrieveRestart"); substInFile { s/^ServerName.*/ServerName $o->{var}{wiz_server_name}/ } $file; substInFile { s/^Port.*/Port $o->{var}{wiz_port}/ } $file; my $data; if ($o->{var}{wiz_default_root} == 1) { $data = "DefaultRoot ~"; } else { $data = ""; } if (any { /^DefaultRoot/ } cat_($file)) { substInFile { s/DefaultRoot.*/$data/ } $file; } else { append_to_file($file, "$data\n"); } my $cle, my $val; while (($cle, $val) = each %opt) { add_options($cle, $val); } if (services::is_service_running('proftpd')) { services::restart('proftpd'); } else { services::start('proftpd'); } check_started('proftpd'); } 1;