X7ROOT File Manager
Current Path:
/usr/local/cpanel/scripts
usr
/
local
/
cpanel
/
scripts
/
π
..
π
MirrorSearch_pingtest
(2.38 KB)
π
activesync-invite-reply
(1.69 KB)
π
add_dns
(2.36 KB)
π
adddns
(2.36 KB)
π
addpop
(6.08 KB)
π
addsystemuser
(3.27 KB)
π
adduser
(92 B)
π
apachelimits
(4.31 KB)
π
archive_sync_zones
(3.02 KB)
π
auto-adjust-mysql-limits
(1.81 KB)
π
autorepair
(1.24 KB)
π
backups_clean_metadata_for_missing_backups
(1.57 KB)
π
backups_create_metadata
(15.75 KB)
π
backups_list_user_files
(4.56 KB)
π
balance_linked_node_quotas
(2.58 KB)
π
biglogcheck
(1.69 KB)
π
build_bandwidthdb_root_cache_in_background
(1.52 KB)
π
build_cpnat
(3.41 KB)
π
build_mail_sni
(3.87 KB)
π
build_maxemails_config
(1.14 KB)
π
builddovecotconf
(6.76 KB)
π
buildeximconf
(7 KB)
π
buildhttpdconf
(2.6 KB)
π
buildnsdconf
(1.01 KB)
π
buildpureftproot
(539 B)
π
ccs-check
(4.91 KB)
π
check_cpanel_pkgs
(10.75 KB)
π
check_cpanel_rpms
(218 B)
π
check_domain_tls_service_domains.pl
(6.68 KB)
π
check_immutable_files
(5.49 KB)
π
check_mail_spamassassin_compiledregexps_body_0
(187 B)
π
check_maxmem_against_domains_count
(3.57 KB)
π
check_mount_procfs
(2.02 KB)
π
check_mysql
(5.55 KB)
π
check_security_advice_changes
(8.28 KB)
π
check_unmonitored_enabled_services
(4.56 KB)
π
check_unreliable_resolvers
(3.59 KB)
π
check_users_my_cnf
(6.05 KB)
π
check_valid_server_hostname
(7.66 KB)
π
checkalldomainsmxs
(2.4 KB)
π
checkbashshell
(1.18 KB)
π
checkccompiler
(1.22 KB)
π
checkexim.pl
(3.1 KB)
π
checklink
(1.29 KB)
π
checknsddirs
(1014 B)
π
checkusers
(856 B)
π
chkmydns
(561 B)
π
chkpaths
(141 B)
π
chpass
(416 B)
π
ckillall
(1.11 KB)
π
clean_dead_mailman_locks
(2.09 KB)
π
clean_up_temp_wheel_users
(2.44 KB)
π
clean_user_php_sessions
(4.76 KB)
π
cleandns
(13.09 KB)
π
cleandns8
(417 B)
π
cleanmsglog
(735 B)
π
cleanphpsessions
(932 B)
π
cleanphpsessions.php
(658 B)
π
cleanquotas
(1.61 KB)
π
cleansessions
(5.91 KB)
π
cleanupinterchange
(2.64 KB)
π
cleanupmysqlprivs
(533 B)
π
clear_cpaddon_ui_caches
(1.27 KB)
π
clear_orphaned_virtfs_mounts
(3.56 KB)
π
comparecdb
(1.52 KB)
π
compilers
(2.86 KB)
π
compilerscheck
(999 B)
π
configure_firewall_for_cpanel
(520 B)
π
configure_rh_firewall_for_cpanel
(520 B)
π
configure_rh_ipv6_firewall_for_cpanel
(520 B)
π
convert2dovecot
(682 B)
π
convert_accesshash_to_token
(4.07 KB)
π
convert_and_migrate_from_legacy_backup
(1.97 KB)
π
convert_maildir_to_mdbox
(1.66 KB)
π
convert_mdbox_to_maildir
(1.66 KB)
π
convert_roundcube_mysql2sqlite
(25.28 KB)
π
convert_to_dovecot_delivery
(4.33 KB)
π
convert_whmxfer_to_sqlite
(1.46 KB)
π
copy_user_mail_as_root
(1.25 KB)
π
copy_user_mail_as_user
(1.34 KB)
π
cpaddonsup
(3.25 KB)
π
cpan_config
(2.8 KB)
π
cpan_sandbox
π
cpanel_initial_install
(67.36 KB)
π
cpanelsync
(28.31 KB)
π
cpanelsync_postprocessor
(1.62 KB)
π
cpanpingtest
(965 B)
π
cpbackup
(44.77 KB)
π
cpbackup_transport_file
(5.65 KB)
π
cpdig
(1.81 KB)
π
cpfetch
(1.23 KB)
π
cphulkdblacklist
(433 B)
π
cphulkdwhitelist
(1.3 KB)
π
cpservice
(2.87 KB)
π
cpuser_port_authority
(19.29 KB)
π
cpuser_service_manager
(10.85 KB)
π
createacct
(24.57 MB)
π
custom_backup_destination.pl.sample
(5.06 KB)
π
custom_backup_destination.pl.skeleton
(2.84 KB)
π
dav_change_hostname
(3.57 KB)
π
dcpumon-wrapper
(850 B)
π
delpop
(6.2 KB)
π
detect_env_capabilities
(508 B)
π
disable_prelink
(2.77 KB)
π
disable_sqloptimizer
(1.49 KB)
π
disablefileprotect
(2.09 KB)
π
distro_changed_hook
(1.16 KB)
π
dnscluster
(4.44 KB)
π
dnsqueuecron
(1.29 KB)
π
dnssec-cluster-keys
(3.75 KB)
π
dovecot_maintenance
(7.93 KB)
π
dovecot_set_defaults.pl
(984 B)
π
dumpcdb
(866 B)
π
dumpinodes
(687 B)
π
dumpquotas
(616 B)
π
dumpstor
(913 B)
π
ea4_fresh_install
(2.64 KB)
π
edit_cpanelsync_exclude_list
(2.58 KB)
π
editquota
(3.44 KB)
π
elevate-cpanel
(377.87 KB)
π
email_archive_maintenance
(6.15 KB)
π
email_hold_maintenance
(1.46 KB)
π
enable_spf_dkim_globally
(8.83 KB)
π
enable_sqloptimizer
(1.57 KB)
π
enablefileprotect
(2.1 KB)
π
ensure_autoenabled_features
(2.5 MB)
π
ensure_conf_dir_crt_key
(4.82 KB)
π
ensure_cpuser_file_ip
(2.55 KB)
π
ensure_crontab_permissions
(1.08 KB)
π
ensure_dovecot_memory_limits_meet_minimum
(3.13 KB)
π
ensure_hostname_resolves
(2.57 KB)
π
ensure_includes
(601 B)
π
ensure_vhost_includes
(13.53 KB)
π
exim_tidydb
(2.96 KB)
π
eximconfgen
(1.32 KB)
π
eximstats_spam_check
(867 B)
π
export_horde_calendars_to_ics
(15.07 KB)
π
export_horde_contacts_to_vcf
(13.94 KB)
π
exportmydnsdb
(3.47 KB)
π
expunge_expired_certificates_from_sslstorage
(3.56 KB)
π
expunge_expired_pkgacct_sessions
(852 B)
π
expunge_expired_transfer_sessions
(1.06 KB)
π
fastmail
(5.16 KB)
π
featuremod
(1.92 KB)
π
fetchfile
(422 B)
π
find_and_fix_rpm_issues
(6.99 KB)
π
find_outdated_services
(5.41 KB)
π
find_pids_with_inotify_watch_on_path
(3.66 KB)
π
fix-cpanel-perl
(28.82 KB)
π
fix-listen-on-localhost
(3.52 KB)
π
fix-web-vhost-configuration
(6.15 KB)
π
fix_addon_permissions
(7.68 KB)
π
fix_dns_zone_ttls
(1.34 KB)
π
fix_innodb_tables
(4.05 KB)
π
fix_pear_registry
(4.07 KB)
π
fix_reseller_acls
(10.88 KB)
π
fixetchosts
(4.32 KB)
π
fixheaders
(572 B)
π
fixmailinglistperms
(1008 B)
π
fixmailman
(2.09 KB)
π
fixnamedviews
(1.22 KB)
π
fixndc
(413 B)
π
fixquotas
(17.45 KB)
π
fixrelayd
(1.74 KB)
π
fixrndc
(16.48 KB)
π
fixtar
(503 B)
π
fixtlsversions
(4.7 KB)
π
fixvaliases
(2 KB)
π
fixwebalizer
(966 B)
π
forcelocaldomain
(895 B)
π
ftpfetch
(2.2 KB)
π
ftpquotacheck
(8.31 KB)
π
ftpsfetch
(2.36 KB)
π
ftpupdate
(261 B)
π
gather_update_log_stats
(4.25 KB)
π
gather_update_logs_setupcrontab
(5.45 KB)
π
gemwrapper
(1.74 KB)
π
gencrt
(6.26 KB)
π
generate_account_suspension_include
(5.7 KB)
π
generate_google_drive_credentials
(1.11 KB)
π
generate_google_drive_oauth_uri
(984 B)
π
generate_maildirsize
(13.94 KB)
π
gensysinfo
(1.16 KB)
π
get_locale_from_legacy_name_info
(1.99 KB)
π
getremotecpmove
(12.67 KB)
π
grpck
(1.19 KB)
π
hackcheck
(3.02 KB)
π
hook
(1.45 KB)
π
httpspamdetect
(2.66 KB)
π
hulk-unban-ip
(3.93 MB)
π
import_exim_data
(8.39 KB)
π
importmydnsdb
(11.34 KB)
π
increase_filesystem_limits
(891 B)
π
initacls
(4.99 KB)
π
initfpsuexec
(444 B)
π
initquotas
(19.47 KB)
π
initsuexec
(4.03 KB)
π
install_cpanel_analytics
(1.93 KB)
π
install_dovecot_fts
(1.57 KB)
π
install_plugin
(2.8 KB)
π
installpkg
(575 B)
π
installpostgres
(6.56 KB)
π
installsqlite3
(1.82 KB)
π
ipcheck
(3.93 KB)
π
ipusage
(7.45 KB)
π
isdedicatedip
(602 B)
π
jetbackup-check
(3.69 KB)
π
killdns
(422 B)
π
killdns-dnsadmin
(1.15 KB)
π
killmysqluserprivs
(433 B)
π
killmysqlwildcard
(1.15 KB)
π
killpvhost
(853 B)
π
killspamkeys
(937 B)
π
link_3rdparty_binaries
(1.24 KB)
π
linksubemailtomainacct
(3.17 KB)
π
listcheck
(538 B)
π
listsubdomains
(1.05 KB)
π
litespeed-check
(3.86 KB)
π
locale_export
(4.82 KB)
π
locale_import
(4.35 KB)
π
locale_info
(3.99 KB)
π
logo.dat
(205 B)
π
magicloader
(1.94 KB)
π
maildir_converter
(6.08 KB)
π
mailperm
(16.58 KB)
π
mailscannerupdate
(2.42 KB)
π
mainipcheck
(10 KB)
π
maintenance
(46.62 KB)
π
make_config
(407 B)
π
make_hostname_unowned
(1.16 KB)
π
manage_extra_marketing
(12.41 KB)
π
manage_greylisting
(16.19 KB)
π
manage_mysql_profiles
(20.02 KB)
π
migrate-pdns-conf
(9.83 KB)
π
migrate_local_ini_to_php_ini
(7.41 KB)
π
migrate_whmtheme_file_to_userdata
(2.95 KB)
π
mkwwwacctconf
(2.33 KB)
π
modify_accounts
(4.09 KB)
π
modify_featurelist
(9.2 KB)
π
modify_packages
(3.65 KB)
π
modsec_vendor
(15.63 KB)
π
mysqlconnectioncheck
(6.55 KB)
π
mysqlpasswd
(4.09 KB)
π
named.ca
(1.57 KB)
π
named.rfc1912.zones
(774 B)
π
nixstatsagent.sh
(58.67 KB)
π
notify_expiring_certificates
(9.37 KB)
π
notify_expiring_certificates_on_linked_nodes
(1.33 KB)
π
oopscheck
(1.12 KB)
π
optimize_eximstats
(3.88 KB)
π
patch_mail_spamassassin_compiledregexps_body_0
(2.39 KB)
π
patchfdsetsize
(2.72 KB)
π
pedquota
(2.26 KB)
π
perform_sqlite_auto_rebuild_db_maintenance
(2.2 KB)
π
perlinstaller
(528 B)
π
perlmods
(1.18 KB)
π
php_fpm_config
(9.73 KB)
π
php_sandbox
π
phpini_tidy
(687 B)
π
pkgacct
(87.82 KB)
π
post_snapshot
(3.16 KB)
π
post_sync_cleanup
(6.09 KB)
π
primary_virtual_host_migration
(2.44 KB)
π
process_pending_cpanel_php_pear_registration
(3.49 KB)
π
process_site_templates
(7.27 KB)
π
proxydomains
(9.34 KB)
π
ptycheck
(724 B)
π
purge_modsec_log
(1.53 KB)
π
purge_old_config_caches
(2.08 KB)
π
pwck
(708 B)
π
quickdnslookup
(1.13 KB)
π
quickwhoisips
(2.29 KB)
π
quota_auto_fix
(1.41 KB)
π
quotacheck
(22.36 KB)
π
rawchpass
(460 B)
π
rdate
(4.8 KB)
π
realadduser
(5.61 KB)
π
realchpass
(3.26 KB)
π
realperlinstaller
(5.67 KB)
π
realrawchpass
(425 B)
π
rebuild_available_addons_packages_cache
(1.27 KB)
π
rebuild_available_rpm_addons_cache
(1.27 KB)
π
rebuild_bandwidthdb_root_cache
(1.45 KB)
π
rebuild_dbmap
(5.8 KB)
π
rebuild_provider_openid_connect_links_db
(1.01 KB)
π
rebuild_whm_chrome
(2.22 KB)
π
rebuilddnsconfig
(26.21 KB)
π
rebuildhttpdconf
(2.6 KB)
π
rebuildinstalledssldb
(2.85 KB)
π
rebuildippool
(509 B)
π
rebuildnsdzones
(1.14 KB)
π
rebuilduserssldb
(948 B)
π
refresh-dkim-validity-cache
(5.97 KB)
π
regenerate_tokens
(2.18 KB)
π
reloadnsd
(821 B)
π
remote_log_transfer
(11.6 KB)
π
remove_dovecot_index_files
(5.89 KB)
π
removeacct
(20.91 MB)
π
rescan_user_dovecot_fts
(2.98 KB)
π
reset_mail_quotas_to_sane_values
(6.82 KB)
π
resetmailmanurls
(2.03 KB)
π
resetquotas
(4.68 KB)
π
restartsrv
(3.23 KB)
π
restartsrv_apache
(422 B)
π
restartsrv_apache_php_fpm
(9.9 MB)
π
restartsrv_base
(9.9 MB)
π
restartsrv_bind
(9.9 MB)
π
restartsrv_chkservd
(427 B)
π
restartsrv_clamd
(9.9 MB)
π
restartsrv_cpanalyticsd
(9.9 MB)
π
restartsrv_cpanel_php_fpm
(9.9 MB)
π
restartsrv_cpanellogd
(9.9 MB)
π
restartsrv_cpdavd
(9.9 MB)
π
restartsrv_cpgreylistd
(9.9 MB)
π
restartsrv_cphulkd
(9.9 MB)
π
restartsrv_cpipv6
(9.9 MB)
π
restartsrv_cpsrvd
(9.9 MB)
π
restartsrv_crond
(9.9 MB)
π
restartsrv_dnsadmin
(9.9 MB)
π
restartsrv_dovecot
(9.9 MB)
π
restartsrv_exim
(9.9 MB)
π
restartsrv_eximstats
(504 B)
π
restartsrv_ftpd
(426 B)
π
restartsrv_ftpserver
(911 B)
π
restartsrv_httpd
(9.9 MB)
π
restartsrv_imap
(437 B)
π
restartsrv_inetd
(2.47 KB)
π
restartsrv_ipaliases
(9.9 MB)
π
restartsrv_lmtp
(437 B)
π
restartsrv_mailman
(9.9 MB)
π
restartsrv_mydns
(9.9 MB)
π
restartsrv_mysql
(9.9 MB)
π
restartsrv_named
(777 B)
π
restartsrv_nscd
(9.9 MB)
π
restartsrv_nsd
(9.9 MB)
π
restartsrv_p0f
(9.9 MB)
π
restartsrv_pdns
(9.9 MB)
π
restartsrv_pop3
(437 B)
π
restartsrv_postgres
(427 B)
π
restartsrv_postgresql
(9.9 MB)
π
restartsrv_powerdns
(442 B)
π
restartsrv_proftpd
(9.9 MB)
π
restartsrv_pureftpd
(9.9 MB)
π
restartsrv_queueprocd
(9.9 MB)
π
restartsrv_rsyslog
(9.9 MB)
π
restartsrv_rsyslogd
(437 B)
π
restartsrv_spamd
(9.9 MB)
π
restartsrv_sshd
(9.9 MB)
π
restartsrv_syslogd
(2.4 KB)
π
restartsrv_tailwatchd
(9.9 MB)
π
restartsrv_unknown
(9.9 MB)
π
restartsrv_xinetd
(422 B)
π
restorecpuserfromcache
(1.96 KB)
π
restorepkg
(36.49 MB)
π
rfc1912_zones.tar
(10 KB)
π
rpmup
(4.77 KB)
π
rsync-user-homedir.pl
(5.76 KB)
π
run_if_exists
(512 B)
π
run_plugin_lifecycle
(3.53 KB)
π
runstatsonce
(440 B)
π
runweblogs
(1.02 KB)
π
sa-update_wrapper
(3.34 KB)
π
safetybits.pl
(844 B)
π
secureit
(4.72 KB)
π
securemysql
(4.54 KB)
π
securerailsapps
(3.58 KB)
π
securetmp
(15.99 KB)
π
sendicq
(474 B)
π
servicedomains
(9.34 KB)
π
set_mailman_archive_perms
(1.75 KB)
π
set_php_memory_limits
(3.67 KB)
π
setpostgresconfig
(6.04 KB)
π
setup_greylist_db
(16.19 KB)
π
setup_modsec_db
(1.3 KB)
π
setup_systemd_timer_for_plugins
(3.92 KB)
π
setupftpserver
(10.47 KB)
π
setupmailserver
(9.55 KB)
π
setupnameserver
(13.75 KB)
π
shrink_modsec_ip_database
(12.97 KB)
π
simpleps
(3.05 KB)
π
slurp_exim_mainlog
(5.78 KB)
π
smartcheck
(15.13 KB)
π
smtpmailgidonly
(8.15 KB)
π
snapshot_prep
(5.88 KB)
π
spamassassin_dbm_cleaner
(5.85 KB)
π
spamassassindisable
(3.74 KB)
π
spamboxdisable
(2.27 KB)
π
sshcontrol
(14.38 KB)
π
ssl_crt_status
(3.84 KB)
π
suspendacct
(18.01 KB)
π
suspendmysqlusers
(4.42 KB)
π
swapip
(3.82 KB)
π
sync-mysql-users-from-grants
(1.2 KB)
π
sync_child_accounts
(1.77 KB)
π
sync_contact_emails_to_cpanel_users_files
(1.14 KB)
π
synccpaddonswithsqlhost
(6.59 KB)
π
synctransfers
(1.92 KB)
π
syslog_check
(1.36 KB)
π
sysup
(645 B)
π
test_sa_compiled
(1.07 KB)
π
transfer_account_as_user
(2.34 KB)
π
transfer_accounts_as_root
(4.76 KB)
π
transfer_in_progress
(3.08 KB)
π
transfer_in_progress.pod
(312 B)
π
transfermysqlusers
(9.53 MB)
π
try-later
(7.95 KB)
π
unblockip
(667 B)
π
uninstall_cpanel_analytics
(1.2 KB)
π
uninstall_dovecot_fts
(562 B)
π
uninstall_plugin
(2.84 KB)
π
unlink_service_account
(2.62 KB)
π
unpkgacct
(4.6 KB)
π
unslavenamedconf
(863 B)
π
unsuspendacct
(17.8 KB)
π
unsuspendmysqlusers
(6.71 KB)
π
upcp
(31.56 KB)
π
upcp-running
(2.7 KB)
π
upcp.static
(708.6 KB)
π
update-packages
(4.77 KB)
π
update_apachectl
(480 B)
π
update_db_cache
(430 B)
π
update_dkim_keys
(1.45 KB)
π
update_exim_rejects
(1.21 KB)
π
update_existing_mail_quotas_for_account
(4.78 KB)
π
update_known_proxy_ips
(1002 B)
π
update_local_rpm_versions
(4.56 KB)
π
update_mailman_cache
(8.34 KB)
π
update_mysql_systemd_config
(1.25 KB)
π
update_neighbor_netblocks
(487 B)
π
update_sa_config
(2.14 KB)
π
update_spamassassin_config
(10.73 KB)
π
update_users_jail
(691 B)
π
update_users_vhosts
(801 B)
π
updatedomainips
(605 B)
π
updatenameserverips
(1.66 KB)
π
updatenow
(5.18 KB)
π
updatenow.static
(1.91 MB)
π
updatesigningkey
(1.95 KB)
π
updatessldomains
(1.81 KB)
π
updatesupportauthorizations
(2.49 KB)
π
updateuserdatacache
(2.47 KB)
π
updateuserdomains
(774 B)
π
upgrade_bandwidth_dbs
(2.22 KB)
π
upgrade_subaccount_databases
(2.73 KB)
π
userdata_wildcard_cleanup
(5.74 KB)
π
userdirctl
(5.01 KB)
π
validate_sshkey_passphrase
(1.21 KB)
π
verify_api_spec_files
(757 B)
π
verify_pidfile
(1.96 KB)
π
verify_vhost_includes
(7.34 KB)
π
vps_optimizer
(7.82 KB)
π
vzzo-fixer
(725 B)
π
whmlogin
(2.33 KB)
π
whoowns
(1.13 KB)
π
wpt_license
(6.27 MB)
π
wwwacct
(24.57 MB)
π
wwwacct2
(88 B)
π
xfer_rcube_schema_migrate.pl
(2.4 KB)
π
xfer_rcube_uid_resolver.pl
(1.8 KB)
π
xferpoint
(3.13 KB)
π
xfertool
(16.14 KB)
π
zoneexists
(800 B)
Editing: modsec_vendor
#!/usr/local/cpanel/3rdparty/bin/perl # cpanel - scripts/modsec_vendor Copyright 2022 cPanel, L.L.C. # All rights reserved. # copyright@cpanel.net http://cpanel.net # This code is subject to the cPanel license. Unauthorized copying is prohibited package scripts::modsec_vendor; use strict; use IO::Interactive (); use Cpanel::CLIProgress (); use Cpanel::Exception (); use Cpanel::Hooks (); use Cpanel::Locale 'lh'; use Cpanel::Logger (); use Cpanel::HttpUtils::ApRestart::Defer (); use Whostmgr::ModSecurity (); use Whostmgr::ModSecurity::VendorList (); use Whostmgr::ModSecurity::Vendor (); # All functions in this script, including run, return true on success and false on failure. # The conversion to exit status happens here only. unless (caller) { exit( run(@ARGV) ? 0 : 1 ); } sub run { my ( $command, @args ) = @_; if ( !Whostmgr::ModSecurity::has_modsecurity_installed() ) { _logger()->info( lh()->maketext(q{You do not have [asis,ModSecurity] installed. There is no work to do.}) ); return 1; } if ( $command eq 'list' ) { return list(@args); } elsif ( $command eq 'add' ) { return add(@args); } elsif ( $command eq 'remove' ) { return remove(@args); } elsif ( $command eq 'update' ) { return update(@args); } elsif ( $command eq 'enable' ) { return enable(@args); } elsif ( $command eq 'disable' ) { return disable(@args); } elsif ( $command eq 'enable-updates' ) { return enable_updates(@args); } elsif ( $command eq 'disable-updates' ) { return disable_updates(@args); } elsif ( $command eq 'enable-configs' ) { return enable_configs(@args); } elsif ( $command eq 'disable-configs' ) { return disable_configs(@args); } else { _die_usage(); } return 1; } sub list { my @args = @_; _die_usage() if @args; my $vendors = Whostmgr::ModSecurity::VendorList::list_detail_and_provided(); if ( !@$vendors ) { _logger()->info( lh()->maketext(q{There are no vendors.}) ); return 1; } for my $vendor_info (@$vendors) { print _format_vendor_info($vendor_info); } return 1; } sub add { my @args = @_; _die_usage() if @args < 1; my $all_ok = 1; _trigger_hook( "pre", "modsec_vendor::add" ); for my $url (@args) { local $@; my $vendor_info = eval { Whostmgr::ModSecurity::VendorList::add($url); }; my $ex = $@; if ($ex) { _logger()->warn( lh()->maketext( q{The system failed to add the vendor from the URL β[_1]β: [_2]}, $url, _format_exception($ex) ) ); $all_ok = 0; } else { _logger()->info( lh()->maketext( q{You have added the vendor β[_1]β.}, $vendor_info->{name} ) ); print "\n" . _format_vendor_info($vendor_info); } } _trigger_hook( "post", "modsec_vendor::add" ); return $all_ok; } sub remove { my @args = @_; _die_usage() if @args < 1; my $all_ok = 1; _trigger_hook( "pre", "modsec_vendor::remove" ); for my $vendor_id (@args) { local $@; eval { my $vendor = Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id ); $vendor->uninstall; }; my $ex = $@; if ($ex) { _logger()->warn( lh()->maketext( q{The system failed to remove the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); $all_ok = 0; } else { _logger()->info( lh()->maketext( q{You have removed the vendor β[_1]β.}, $vendor_id ) ); } } _trigger_hook( "post", "modsec_vendor::remove" ); return $all_ok; } sub update { my @args = @_; _die_usage() if @args != 1; my $all_ok = 1; _trigger_hook( "pre", "modsec_vendor::update" ); for my $to_update (@args) { my @urls; if ( $to_update =~ /^http:/ ) { push @urls, $to_update; } elsif ( $to_update eq '--auto' ) { _logger()->info( lh()->maketext(q{Updates are in progress for all of the installed [asis,ModSecurity] vendors with automatic updates enabled.}) ); for my $vendor_detail ( @{ Whostmgr::ModSecurity::VendorList::list_detail() } ) { my ( $vendor_id, $update, $enabled ) = @$vendor_detail{qw(vendor_id update enabled)}; my $vendor = Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id ); if ( !$update ) { _logger()->info( lh()->maketext( q{You have not configured the vendor β[_1]β to receive automatic updates.}, $vendor_id ) ); next; } if ( !$enabled ) { _logger()->info( lh()->maketext( q{You have not enabled the vendor β[_1]β. The vendor will not receive automatic updates.}, $vendor_id ) ); next; } if ( $vendor->{is_pkg} ) { push @urls, \$vendor->{is_pkg}; } else { push @urls, $vendor->installed_from || die lh()->maketext( q{The system could not determine the [asis,installed_from] URL for the vendor β[_1]β.}, $vendor_id ) . "\n"; } } } else { my $vendor = Whostmgr::ModSecurity::Vendor->load( vendor_id => $to_update ); if ( $vendor->{is_pkg} ) { push @urls, \$vendor->{is_pkg}; } else { push @urls, $vendor->installed_from || die lh()->maketext( q{The system could not determine the [asis,installed_from] URL for the vendor β[_1]β.}, $to_update ) . "\n"; } } my $defer = Cpanel::HttpUtils::ApRestart::Defer->new( 'lexical' => 1 ); $defer->block_restarts(); for my $url (@urls) { local $@; if ( ref($url) ) { my $pkg = ${$url}; # we disable excludes because: # * --auto will have not added to @urls i.e. update-disabled packages wonβt make it here # * the manual direct arg is intended to allow them to update a rule set at will even if they have it disabled (i.e. a controlled update) require Cpanel::PackMan; $defer->allow_restarts(); # this locks httpd.conf which means universal hooks bits will wait for that lock eval { Cpanel::PackMan->instance->sys->upgrade( $pkg => "--disableexcludes=main" ) }; warn "Failed to upgrade β$pkgβ, this will need done manually.\n" if $@; $defer->block_restarts(); next; } my $result = eval { Whostmgr::ModSecurity::VendorList::update( $url, 1 ); }; my $exception = $@; if ($exception) { if ( 'Cpanel::Exception::ModSecurity::VendorUpdateUnnecessary' eq ref $exception && '--auto' eq $to_update ) { _logger()->info( lh()->maketext( q{The vendor β[_1]β is already up to date.}, $exception->vendor_id ) ); next; } $all_ok = 0; my $err = lh()->maketext( q{The system failed to update the vendor from the URL β[_1]β: [_2]}, $url, _format_exception($exception) ); print $err . "\n"; #this is to ensure that scripts/maintenance sees the error and adds it to _logger()->warn($err); } else { my $vendor_info = $result->{vendor}; _logger()->info( lh()->maketext( q{You have updated the vendor β[_1]β.}, $vendor_info->{name} ) ); my $diagnostics = $result->{diagnostics}; if ( @{ $diagnostics->{added_configs} } ) { _logger()->info( lh()->maketext( q{You have added the following configuration files: [_1]}, @{ $diagnostics->{added_configs} } ) ); } if ( @{ $diagnostics->{deleted_configs} } ) { _logger()->info( lh()->maketext( q{You have removed the following configuration files: [_1]}, @{ $diagnostics->{deleted_configs} } ) ); } print "\n" . _format_vendor_info($vendor_info); } } $defer->allow_restarts(); } _trigger_hook( "post", "modsec_vendor::update" ); return $all_ok; } sub enable { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; _trigger_hook( "pre", "modsec_vendor::enable" ); local $@; if ( eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id )->enable() } ) { _logger()->info( lh()->maketext( q{You have enabled the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::enable" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not enable the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub disable { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; _trigger_hook( "pre", "modsec_vendor::disable" ); local $@; if ( eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id )->disable() } ) { _logger()->info( lh()->maketext( q{You have disabled the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::disable" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not disable the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub enable_updates { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; _trigger_hook( "pre", "modsec_vendor::enable_updates" ); local $@; if ( eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id )->enable_updates() } ) { _logger()->info( lh()->maketext( q{You have enabled updates for the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::enable_updates" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not enable updates for the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub disable_updates { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; _trigger_hook( "pre", "modsec_vendor::disable_updates" ); local $@; if ( eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id )->disable_updates() } ) { _logger()->info( lh()->maketext( q{You have disabled updates for the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::disable_updates" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not disable updates for the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub enable_configs { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; my $progress_bar = Cpanel::CLIProgress->new( width => 30 ); _trigger_hook( "pre", "modsec_vendor::enable_configs" ); local $@; my ( $ok, $outcomes ) = eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id, progress_bar => $progress_bar )->enable_configs() }; if ($ok) { _logger()->info( lh()->maketext( q{You have enabled all of the configuration files for the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::enable_configs" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not enable all of the configuration files for the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub disable_configs { my @args = @_; _die_usage() if @args != 1; my ($vendor_id) = @args; my $progress_bar = Cpanel::CLIProgress->new( width => 30 ); _trigger_hook( "pre", "modsec_vendor::disable_configs" ); local $@; my ( $ok, $outcomes ) = eval { Whostmgr::ModSecurity::Vendor->load( vendor_id => $vendor_id, progress_bar => $progress_bar )->disable_configs() }; if ($ok) { _logger()->info( lh()->maketext( q{You have disabled all of the configuration files for the vendor β[_1]β.}, $vendor_id ) ); _trigger_hook( "post", "modsec_vendor::disable_configs" ); return 1; } my $ex = $@; _logger()->warn( lh()->maketext( q{The system could not disable all of the configuration files for the vendor β[_1]β: [_2]}, $vendor_id, _format_exception($ex) ) ); return 0; } sub _format_vendor_info { my ($vendor_info) = @_; my ( $vert_divider, $wrap_heading ); if ( IO::Interactive::is_interactive() ) { $vert_divider = "\033[7m \033[m"; $wrap_heading = sub { "\033[7m" . shift . "\033[m" }; } else { $vert_divider = '|'; $wrap_heading = sub { shift }; } my $output = $wrap_heading->( sprintf( '[%s] %s', @$vendor_info{qw(vendor_id name)}, ) ) . ( !$vendor_info->{installed} ? ' (not installed)' : '' ) . "\n"; for my $k ( sort keys %$vendor_info ) { my $v = $vendor_info->{$k}; if ( 'ARRAY' eq ref $v ) { $v = sprintf( "(%d)", scalar(@$v) ); # just the count } $output .= sprintf( "% 16s %s %s\n", $k, $vert_divider, $v ); } $output .= "\n\n"; return $output; } sub _format_exception { my $exception = shift; chomp( $exception = Cpanel::Exception::get_string($exception) ); return $exception; } my $logger; sub _logger { $logger ||= Cpanel::Logger->new(); return $logger; } sub _die_usage { die <<EOU; usage: $0 <list | add | remove | update> ... list - Lists the currently-installed vendors add <vendor metadata YAML URL> - Installs a new vendor remove <vendor_id> - Removes the vendor with the specified vendor id update <vendor_id | vendor metadata YAML URL | --auto> - If a vendor_id is provided, this command updates the vendor specified by that id from the same URL or package that was used to install it. - If a URL is provided, this command updates an existing vendor from the specified URL. The URL need not be the same as the one used to originally install the vendor. - If --auto is specified, updates all installed vendors for which auto-update is enabled using the URLs or packages from which they were originally installed. enable <vendor_id> - Enables a vendor disable <vendor_id> - Disables a vendor enable-updates <vendor_id> - Enables automatic updates for a vendor disable-updates <vendor_id> - Disables automatic updates for a vendor enable-configs <vendor_id> - Enables all configs for a vendor disable-configs <vendor_id> - Disables all configs for a vendor EOU } #------------------------------------------------------------------------------------------------- # Scope: # private # Name: # _trigger_hook # Desc: # This function triggers the hook on scripts/modsec_vendor # Arguments: # - pre_or_post - a string that should be only "pre" or "post". # - event - a string that is the name of the api call. # example: modsec_vendor::add # Returns: # - Nothing is returned. #------------------------------------------------------------------------------------------------- sub _trigger_hook { my ( $pre_or_post, $event ) = @_; Cpanel::Hooks::hook( { 'category' => 'scripts', 'event' => $event, 'stage' => $pre_or_post, }, ); return; } 1;
Upload File
Create Folder