For Webmaster

#!/usr/local/bin/perl # ========================================================================= # # /////apeboard+ for webmaster Ver.2.0 (Shift_JIS)///// # # Copyright (C) 2001,by 2apes.com # All rights reserved # http://www.2apes.com # ========================================================================= # 必要なファイルのパス指定 ------------------------------------------------ require './jcode.pl'; require './boardini.cgi'; require './skinini.cgi'; # 設定終了 ---------------------------------------------------------------- # ------------------------------------------------------------------------- # 基本処理 # ------------------------------------------------------------------------- form_decord(); get_cookie($mt_cookiename); $ck_pwd = $cookie{'pwd'}; $command = $FORMDATA{'command'}; $tgtid = $FORMDATA{'target'}; $pwd = $FORMDATA{'pwd'}; $msgnum = $FORMDATA{'msgnum'}; $old_pwd = $FORMDATA{'old_pwd'}; $new_pwd = $FORMDATA{'new_pwd'}; $cknew_pwd=$FORMDATA{'cknew_pwd'}; if ($msgnum eq ''){ $msgnum = 0; } if ($command eq 'read' || $command eq 'f_read'){ read_mes_res(); } elsif ($command eq 'res_mes'){ res_message(); read_mes_res(); } elsif ($command eq 'remove'){ remove_message(); read_mes_res(); } elsif ($command eq 'cg_mtpwd'){ shw_chpwd(); } elsif ($command eq 'cg_and_ck'){ check_change(); mt_login(); } else { mt_login(); } exit(0); # ------------------------------------------------------------------------- # フォームデータをデコードするためのサブルーチン # # @version 2.0 # ------------------------------------------------------------------------- sub form_decord { my($query,@queries,$key,$value); if ($ENV{'REQUEST_METHOD'} eq "POST") { read(STDIN, $query, $ENV{'CONTENT_LENGTH'}); } else { $query= $ENV{'QUERY_STRING'}; } @queries = split(/&/, $query); foreach (@queries) { ($key, $value) = split(/=/); $value =~ tr/+/ /; $value =~ s/%([\dA-Fa-f][\dA-Fa-f])/pack("C", hex($1))/eg; $value =~ s/\r\n/\r/g; $value =~ s/\n/\r/g; $value =~ s/ \r \r//g; $value =~ s/\　\r\　\r//g; $value =~ s/ \r/\r/g; $value =~ s/\　\r/\r/g; $value =~ s/\r\r\r\r//g; $value =~ s/&/&/g; $value =~ s//>/g; $value =~ s/,/\0/g; if ($tagset eq 'off') { $value =~ s/"/"/g; } # jcode.pl による文字コードの変換 ------------------------------- &jcode'convert(*value,'sjis'); &jcode'h2z_sjis(*value); # ハッシュに格納 ------------------------------------------------ if ($key eq 'target'){ push(@RM, $value); } else { $FORMDATA{$key} = $value; } } } # ------------------------------------------------------------------------- # レス用のメッセージ入力画面の表示 # # @version 2.0 # ------------------------------------------------------------------------- sub read_mes_res { # データファイルを読み込む -------------------------------------- lock_open(TXT, "+<$datafile"); @txt = ; unlock_close(TXT); ($encoded_pass) = splice(@txt, 0, 1); chop($encoded_pass); if ($command ne 'f_read') { if ($is_tok2 eq '') { get_cookie($mt_cookiename); $pwd = $cookie{'pwd'}; } } if ($encoded_pass eq '' || mismatch_password($pwd, $encoded_pass)) { print_error("パスワードが不適切、もしくは正しく設定されていません。"); } # データの数を調べる -------------------------------------------- $volume = scalar(@txt); # 表示範囲の設定 ------------------------------------------------ $msgstart = $msgnum; if ($msgstart < 0) { $msgstart = 0; } $msgend = $msgnum + $data_out; if ($msgend > $volume) { $msgend = $volume; } # 画面に表示する前の設定 ---------------------------------------- if ($command eq 'f_read') { undef %cookie; $cookie{'pwd'} = $pwd; print_cookie($mt_cookiename, 1); } print "Content-type: text/html; charset=Shift_JIS\n\n"; # ヘッダ部分の作成と変換 ---------------------------------------- print "\n"; print "\n"; print "\n"; print "For Webmaster\n"; print "\n"; print "\n"; print "\n"; print "　
\n"; print "For Webmaster
\n"; print "

\n"; print "ここは管理者用のページです。
管理者以外のアクセスを禁止します。
\n"; print "
\n"; print "
\n"; print "管理用ページを終了する。

\n"; # 投稿の表示 ---------------------------------------------------- for ($i = $msgstart; $i < $msgend; $i++) { ($dispid,$dispname,$dispicon,$dispmail,$dispurl,$dispdate,$disppwd,$dispsubject,$dispmsg,$disphost,$dispres) = split(/,/, $txt[$i]); $dispname =~ s/\0/,/g; $dispicon =~ s/\0/,/g; $dispmail =~ s/\0/,/g; $dispurl =~ s/\0/,/g; $disppwd =~ s/\0/,/g; $dispsubject =~ s/\0/,/g; $dispmsg =~ s/\0/,/g; $disphost=~ s/\0/,/g; $dispres =~ s/\0/,/g; chomp($dispres); $dat_tmp = $dateline; ($d_year,$d_mon,$d_day,$d_weekstr,$d_hour,$d_min) = split(/&/, $dispdate); if ($addzero_md eq 'on') { if ($d_mon < 10) { $d_mon = "0$d_mon"; } if ($d_day <10) { $d_day = "0$d_day"; } if ($d_hour < 10) { $d_hour = "0$d_hour"; } if ($d_min < 10) { $d_min = "0$d_min"; } } $dat_tmp =~ s/year/$d_year/i; $dat_tmp =~ s/month/$d_mon/i; $dat_tmp =~ s/day/$d_day/i; $dat_tmp =~ s/week/$d_weekstr/i; $dat_tmp =~ s/hour/$d_hour/i; $dat_tmp =~ s/minute/$d_min/i; # 名前にメールアドレスのリンクをはる ---------------------------- if($dispmail ne '') { $dispname = '' . $dispname . ''; } # URLにリンクをはる --------------------------------------------- if($dispurl ne '') { $dispurl = '- ' . Website . ''; } # メイン部分の作成（親部分） ------------------------------------ print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "\n"; print "

\n"; print "\n"; print "	[$dispid] $dispsubject
内容	\n"; print "<$dat_tmp>[$disphost] \n"; print "$dispsubject by $dispname $dispurl \n"; print " $dispmsg \n"; print "\n"; # メイン部分の作成（子部分） ------------------ open(RES, $res_file) \|\| print_error('レスファイルが開けません。'); $reshtml = join('',); close(RES); @part_res = split(/:&:/, $dispres); $res_volume = scalar(@part_res); for ($j = 0; $j < $res_volume; $j++) { ($dresnum,$dresname,$dresicon,$dresmail,$dresurl,$dresdate,$drespwd,$dressubject,$dresmsg,$dreshost) = split(/<>/, $part_res[$j]); $res_dat_tmp = $dateline; ($dres_year,$dres_mon,$dres_day,$dres_weekstr,$dres_hour,$dres_min) = split(/&/, $dresdate); if ($addzero_md eq 'on') { if ($dres_mon < 10) { $dres_mon = "0$dres_mon"; } if ($dres_day <10) { $dres_day = "0$dres_day"; } } if($addzero_hm eq 'on') { if ($dres_hour < 10) { $dres_hour = "0$dres_hour"; } if ($dres_min < 10) { $dres_min = "0$dres_min"; } } $res_dat_tmp =~ s/year/$dres_year/i; $res_dat_tmp =~ s/month/$dres_mon/i; $res_dat_tmp =~ s/day/$dres_day/i; $res_dat_tmp =~ s/week/$dres_weekstr/i; $res_dat_tmp =~ s/hour/$dres_hour/i; $res_dat_tmp =~ s/minute/$dres_min/i; # 名前にメールアドレスのリンクをはる ---------------------------- if($dresmail ne '') { $dresname = '' . $dresname . ''; }; # URLにリンクをはる --------------------------------------------- if($dresurl ne '') { $dresurl = '- ' . Website . ''; } print " \n"; print "　<$res_dat_tmp>[$dreshost]-削除用 \n"; print "　$dressubject by $dresname $dresurl \n"; print " \n"; print " $dresmsg \n"; print " \n"; } if ($reshtml =~ /ressubject/i){ print "
題名	\n"; print "\n"; } print "
レス	\n"; print "\n"; print "

\n"; } # フッタの作成と文字列の変換 ------------------------------------ $nextmsg = $msgend ; print "\n"; print "\n"; print "\n"; print "\n"; print "

\n"; if ($is_tok2 ne '') { print "Password :\n" } print "\n"; print "\n"; print "

\n"; print "

\n"; print ""; print "\n"; print "\n"; if ($data_out + $msgnum + 1 > $volume) { print "\n"; print "

< TopLog

\n"; } else { print "

OldLog >

\n"; } print "

\n"; print "\n"; print "