diff options
| author | Cassio de Campos <cassiopc@gmail.com> | 2017-08-17 15:29:44 +0000 |
|---|---|---|
| committer | Cassio de Campos <cassiopc@gmail.com> | 2017-08-17 15:29:44 +0000 |
| commit | b4920f46c5a0ce1ada558eeeb28dc439454f40e1 (patch) | |
| tree | ce278af2088c9420257c079a7da85f80d781c1e1 /tools/boca-outmanage | |
| parent | 7c4626354735ec5cbdfe82a248694e479cc95dbb (diff) | |
| download | boca-b4920f46c5a0ce1ada558eeeb28dc439454f40e1.tar.gz boca-b4920f46c5a0ce1ada558eeeb28dc439454f40e1.zip | |
scheme for managing remotely
Diffstat (limited to 'tools/boca-outmanage')
| -rw-r--r-- | tools/boca-outmanage | 111 |
1 files changed, 64 insertions, 47 deletions
diff --git a/tools/boca-outmanage b/tools/boca-outmanage index 60b812f..6e82706 100644 --- a/tools/boca-outmanage +++ b/tools/boca-outmanage @@ -7,7 +7,7 @@ fi user="$1" if [ "$user" == "" ]; then - echo "parameter user missing. Usage: $0 <user> [<optional-server-address>]" + echo "parameter user missing. Usage: $0 <user> [<optional-server-address>] [<force-redo>]" exit 1 fi if [ "$2" != "" ]; then @@ -27,59 +27,76 @@ if [ "$BOCASERVER" == "" ]; then fi echo "Server at $BOCASERVER" -temp=/tmp/.temp.`date +%s%N`.txt - -kill -9 `ps auxw | grep ssh | grep ${BOCASERVER} | awk '{print $2;}'` - -porta=5000 - -ssh -f -N -R ${porta}:localhost:22 ${user}@${BOCASERVER} 2>&1 - - -let "port = $porta + 1" - -read -s -p "Password: " pass - for i in wget sha256sum cut; do - p=`which $i` - if [ -x "$p" ]; then - echo -n "" - else - echo "$i" not found - exit 1 - fi + p=`which $i` + if [ -x "$p" ]; then + echo -n "" + else + echo "$i" not found + exit 1 + fi done -temp=/tmp/.temp.`date +%s%N`.txt +temp=/root/.temp.`date +%s%N`.txt -md=`wget --no-check-certificate -t 2 -T 7 -S https://$BOCASERVER/boca/getcode.php -O /dev/null --save-cookies ${temp}.cookie.txt --keep-session-cookies 2>&1 | grep PHPSESS | tail -n1` -echo "$md" | grep -q PHPSESS -if [ "$?" == "0" ]; then - md=`echo $md | cut -f2 -d'=' | cut -f1 -d';'` - ress=`echo -n $pass | sha256sum - | cut -f1 -d' '` - res=`echo -n "${ress}${md}" | sha256sum - | cut -f1 -d' '` - wget --no-check-certificate -t 2 -T 7 "https://$BOCASERVER/boca/getcode.php?name=${user}&password=${res}" --load-cookies ${temp}.cookie.txt --keep-session-cookies --save-cookies ${temp}.cookie.txt -O $temp 2>/dev/null >/dev/null - grep -qi incorrect $temp - if [ $? == 0 ]; then - echo "" - echo "$BOCASERVER: User or password incorrect, or unconfigured server" +mkdir -p /root/.ssh +if [ ! -f /root/.ssh/$BOCASERVER -o ! -f /root/.ssh/$BOCASERVER.pub -o "$3" != "" ]; then + ssh-keygen -q -f /root/.ssh/$BOCASERVER -t rsa -b 4096 -C "${user}@bombonera.org" -N '' + echo -e "Host $BOCASERVER\n HostName $BOCASERVER\n User bocassh\n IdentityFile /root/.ssh/$BOCASERVER\n" > /root/.ssh/config + + read -s -p "Password: " pass + echo "" + + md=`wget --no-check-certificate -t 2 -T 5 -S https://$BOCASERVER/boca/updatessh.php -O /dev/null --save-cookies ${temp}.cookie.txt --keep-session-cookies 2>&1 | grep PHPSESS | tail -n1` + echo "$md" | grep -q PHPSESS + if [ "$?" == "0" ]; then + md=`echo $md | cut -f2 -d'=' | cut -f1 -d';'` + ress=`echo -n $pass | sha256sum - | cut -f1 -d' '` + res=`echo -n "${ress}${md}" | sha256sum - | cut -f1 -d' '` + + echo -n "name=${user}" > $temp + [ -f /root/submissions/comp ] && echo -n "comp=`cat /root/submissions/comp`" >> $temp + echo -n "&password=$res" >> $temp + echo -n "&data=" >> $temp + cat /root/.ssh/$BOCASERVER.pub | uuencode -m zzzzzzzzzz | grep -v "begin-base64.*zzzzzzzzzz" | perl -MURI::Escape -lne 'print uri_escape($_)' >> $temp + + wget --no-check-certificate -t 2 -T 5 "https://$BOCASERVER/boca/updatessh.php" --load-cookies ${temp}.cookie.txt --keep-session-cookies --save-cookies ${temp}.cookie.txt -O ${temp}.out --post-file=$temp >/dev/null 2>/dev/null rm -f $temp rm -f ${temp}.cookie.txt - exit 3 + grep -qi incorrect ${temp}.out + res=$? + rm ${temp}.out + if [ "$res" == "0" ]; then + echo "$BOCASERVER: User or password incorrect" + exit 3 + fi else - a="" - for ((i=0;i<16;i++));do a="$a`printf %02X \'${ress:$i:1}`"; done - openssl enc -d -aes-256-cbc -nosalt -in "$temp" -out "${temp}.1" -K $a -iv 31323334353637383132333435363738 - rm -f "$temp" - /bin/bash "${temp}.1" - rm -f "${temp}.1" + echo "$BOCASERVER: connection failed" + exit 2 fi - [ -f "$temp" ] && rm -f "$temp" - rm -f ${temp}.cookie.txt - echo "" echo "authentication successful" -else - echo "" - echo "could not connect to server" - exit 2 fi + +porta=5000 + +while [ $porta -lt 6000 ]; do + pids=`ps auxw | grep "ssh -v -f -N" | grep ${BOCASERVER} | awk '{print $2;}'` + if [ "$pids" != "" ]; then + kill -9 $pids + fi + echo "Trying $porta" + ssh -v -f -N -o UserKnownHostsFile=/dev/null -o PasswordAuthentication=no -o StrictHostKeyChecking=no -R ${porta}:localhost:22 bocassh@${BOCASERVER} >$temp 2>&1 + for k in 1 2 3 4 5 6 7 8; do + sleep 1 + grep -q "remote forward.*for:" $temp + if [ $? == 0 ]; then + break + fi + done + grep -q "remote forward success for:" $temp + if [ $? == 0 ]; then + echo "Forward successful at $porta" + break + fi + let "porta = $porta + 1" +done exit 0 |