make deny the default button for ftp/sync prompt

author: llornkcor <llornkcor> 2002-11-02 22:29:09 (UTC)
committer: llornkcor <llornkcor> 2002-11-02 22:29:09 (UTC)
commit: efb3cb40de57d53de1eb22662261e58333a3a39d (patch) (unidiff)
tree: 8f07bce4fc4040444d88cc006dd7db60c33adb4d
parent: 2dc81c48428222533e5479947d9ad318e464bafa (diff)
download: opie-efb3cb40de57d53de1eb22662261e58333a3a39d.zip
opie-efb3cb40de57d53de1eb22662261e58333a3a39d.tar.gz
opie-efb3cb40de57d53de1eb22662261e58333a3a39d.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/core/launcher/transferserver.cpp b/core/launcher/transferserver.cpp
index dea140d..aaa4425 100644
--- a/core/launcher/transferserver.cpp
+++ b/core/launcher/transferserver.cpp
@@ -137,193 +137,193 @@ QString SyncAuthentication::ownerName()
    return "";
 }
 QString SyncAuthentication::loginName()
 {
    struct passwd *pw;
    pw = getpwuid( geteuid() );
    return QString::fromLocal8Bit( pw->pw_name );
 }
 int SyncAuthentication::isAuthorized(QHostAddress peeraddress)
 {
    Config cfg("Security");
    cfg.setGroup("Sync");
 //    QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");
     uint auth_peer = cfg.readNumEntry("auth_peer",0xc0a80100);
 //    QHostAddress allowed;
 //    allowed.setAddress(allowedstr);
 //    uint auth_peer = allowed.ip4Addr();
    uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits",24);
    uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined
  ? 0xffffffff : (((1<<auth_peer_bits)-1)<<(32-auth_peer_bits));
    return (peeraddress.ip4Addr() & mask) == auth_peer;
 }
 bool SyncAuthentication::checkUser( const QString& user )
 {
    if ( user.isEmpty() ) return FALSE;
    QString euser = loginName();
    return user == euser;
 }
 bool SyncAuthentication::checkPassword( const QString& password )
 {
 #ifdef ALLOW_UNIX_USER_FTP
    // First, check system password...
    struct passwd *pw = 0;
    struct spwd *spw = 0;
    pw = getpwuid( geteuid() );
    spw = getspnam( pw->pw_name );
    QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );
    if ( cpwd == "x" && spw )
  cpwd = QString::fromLocal8Bit( spw->sp_pwdp );
    // Note: some systems use more than crypt for passwords.
    QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );
    if ( cpwd == cpassword )
  return TRUE;
 #endif
    static int lastdenial=0;
    static int denials=0;
    int now = time(0);
    // Detect old Qtopia Desktop (no password)
    if ( password.isEmpty() ) {
  if ( denials < 1 || now > lastdenial+600 ) {
      QMessageBox::warning( 0,tr("Sync Connection"),
    tr("<p>An unauthorized system is requesting access to this device."
        "<p>If you are using a version of Qtopia Desktop older than 1.5.1, "
        "please upgrade."),
    tr("Deny") );
      denials++;
      lastdenial=now;
  }
  return FALSE;
    }
    // Second, check sync password...
    QString pass = password.left(6);
    /* old QtopiaDesktops are sending
     * rootme newer versions got a Qtopia
     * prefixed. Qtopia prefix will suceed
     * until the sync software syncs up
     * FIXME
     */
    if ( pass == "rootme" || pass == "Qtopia") {
  QString cpassword = QString::fromLocal8Bit( crypt( password.mid(8).local8Bit(), "qp" ) );
  Config cfg("Security");
  cfg.setGroup("Sync");
  QString pwds = cfg.readEntry("Passwords");
  if ( QStringList::split(QChar(' '),pwds).contains(cpassword) )
      return TRUE;
  // Unrecognized system. Be careful...
  if ( (denials > 2 && now < lastdenial+600)
      || QMessageBox::warning(0,tr("Sync Connection"),
    tr("<p>An unrecognized system is requesting access to this device."
        "<p>If you have just initiated a Sync for the first time, this is normal."),
-    tr("Allow"),tr("Deny"))==1 )
+    tr("Allow"),tr("Deny"), 0, 1, 1 ) ==1 )
  {
      denials++;
      lastdenial=now;
      return FALSE;
  } else {
      denials=0;
      cfg.writeEntry("Passwords",pwds+" "+cpassword);
      return TRUE;
  }
    }
    return FALSE;
 }
 ServerPI::ServerPI( int socket, QObject *parent , const char* name  )
    : QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 )
 {
    state = Connected;
    setSocket( socket );
    peerport = peerPort();
    peeraddress = peerAddress();
 #ifndef INSECURE
    if ( !SyncAuthentication::isAuthorized(peeraddress) ) {
  state = Forbidden;
  startTimer( 0 );
    } else
 #endif
    {
  connect( this, SIGNAL( readyRead() ), SLOT( read() ) );
  connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );
  passiv = FALSE;
  for( int i = 0; i < 4; i++ )
      wait[i] = FALSE;
  send( "220 Qtopia " QPE_VERSION " FTP Server" );
  state = Wait_USER;
  dtp = new ServerDTP( this );
  connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );
  connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );
  connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );
  directory = QDir::currentDirPath();
  static int p = 1024;
  while ( !serversocket || !serversocket->ok() ) {
      delete serversocket;
      serversocket = new ServerSocket( ++p, this );
  }
  connect( serversocket, SIGNAL( newIncomming( int ) ),
     SLOT( newConnection( int ) ) );
    }
 }
 ServerPI::~ServerPI()
 {
 }
 void ServerPI::connectionClosed()
 {
    // qDebug( "Debug: Connection closed" );
    delete this;
 }
 void ServerPI::send( const QString& msg )
 {
    QTextStream os( this );
    os << msg << endl;
    //qDebug( "Reply: %s", msg.latin1() );
 }
 void ServerPI::read()
 {
    while ( canReadLine() )
  process( readLine().stripWhiteSpace() );
 }
 bool ServerPI::checkReadFile( const QString& file )
 {
    QString filename;
    if ( file[0] != "/" )
  filename = directory.path() + "/" + file;
    else
  filename = file;
    QFileInfo fi( filename );
    return ( fi.exists() && fi.isReadable() );
 }
author	llornkcor <llornkcor>	2002-11-02 22:29:09 (UTC)
committer	llornkcor <llornkcor>	2002-11-02 22:29:09 (UTC)
commit	efb3cb40de57d53de1eb22662261e58333a3a39d (patch) (unidiff)
tree	8f07bce4fc4040444d88cc006dd7db60c33adb4d
parent	2dc81c48428222533e5479947d9ad318e464bafa (diff)
download	opie-efb3cb40de57d53de1eb22662261e58333a3a39d.zip opie-efb3cb40de57d53de1eb22662261e58333a3a39d.tar.gz opie-efb3cb40de57d53de1eb22662261e58333a3a39d.tar.bz2

diff --git a/core/launcher/transferserver.cpp b/core/launcher/transferserver.cpp index dea140d..aaa4425 100644 --- a/core/launcher/transferserver.cpp +++ b/core/launcher/transferserver.cpp
@@ -137,193 +137,193 @@ QString SyncAuthentication::ownerName()
137		137
138	return "";	138	return "";
139	}	139	}
140		140
141	QString SyncAuthentication::loginName()	141	QString SyncAuthentication::loginName()
142	{	142	{
143	struct passwd *pw;	143	struct passwd *pw;
144	pw = getpwuid( geteuid() );	144	pw = getpwuid( geteuid() );
145	return QString::fromLocal8Bit( pw->pw_name );	145	return QString::fromLocal8Bit( pw->pw_name );
146	}	146	}
147		147
148	int SyncAuthentication::isAuthorized(QHostAddress peeraddress)	148	int SyncAuthentication::isAuthorized(QHostAddress peeraddress)
149	{	149	{
150	Config cfg("Security");	150	Config cfg("Security");
151	cfg.setGroup("Sync");	151	cfg.setGroup("Sync");
152	// QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");	152	// QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");
153	uint auth_peer = cfg.readNumEntry("auth_peer",0xc0a80100);	153	uint auth_peer = cfg.readNumEntry("auth_peer",0xc0a80100);
154		154
155	// QHostAddress allowed;	155	// QHostAddress allowed;
156	// allowed.setAddress(allowedstr);	156	// allowed.setAddress(allowedstr);
157	// uint auth_peer = allowed.ip4Addr();	157	// uint auth_peer = allowed.ip4Addr();
158	uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits",24);	158	uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits",24);
159	uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined	159	uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined
160	? 0xffffffff : (((1<<auth_peer_bits)-1)<<(32-auth_peer_bits));	160	? 0xffffffff : (((1<<auth_peer_bits)-1)<<(32-auth_peer_bits));
161	return (peeraddress.ip4Addr() & mask) == auth_peer;	161	return (peeraddress.ip4Addr() & mask) == auth_peer;
162	}	162	}
163		163
164	bool SyncAuthentication::checkUser( const QString& user )	164	bool SyncAuthentication::checkUser( const QString& user )
165	{	165	{
166	if ( user.isEmpty() ) return FALSE;	166	if ( user.isEmpty() ) return FALSE;
167	QString euser = loginName();	167	QString euser = loginName();
168	return user == euser;	168	return user == euser;
169	}	169	}
170		170
171	bool SyncAuthentication::checkPassword( const QString& password )	171	bool SyncAuthentication::checkPassword( const QString& password )
172	{	172	{
173	#ifdef ALLOW_UNIX_USER_FTP	173	#ifdef ALLOW_UNIX_USER_FTP
174	// First, check system password...	174	// First, check system password...
175		175
176	struct passwd *pw = 0;	176	struct passwd *pw = 0;
177	struct spwd *spw = 0;	177	struct spwd *spw = 0;
178		178
179	pw = getpwuid( geteuid() );	179	pw = getpwuid( geteuid() );
180	spw = getspnam( pw->pw_name );	180	spw = getspnam( pw->pw_name );
181		181
182	QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );	182	QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );
183	if ( cpwd == "x" && spw )	183	if ( cpwd == "x" && spw )
184	cpwd = QString::fromLocal8Bit( spw->sp_pwdp );	184	cpwd = QString::fromLocal8Bit( spw->sp_pwdp );
185		185
186	// Note: some systems use more than crypt for passwords.	186	// Note: some systems use more than crypt for passwords.
187	QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );	187	QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );
188	if ( cpwd == cpassword )	188	if ( cpwd == cpassword )
189	return TRUE;	189	return TRUE;
190	#endif	190	#endif
191		191
192	static int lastdenial=0;	192	static int lastdenial=0;
193	static int denials=0;	193	static int denials=0;
194	int now = time(0);	194	int now = time(0);
195		195
196	// Detect old Qtopia Desktop (no password)	196	// Detect old Qtopia Desktop (no password)
197	if ( password.isEmpty() ) {	197	if ( password.isEmpty() ) {
198	if ( denials < 1 \|\| now > lastdenial+600 ) {	198	if ( denials < 1 \|\| now > lastdenial+600 ) {
199	QMessageBox::warning( 0,tr("Sync Connection"),	199	QMessageBox::warning( 0,tr("Sync Connection"),
200	tr("<p>An unauthorized system is requesting access to this device."	200	tr("<p>An unauthorized system is requesting access to this device."
201	"<p>If you are using a version of Qtopia Desktop older than 1.5.1, "	201	"<p>If you are using a version of Qtopia Desktop older than 1.5.1, "
202	"please upgrade."),	202	"please upgrade."),
203	tr("Deny") );	203	tr("Deny") );
204	denials++;	204	denials++;
205	lastdenial=now;	205	lastdenial=now;
206	}	206	}
207	return FALSE;	207	return FALSE;
208	}	208	}
209		209
210	// Second, check sync password...	210	// Second, check sync password...
211	QString pass = password.left(6);	211	QString pass = password.left(6);
212	/* old QtopiaDesktops are sending	212	/* old QtopiaDesktops are sending
213	* rootme newer versions got a Qtopia	213	* rootme newer versions got a Qtopia
214	* prefixed. Qtopia prefix will suceed	214	* prefixed. Qtopia prefix will suceed
215	* until the sync software syncs up	215	* until the sync software syncs up
216	* FIXME	216	* FIXME
217	*/	217	*/
218	if ( pass == "rootme" \|\| pass == "Qtopia") {	218	if ( pass == "rootme" \|\| pass == "Qtopia") {
219		219
220	QString cpassword = QString::fromLocal8Bit( crypt( password.mid(8).local8Bit(), "qp" ) );	220	QString cpassword = QString::fromLocal8Bit( crypt( password.mid(8).local8Bit(), "qp" ) );
221	Config cfg("Security");	221	Config cfg("Security");
222	cfg.setGroup("Sync");	222	cfg.setGroup("Sync");
223	QString pwds = cfg.readEntry("Passwords");	223	QString pwds = cfg.readEntry("Passwords");
224	if ( QStringList::split(QChar(' '),pwds).contains(cpassword) )	224	if ( QStringList::split(QChar(' '),pwds).contains(cpassword) )
225	return TRUE;	225	return TRUE;
226		226
227	// Unrecognized system. Be careful...	227	// Unrecognized system. Be careful...
228		228
229	if ( (denials > 2 && now < lastdenial+600)	229	if ( (denials > 2 && now < lastdenial+600)
230	\|\| QMessageBox::warning(0,tr("Sync Connection"),	230	\|\| QMessageBox::warning(0,tr("Sync Connection"),
231	tr("<p>An unrecognized system is requesting access to this device."	231	tr("<p>An unrecognized system is requesting access to this device."
232	"<p>If you have just initiated a Sync for the first time, this is normal."),	232	"<p>If you have just initiated a Sync for the first time, this is normal."),
233	tr("Allow"),tr("Deny"))==1 )	233	tr("Allow"),tr("Deny"), 0, 1, 1 ) ==1 )
234	{	234	{
235	denials++;	235	denials++;
236	lastdenial=now;	236	lastdenial=now;
237	return FALSE;	237	return FALSE;
238	} else {	238	} else {
239	denials=0;	239	denials=0;
240	cfg.writeEntry("Passwords",pwds+" "+cpassword);	240	cfg.writeEntry("Passwords",pwds+" "+cpassword);
241	return TRUE;	241	return TRUE;
242	}	242	}
243	}	243	}
244		244
245	return FALSE;	245	return FALSE;
246	}	246	}
247		247
248	ServerPI::ServerPI( int socket, QObject parent , const char name )	248	ServerPI::ServerPI( int socket, QObject parent , const char name )
249	: QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 )	249	: QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 )
250	{	250	{
251	state = Connected;	251	state = Connected;
252		252
253	setSocket( socket );	253	setSocket( socket );
254		254
255	peerport = peerPort();	255	peerport = peerPort();
256	peeraddress = peerAddress();	256	peeraddress = peerAddress();
257		257
258	#ifndef INSECURE	258	#ifndef INSECURE
259	if ( !SyncAuthentication::isAuthorized(peeraddress) ) {	259	if ( !SyncAuthentication::isAuthorized(peeraddress) ) {
260	state = Forbidden;	260	state = Forbidden;
261	startTimer( 0 );	261	startTimer( 0 );
262	} else	262	} else
263	#endif	263	#endif
264	{	264	{
265	connect( this, SIGNAL( readyRead() ), SLOT( read() ) );	265	connect( this, SIGNAL( readyRead() ), SLOT( read() ) );
266	connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );	266	connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );
267		267
268	passiv = FALSE;	268	passiv = FALSE;
269	for( int i = 0; i < 4; i++ )	269	for( int i = 0; i < 4; i++ )
270	wait[i] = FALSE;	270	wait[i] = FALSE;
271		271
272	send( "220 Qtopia " QPE_VERSION " FTP Server" );	272	send( "220 Qtopia " QPE_VERSION " FTP Server" );
273	state = Wait_USER;	273	state = Wait_USER;
274		274
275	dtp = new ServerDTP( this );	275	dtp = new ServerDTP( this );
276	connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );	276	connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );
277	connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );	277	connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );
278	connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );	278	connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );
279		279
280		280
281	directory = QDir::currentDirPath();	281	directory = QDir::currentDirPath();
282		282
283	static int p = 1024;	283	static int p = 1024;
284		284
285	while ( !serversocket \|\| !serversocket->ok() ) {	285	while ( !serversocket \|\| !serversocket->ok() ) {
286	delete serversocket;	286	delete serversocket;
287	serversocket = new ServerSocket( ++p, this );	287	serversocket = new ServerSocket( ++p, this );
288	}	288	}
289	connect( serversocket, SIGNAL( newIncomming( int ) ),	289	connect( serversocket, SIGNAL( newIncomming( int ) ),
290	SLOT( newConnection( int ) ) );	290	SLOT( newConnection( int ) ) );
291	}	291	}
292	}	292	}
293		293
294	ServerPI::~ServerPI()	294	ServerPI::~ServerPI()
295	{	295	{
296		296
297	}	297	}
298		298
299	void ServerPI::connectionClosed()	299	void ServerPI::connectionClosed()
300	{	300	{
301	// qDebug( "Debug: Connection closed" );	301	// qDebug( "Debug: Connection closed" );
302	delete this;	302	delete this;
303	}	303	}
304		304
305	void ServerPI::send( const QString& msg )	305	void ServerPI::send( const QString& msg )
306	{	306	{
307	QTextStream os( this );	307	QTextStream os( this );
308	os << msg << endl;	308	os << msg << endl;
309	//qDebug( "Reply: %s", msg.latin1() );	309	//qDebug( "Reply: %s", msg.latin1() );
310	}	310	}
311		311
312	void ServerPI::read()	312	void ServerPI::read()
313	{	313	{
314	while ( canReadLine() )	314	while ( canReadLine() )
315	process( readLine().stripWhiteSpace() );	315	process( readLine().stripWhiteSpace() );
316	}	316	}
317		317
318	bool ServerPI::checkReadFile( const QString& file )	318	bool ServerPI::checkReadFile( const QString& file )
319	{	319	{
320	QString filename;	320	QString filename;
321		321
322	if ( file[0] != "/" )	322	if ( file[0] != "/" )
323	filename = directory.path() + "/" + file;	323	filename = directory.path() + "/" + file;
324	else	324	else
325	filename = file;	325	filename = file;
326		326
327	QFileInfo fi( filename );	327	QFileInfo fi( filename );
328	return ( fi.exists() && fi.isReadable() );	328	return ( fi.exists() && fi.isReadable() );
329	}	329	}