271 lines
8.8 KiB
PHP
271 lines
8.8 KiB
PHP
<?php
|
|
// This file runs maintenance scripts and should be executed by cron regularly
|
|
include "config.inc.php";
|
|
include "newsportal.php";
|
|
include $config_dir . "/scripts/rslight-lib.php";
|
|
include $config_dir . "/gpg.conf";
|
|
|
|
$pid = getmypid();
|
|
$logfile = $logdir . '/cron.log';
|
|
if (file_exists($config_dir . '/cron.disable') || file_exists($spooldir . '/cron.disable')) {
|
|
file_put_contents($logfile, "\n" . date('M d H:i:s') . " " . $config_name . " cron.php disabled by semaphore: cron.disable Exiting...", FILE_APPEND);
|
|
chown($logfile, $CONFIG['webserver_user']);
|
|
exit();
|
|
} else {
|
|
file_put_contents($logfile, "\n" . date('M d H:i:s') . " " . $config_name . " cron ".$pid." started...", FILE_APPEND);
|
|
chown($logfile, $CONFIG['webserver_user']);
|
|
}
|
|
|
|
$menulist = file($config_dir . "menu.conf", FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES);
|
|
|
|
# Start or verify NNTP server
|
|
if (isset($CONFIG['enable_nntp']) && $CONFIG['enable_nntp'] == true) {
|
|
# Create group list for nntp.php
|
|
$fp1 = $spooldir . "/" . $config_name . "/groups.txt";
|
|
unlink($fp1);
|
|
touch($fp1);
|
|
foreach ($menulist as $menu) {
|
|
if (($menu[0] == '#') || trim($menu) == "") {
|
|
continue;
|
|
}
|
|
$menuitem = explode(':', $menu);
|
|
if ($menuitem[2] == '1') {
|
|
$in_gl = file($config_dir . $menuitem[0] . "/groups.txt");
|
|
foreach ($in_gl as $ok_group) {
|
|
if (($ok_group[0] == ':') || (trim($ok_group) == "")) {
|
|
continue;
|
|
}
|
|
$ok_group = preg_split("/( |\t)/", trim($ok_group), 2);
|
|
file_put_contents($fp1, $ok_group[0] . "\r\n", FILE_APPEND);
|
|
}
|
|
}
|
|
}
|
|
|
|
$disabled_php = ini_get('disable_functions');
|
|
echo $disabled_php;
|
|
if(strpos($disabled_php, 'pcntl_fork') !== false) {
|
|
echo "\nERROR: pcntl_fork() disabled in php ini file, cannot fork (nntp server will not start).";
|
|
file_put_contents($logfile, "\n" . format_log_date() . " ERROR: pcntl_fork() disabled in php ini file, cannot fork (nntp server will not start).", FILE_APPEND);
|
|
} else {
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/nntp.php > /dev/null 2>&1");
|
|
if (is_numeric($CONFIG['local_ssl_port'])) {
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/nntp-ssl.php > /dev/null 2>&1");
|
|
}
|
|
}
|
|
}
|
|
# Generate user count file (must be root)
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/count_users.php");
|
|
echo "Updated user count\n";
|
|
|
|
$uinfo = posix_getpwnam($CONFIG['webserver_user']);
|
|
$cwd = getcwd();
|
|
|
|
// Check permissions on some files
|
|
$webtmp = preg_replace('/spoolnews/', 'tmp/', $cwd);
|
|
$keydir = preg_replace('/spoolnews/', 'pubkey/', $cwd);
|
|
|
|
@mkdir($webtmp, 0755, 'recursive');
|
|
@chown($webtmp, $uinfo["uid"]);
|
|
@chgrp($webtmp, $uinfo["gid"]);
|
|
@mkdir($keydir, 0755, 'recursive');
|
|
@chown($keydir, $uinfo["uid"]);
|
|
@chgrp($keydir, $uinfo["gid"]);
|
|
@mkdir($ssldir, 0755);
|
|
@chown($ssldir, $uinfo["uid"]);
|
|
@chgrp($ssldir, $uinfo["gid"]);
|
|
|
|
$alias_file = $config_dir . '/aliases.conf';
|
|
if(!file_exists($alias_file)) {
|
|
touch($alias_file);
|
|
}
|
|
@chown($alias_file, $uinfo["uid"]);
|
|
@chgrp($alias_file, $uinfo["gid"]);
|
|
|
|
$pemfile = $ssldir . '/server.pem';
|
|
create_node_ssl_cert($pemfile);
|
|
|
|
$overview = $spooldir . '/articles-overview.db3';
|
|
touch($overview);
|
|
@chown($overview, $uinfo["uid"]);
|
|
@chgrp($overview, $uinfo["gid"]);
|
|
|
|
if ($rslight_gpg['enable'] == '1') {
|
|
$gnupg = $rslight_gpg['gnupghome'];
|
|
if (! is_dir($gnupg)) {
|
|
mkdir($gnupg, 0700);
|
|
chown($gnupg, $uinfo["uid"]);
|
|
chgrp($gnupg, $uinfo["gid"]);
|
|
}
|
|
}
|
|
/* Change to non root user */
|
|
change_identity($uinfo["uid"], $uinfo["gid"]);
|
|
/* Everything below runs as $CONFIG['webserver_user'] */
|
|
|
|
@mkdir($logdir, 0755, 'recursive');
|
|
@mkdir($lockdir, 0755, 'recursive');
|
|
|
|
if (isset($CONFIG['enable_nocem']) && $CONFIG['enable_nocem'] == true) {
|
|
@mkdir($spooldir . "nocem", 0755, 'recursive');
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/nocem.php");
|
|
}
|
|
// Set up server gpg keys
|
|
if ($rslight_gpg['enable'] == '1') {
|
|
if (! is_file($keydir . '/server_pubkey.txt')) {
|
|
$domain = 'rslight@' . $rslight_gpg['domain_name'];
|
|
$pubkey = $keydir . '/server_pubkey.txt';
|
|
$fingerprint = $keydir . '/server_fingerprint.txt';
|
|
$create_gpg_keys = $config_dir . '/scripts/create_gpg_keys.sh "' . $gnupg . '" "' . $pubkey . '" "' . $fingerprint . '" "' . $domain . '"';
|
|
exec($create_gpg_keys);
|
|
}
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/interBBS_mail.php");
|
|
}
|
|
|
|
reset($menulist);
|
|
foreach ($menulist as $menu) {
|
|
if (($menu[0] == '#') || (trim($menu) == "")) {
|
|
continue;
|
|
}
|
|
$menuitem = explode(':', $menu);
|
|
chdir("../" . $menuitem[0]);
|
|
if ($CONFIG['remote_server'] !== '') {
|
|
# Send articles
|
|
echo "Sending articles\n";
|
|
echo exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/send.php");
|
|
# Refresh spool
|
|
if (isset($spoolnews) && ($spoolnews == true)) {
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/spoolnews.php");
|
|
echo "\nRefreshed spoolnews\n";
|
|
}
|
|
}
|
|
# Expire articles
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/expire.php");
|
|
echo "Expired articles\n";
|
|
}
|
|
|
|
# Run RSS Feeds
|
|
exec($CONFIG['php_exec'] . " " . $config_dir . "/scripts/rss-feeds.php");
|
|
echo "RSS Feeds updated\n";
|
|
# Reload grouplist
|
|
if ((filemtime($grouplist_cache_filename) < (time() - ($grouplist_cache_time - 600)) || !file_exists($grouplist_cache_filename))) {
|
|
exec($CONFIG['php_exec'] . " ../common/grouplist.php .RELOAD");
|
|
echo "Refreshed grouplist\n";
|
|
}
|
|
# Rotate log files
|
|
log_rotate();
|
|
echo "Log files rotated\n";
|
|
# Rotate keys
|
|
rotate_keys();
|
|
echo "Keys rotated\n";
|
|
# Expire files
|
|
expire_files();
|
|
echo "Removed old files\n";
|
|
file_put_contents($logfile, "\n" . date('M d H:i:s') . " " . $config_name . " cron ".$pid." completed...", FILE_APPEND);
|
|
|
|
function expire_files() {
|
|
global $spooldir, $logdir;
|
|
$now = time();
|
|
// Days to prune
|
|
$nocemdays = 7;
|
|
// Days to seconds from now
|
|
$nocem = $now - ($nocemdays * 86400);
|
|
// Dirs to prune
|
|
$nocem_processed = $spooldir . "/nocem/processed/";
|
|
$nocem_failed = $spooldir . "/nocem/failed/";
|
|
if(!is_dir($nocem_processed)) {
|
|
@mkdir($nocem_processed, 0755, 'recursive');
|
|
@chown($nocem_processed, $uinfo["uid"]);
|
|
@chgrp($nocem_processed, $uinfo["gid"]);
|
|
}
|
|
if(!is_dir($nocem_failed)) {
|
|
@mkdir($nocem_failed, 0755, 'recursive');
|
|
@chown($nocem_failed, $uinfo["uid"]);
|
|
@chgrp($nocem_failed, $uinfo["gid"]);
|
|
}
|
|
|
|
// $nocem_processed
|
|
$filenames = array_diff(scandir($nocem_processed), array(
|
|
'..',
|
|
'.'
|
|
));
|
|
foreach($filenames as $one) {
|
|
if(filemtime($nocem_processed.$one) < $nocem) {
|
|
unlink($nocem_processed.$one);
|
|
}
|
|
}
|
|
|
|
// $nocem_failed
|
|
$filenames = array_diff(scandir($nocem_failed), array(
|
|
'..',
|
|
'.'
|
|
));
|
|
foreach($filenames as $one) {
|
|
if(filemtime($nocem_failed.$one) < $nocem) {
|
|
unlink($nocem_failed.$one);
|
|
}
|
|
}
|
|
|
|
}
|
|
|
|
function log_rotate()
|
|
{
|
|
global $logdir;
|
|
$rotate = filemtime($logdir . '/rotate');
|
|
if ((time() - $rotate) > 86400) {
|
|
$log_files = scandir($logdir);
|
|
foreach ($log_files as $logfile) {
|
|
if (substr($logfile, - 4) != '.log') {
|
|
continue;
|
|
}
|
|
$logfile = $logdir . '/' . $logfile;
|
|
@unlink($logfile . '.5');
|
|
@rename($logfile . '.4', $logfile . '.5');
|
|
@rename($logfile . '.3', $logfile . '.4');
|
|
@rename($logfile . '.2', $logfile . '.3');
|
|
@rename($logfile . '.1', $logfile . '.2');
|
|
@rename($logfile, $logfile . '.1');
|
|
echo 'Rotated: ' . $logfile . "\n";
|
|
}
|
|
unlink($logdir . '/rotate');
|
|
touch($logdir . '/rotate');
|
|
}
|
|
}
|
|
|
|
function rotate_keys()
|
|
{
|
|
global $spooldir;
|
|
$keyfile = $spooldir . '/keys.dat';
|
|
$newkeys = array();
|
|
if (filemtime($keyfile) + 14400 > time()) {
|
|
return;
|
|
} else {
|
|
$new = true;
|
|
if (is_file($keyfile)) {
|
|
$keys = unserialize(file_get_contents($keyfile));
|
|
$new = false;
|
|
}
|
|
if ($new !== true) {
|
|
$newkeys[0] = base64_encode(openssl_random_pseudo_bytes(44));
|
|
$newkeys[1] = $keys[0];
|
|
} else {
|
|
$newkeys[0] = base64_encode(openssl_random_pseudo_bytes(44));
|
|
$newkeys[1] = base64_encode(openssl_random_pseudo_bytes(44));
|
|
}
|
|
}
|
|
file_put_contents($keyfile, serialize($newkeys));
|
|
touch($keyfile);
|
|
}
|
|
|
|
function change_identity($uid, $gid)
|
|
{
|
|
if (! posix_setgid($gid)) {
|
|
print "Unable to setgid to " . $gid . "!\n";
|
|
exit();
|
|
}
|
|
|
|
if (! posix_setuid($uid)) {
|
|
print "Unable to setuid to " . $uid . "!\n";
|
|
exit();
|
|
}
|
|
}
|
|
?>
|