1 files changed, 2 insertions, 2 deletions
diff --git a/core/launcher/transferserver.cpp b/core/launcher/transferserver.cpp
index fde6f8b..2180577 100644
--- a/core/launcher/transferserver.cpp
+++ b/core/launcher/transferserver.cpp
@@ -124,198 +124,198 @@ QString SyncAuthentication::ownerName()
    if (QFile::exists(vfilename)) {
        Contact c;
        c = Contact::readVCard( vfilename )[0];
        return c.fullName();
    }
    return QString::null;
 }
 QString SyncAuthentication::loginName()
 {
    struct passwd *pw = 0L;
 #ifndef Q_OS_WIN32
    pw = getpwuid( geteuid() );
    return QString::fromLocal8Bit( pw->pw_name );
 #else
    //### revise
    return QString();
 #endif
 }
 int SyncAuthentication::isAuthorized(QHostAddress peeraddress)
 {
    Config cfg("Security");
        cfg.setGroup("Sync");
        //    QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");
        uint auth_peer = cfg.readNumEntry("auth_peer", 0xc0a80100);
        //    QHostAddress allowed;
        //    allowed.setAddress(allowedstr);
        //    uint auth_peer = allowed.ip4Addr();
        uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits", 24);
        uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined
                    ? 0xffffffff : (((1 << auth_peer_bits) - 1) << (32 - auth_peer_bits));
        return (peeraddress.ip4Addr() & mask) == auth_peer;
 }
 bool SyncAuthentication::checkUser( const QString& user )
 {
    if ( user.isEmpty() ) return FALSE;
    QString euser = loginName();
    return user == euser;
 }
 bool SyncAuthentication::checkPassword( const QString& password )
 {
 #ifdef ALLOW_UNIX_USER_FTP
    // First, check system password...
    struct passwd *pw = 0;
    struct spwd *spw = 0;
    pw = getpwuid( geteuid() );
    spw = getspnam( pw->pw_name );
    QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );
    if ( cpwd == "x" && spw )
        cpwd = QString::fromLocal8Bit( spw->sp_pwdp );
    // Note: some systems use more than crypt for passwords.
    QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );
    if ( cpwd == cpassword )
        return TRUE;
 #endif
    static int lastdenial=0;
    static int denials=0;
    int now = time(0);
    // Detect old Qtopia Desktop (no password)
    if ( password.isEmpty() ) {
        if ( denials < 1 || now > lastdenial+600 ) {
            QMessageBox unauth(
                tr("Sync Connection"),
                tr("<p>An unauthorized system is requesting access to this device."
                    "<p>If you are using a version of Qtopia Desktop older than 1.5.1, "
                    "please upgrade."),
                QMessageBox::Warning,
                QMessageBox::Cancel, QMessageBox::NoButton, QMessageBox::NoButton,
                0, QString::null, TRUE, WStyle_StaysOnTop);
            unauth.setButtonText(QMessageBox::Cancel, tr("Deny"));
            unauth.exec();
            denials++;
            lastdenial=now;
        }
        return FALSE;
    }
    // Second, check sync password...
    static int lock=0;
    if ( lock ) return FALSE;
    ++lock;
-    
    /*
     *  we need to support old Sync software and QtopiaDesktop
     */
    if ( password.left(6) == "Qtopia" || password.left(6) == "rootme" ) {
-        Config cfg( QPEApplication::qpeDir()+"/etc/Security.conf", Config::File );
+        Config cfg( "Security.conf" );
        cfg.setGroup("Sync");
        QStringList pwds = cfg.readListEntry("Passwords",' ');
        for (QStringList::ConstIterator it=pwds.begin(); it!=pwds.end(); ++it) {
 #ifndef Q_OS_WIN32
            QString cpassword = QString::fromLocal8Bit(
                crypt( password.mid(8).local8Bit(), (*it).left(2).latin1() ) );
 #else
            // ### revise
            QString cpassword("");
 #endif
            if ( *it == cpassword ) {
                lock--;
                return TRUE;
            }
        }
        // Unrecognized system. Be careful...
        QMessageBox unrecbox(
            tr("Sync Connection"),
                    tr("<p>An unrecognized system is requesting access to this device."
                "<p>If you have just initiated a Sync for the first time, this is normal."),
                QMessageBox::Warning,
                QMessageBox::Cancel, QMessageBox::Yes, QMessageBox::NoButton,
                0, QString::null, TRUE, WStyle_StaysOnTop);
        unrecbox.setButtonText(QMessageBox::Cancel, tr("Deny"));
        unrecbox.setButtonText(QMessageBox::Yes, tr("Allow"));
        if ( (denials > 2 && now < lastdenial+600)
            || unrecbox.exec() != QMessageBox::Yes)
        {
            denials++;
            lastdenial=now;
            lock--;
            return FALSE;
        } else {
            const char salty[]="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789/.";
            char salt[2];
            salt[0]= salty[rand() % (sizeof(salty)-1)];
            salt[1]= salty[rand() % (sizeof(salty)-1)];
 #ifndef Q_OS_WIN32
            QString cpassword = QString::fromLocal8Bit(
                crypt( password.mid(8).local8Bit(), salt ) );
 #else
            //### revise
            QString cpassword("");
 #endif
            denials=0;
            pwds.prepend(cpassword);
            cfg.writeEntry("Passwords",pwds,' ');
            lock--;
            return TRUE;
        }
    }
    lock--;
    return FALSE;
 }
 ServerPI::ServerPI( int socket, QObject *parent, const char* name )
    : QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 ),
      storFileSize(-1)
 {
    state = Connected;
    setSocket( socket );
    peerport = peerPort();
    peeraddress = peerAddress();
 #ifndef INSECURE
    if ( !SyncAuthentication::isAuthorized(peeraddress) ) {
        state = Forbidden;
        startTimer( 0 );
    } else
 #endif
    {
        connect( this, SIGNAL( readyRead() ), SLOT( read() ) );
        connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );
        passiv = FALSE;
        for( int i = 0; i < 4; i++ )
            wait[i] = FALSE;
        send( "220 Qtopia " QPE_VERSION " FTP Server" ); // No tr
        state = Wait_USER;
        dtp = new ServerDTP( this );
        connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );
        connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );
        connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );
        directory = QDir::currentDirPath();
        static int p = 1024;

diff --git a/core/launcher/transferserver.cpp b/core/launcher/transferserver.cpp index fde6f8b..2180577 100644 --- a/core/launcher/transferserver.cpp +++ b/core/launcher/transferserver.cpp
@@ -124,198 +124,198 @@ QString SyncAuthentication::ownerName()
124	if (QFile::exists(vfilename)) {	124	if (QFile::exists(vfilename)) {
125	Contact c;	125	Contact c;
126	c = Contact::readVCard( vfilename )[0];	126	c = Contact::readVCard( vfilename )[0];
127	return c.fullName();	127	return c.fullName();
128	}	128	}
129		129
130	return QString::null;	130	return QString::null;
131	}	131	}
132		132
133	QString SyncAuthentication::loginName()	133	QString SyncAuthentication::loginName()
134	{	134	{
135	struct passwd *pw = 0L;	135	struct passwd *pw = 0L;
136	#ifndef Q_OS_WIN32	136	#ifndef Q_OS_WIN32
137	pw = getpwuid( geteuid() );	137	pw = getpwuid( geteuid() );
138	return QString::fromLocal8Bit( pw->pw_name );	138	return QString::fromLocal8Bit( pw->pw_name );
139	#else	139	#else
140	//### revise	140	//### revise
141	return QString();	141	return QString();
142	#endif	142	#endif
143	}	143	}
144		144
145	int SyncAuthentication::isAuthorized(QHostAddress peeraddress)	145	int SyncAuthentication::isAuthorized(QHostAddress peeraddress)
146	{	146	{
147	Config cfg("Security");	147	Config cfg("Security");
148	cfg.setGroup("Sync");	148	cfg.setGroup("Sync");
149	// QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");	149	// QString allowedstr = cfg.readEntry("auth_peer","192.168.1.0");
150	uint auth_peer = cfg.readNumEntry("auth_peer", 0xc0a80100);	150	uint auth_peer = cfg.readNumEntry("auth_peer", 0xc0a80100);
151		151
152	// QHostAddress allowed;	152	// QHostAddress allowed;
153	// allowed.setAddress(allowedstr);	153	// allowed.setAddress(allowedstr);
154	// uint auth_peer = allowed.ip4Addr();	154	// uint auth_peer = allowed.ip4Addr();
155	uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits", 24);	155	uint auth_peer_bits = cfg.readNumEntry("auth_peer_bits", 24);
156	uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined	156	uint mask = auth_peer_bits >= 32 // shifting by 32 is not defined
157	? 0xffffffff : (((1 << auth_peer_bits) - 1) << (32 - auth_peer_bits));	157	? 0xffffffff : (((1 << auth_peer_bits) - 1) << (32 - auth_peer_bits));
158		158
159	return (peeraddress.ip4Addr() & mask) == auth_peer;	159	return (peeraddress.ip4Addr() & mask) == auth_peer;
160	}	160	}
161		161
162	bool SyncAuthentication::checkUser( const QString& user )	162	bool SyncAuthentication::checkUser( const QString& user )
163	{	163	{
164	if ( user.isEmpty() ) return FALSE;	164	if ( user.isEmpty() ) return FALSE;
165	QString euser = loginName();	165	QString euser = loginName();
166	return user == euser;	166	return user == euser;
167	}	167	}
168		168
169	bool SyncAuthentication::checkPassword( const QString& password )	169	bool SyncAuthentication::checkPassword( const QString& password )
170	{	170	{
171	#ifdef ALLOW_UNIX_USER_FTP	171	#ifdef ALLOW_UNIX_USER_FTP
172	// First, check system password...	172	// First, check system password...
173		173
174	struct passwd *pw = 0;	174	struct passwd *pw = 0;
175	struct spwd *spw = 0;	175	struct spwd *spw = 0;
176		176
177	pw = getpwuid( geteuid() );	177	pw = getpwuid( geteuid() );
178	spw = getspnam( pw->pw_name );	178	spw = getspnam( pw->pw_name );
179		179
180	QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );	180	QString cpwd = QString::fromLocal8Bit( pw->pw_passwd );
181	if ( cpwd == "x" && spw )	181	if ( cpwd == "x" && spw )
182	cpwd = QString::fromLocal8Bit( spw->sp_pwdp );	182	cpwd = QString::fromLocal8Bit( spw->sp_pwdp );
183		183
184	// Note: some systems use more than crypt for passwords.	184	// Note: some systems use more than crypt for passwords.
185	QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );	185	QString cpassword = QString::fromLocal8Bit( crypt( password.local8Bit(), cpwd.local8Bit() ) );
186	if ( cpwd == cpassword )	186	if ( cpwd == cpassword )
187	return TRUE;	187	return TRUE;
188	#endif	188	#endif
189		189
190	static int lastdenial=0;	190	static int lastdenial=0;
191	static int denials=0;	191	static int denials=0;
192	int now = time(0);	192	int now = time(0);
193		193
194	// Detect old Qtopia Desktop (no password)	194	// Detect old Qtopia Desktop (no password)
195	if ( password.isEmpty() ) {	195	if ( password.isEmpty() ) {
196	if ( denials < 1 \|\| now > lastdenial+600 ) {	196	if ( denials < 1 \|\| now > lastdenial+600 ) {
197	QMessageBox unauth(	197	QMessageBox unauth(
198	tr("Sync Connection"),	198	tr("Sync Connection"),
199	tr("<p>An unauthorized system is requesting access to this device."	199	tr("<p>An unauthorized system is requesting access to this device."
200	"<p>If you are using a version of Qtopia Desktop older than 1.5.1, "	200	"<p>If you are using a version of Qtopia Desktop older than 1.5.1, "
201	"please upgrade."),	201	"please upgrade."),
202	QMessageBox::Warning,	202	QMessageBox::Warning,
203	QMessageBox::Cancel, QMessageBox::NoButton, QMessageBox::NoButton,	203	QMessageBox::Cancel, QMessageBox::NoButton, QMessageBox::NoButton,
204	0, QString::null, TRUE, WStyle_StaysOnTop);	204	0, QString::null, TRUE, WStyle_StaysOnTop);
205	unauth.setButtonText(QMessageBox::Cancel, tr("Deny"));	205	unauth.setButtonText(QMessageBox::Cancel, tr("Deny"));
206	unauth.exec();	206	unauth.exec();
207		207
208	denials++;	208	denials++;
209	lastdenial=now;	209	lastdenial=now;
210	}	210	}
211	return FALSE;	211	return FALSE;
212	}	212	}
213		213
214	// Second, check sync password...	214	// Second, check sync password...
215		215
216	static int lock=0;	216	static int lock=0;
217	if ( lock ) return FALSE;	217	if ( lock ) return FALSE;
218		218
219	++lock;	219	++lock;
220		220
221	/*	221	/*
222	* we need to support old Sync software and QtopiaDesktop	222	* we need to support old Sync software and QtopiaDesktop
223	*/	223	*/
224	if ( password.left(6) == "Qtopia" \|\| password.left(6) == "rootme" ) {	224	if ( password.left(6) == "Qtopia" \|\| password.left(6) == "rootme" ) {
225	Config cfg( QPEApplication::qpeDir()+"/etc/Security.conf", Config::File );	225	Config cfg( "Security.conf" );
226	cfg.setGroup("Sync");	226	cfg.setGroup("Sync");
227	QStringList pwds = cfg.readListEntry("Passwords",' ');	227	QStringList pwds = cfg.readListEntry("Passwords",' ');
228	for (QStringList::ConstIterator it=pwds.begin(); it!=pwds.end(); ++it) {	228	for (QStringList::ConstIterator it=pwds.begin(); it!=pwds.end(); ++it) {
229	#ifndef Q_OS_WIN32	229	#ifndef Q_OS_WIN32
230	QString cpassword = QString::fromLocal8Bit(	230	QString cpassword = QString::fromLocal8Bit(
231	crypt( password.mid(8).local8Bit(), (*it).left(2).latin1() ) );	231	crypt( password.mid(8).local8Bit(), (*it).left(2).latin1() ) );
232	#else	232	#else
233	// ### revise	233	// ### revise
234	QString cpassword("");	234	QString cpassword("");
235	#endif	235	#endif
236	if ( *it == cpassword ) {	236	if ( *it == cpassword ) {
237	lock--;	237	lock--;
238	return TRUE;	238	return TRUE;
239	}	239	}
240	}	240	}
241		241
242	// Unrecognized system. Be careful...	242	// Unrecognized system. Be careful...
243	QMessageBox unrecbox(	243	QMessageBox unrecbox(
244	tr("Sync Connection"),	244	tr("Sync Connection"),
245	tr("<p>An unrecognized system is requesting access to this device."	245	tr("<p>An unrecognized system is requesting access to this device."
246	"<p>If you have just initiated a Sync for the first time, this is normal."),	246	"<p>If you have just initiated a Sync for the first time, this is normal."),
247	QMessageBox::Warning,	247	QMessageBox::Warning,
248	QMessageBox::Cancel, QMessageBox::Yes, QMessageBox::NoButton,	248	QMessageBox::Cancel, QMessageBox::Yes, QMessageBox::NoButton,
249	0, QString::null, TRUE, WStyle_StaysOnTop);	249	0, QString::null, TRUE, WStyle_StaysOnTop);
250	unrecbox.setButtonText(QMessageBox::Cancel, tr("Deny"));	250	unrecbox.setButtonText(QMessageBox::Cancel, tr("Deny"));
251	unrecbox.setButtonText(QMessageBox::Yes, tr("Allow"));	251	unrecbox.setButtonText(QMessageBox::Yes, tr("Allow"));
252		252
253	if ( (denials > 2 && now < lastdenial+600)	253	if ( (denials > 2 && now < lastdenial+600)
254	\|\| unrecbox.exec() != QMessageBox::Yes)	254	\|\| unrecbox.exec() != QMessageBox::Yes)
255	{	255	{
256	denials++;	256	denials++;
257	lastdenial=now;	257	lastdenial=now;
258	lock--;	258	lock--;
259	return FALSE;	259	return FALSE;
260	} else {	260	} else {
261	const char salty[]="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789/.";	261	const char salty[]="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789/.";
262	char salt[2];	262	char salt[2];
263	salt[0]= salty[rand() % (sizeof(salty)-1)];	263	salt[0]= salty[rand() % (sizeof(salty)-1)];
264	salt[1]= salty[rand() % (sizeof(salty)-1)];	264	salt[1]= salty[rand() % (sizeof(salty)-1)];
265	#ifndef Q_OS_WIN32	265	#ifndef Q_OS_WIN32
266	QString cpassword = QString::fromLocal8Bit(	266	QString cpassword = QString::fromLocal8Bit(
267	crypt( password.mid(8).local8Bit(), salt ) );	267	crypt( password.mid(8).local8Bit(), salt ) );
268	#else	268	#else
269	//### revise	269	//### revise
270	QString cpassword("");	270	QString cpassword("");
271	#endif	271	#endif
272	denials=0;	272	denials=0;
273	pwds.prepend(cpassword);	273	pwds.prepend(cpassword);
274	cfg.writeEntry("Passwords",pwds,' ');	274	cfg.writeEntry("Passwords",pwds,' ');
275	lock--;	275	lock--;
276	return TRUE;	276	return TRUE;
277	}	277	}
278	}	278	}
279	lock--;	279	lock--;
280		280
281	return FALSE;	281	return FALSE;
282	}	282	}
283		283
284		284
285	ServerPI::ServerPI( int socket, QObject parent, const char name )	285	ServerPI::ServerPI( int socket, QObject parent, const char name )
286	: QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 ),	286	: QSocket( parent, name ) , dtp( 0 ), serversocket( 0 ), waitsocket( 0 ),
287	storFileSize(-1)	287	storFileSize(-1)
288	{	288	{
289	state = Connected;	289	state = Connected;
290		290
291	setSocket( socket );	291	setSocket( socket );
292		292
293	peerport = peerPort();	293	peerport = peerPort();
294	peeraddress = peerAddress();	294	peeraddress = peerAddress();
295		295
296	#ifndef INSECURE	296	#ifndef INSECURE
297	if ( !SyncAuthentication::isAuthorized(peeraddress) ) {	297	if ( !SyncAuthentication::isAuthorized(peeraddress) ) {
298	state = Forbidden;	298	state = Forbidden;
299	startTimer( 0 );	299	startTimer( 0 );
300	} else	300	} else
301	#endif	301	#endif
302	{	302	{
303	connect( this, SIGNAL( readyRead() ), SLOT( read() ) );	303	connect( this, SIGNAL( readyRead() ), SLOT( read() ) );
304	connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );	304	connect( this, SIGNAL( connectionClosed() ), SLOT( connectionClosed() ) );
305		305
306	passiv = FALSE;	306	passiv = FALSE;
307	for( int i = 0; i < 4; i++ )	307	for( int i = 0; i < 4; i++ )
308	wait[i] = FALSE;	308	wait[i] = FALSE;
309		309
310	send( "220 Qtopia " QPE_VERSION " FTP Server" ); // No tr	310	send( "220 Qtopia " QPE_VERSION " FTP Server" ); // No tr
311	state = Wait_USER;	311	state = Wait_USER;
312		312
313	dtp = new ServerDTP( this );	313	dtp = new ServerDTP( this );
314	connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );	314	connect( dtp, SIGNAL( completed() ), SLOT( dtpCompleted() ) );
315	connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );	315	connect( dtp, SIGNAL( failed() ), SLOT( dtpFailed() ) );
316	connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );	316	connect( dtp, SIGNAL( error( int ) ), SLOT( dtpError( int ) ) );
317		317
318		318
319	directory = QDir::currentDirPath();	319	directory = QDir::currentDirPath();
320		320
321	static int p = 1024;	321	static int p = 1024;