#!/usr/local/bin/perl $version="Member System Version 2.0"; #$cgiurl="http://202.145.173.2:1000/cgi-bin/login.cgi"; $cgiurl="/cgi-bin/login.cgi"; $serverpath="/home/comoman/httpd/htdocs"; $datapath="$serverpath/../database"; $vdata = "$serverpath/vdata/setup.conf"; $filehead ="$datapath/data/"; $pagehead="$serverpath/page/"; $backuphead="$serverpath/backup/"; #$time_miss=16; $expDate = "Sunday, 31-Dec-2000 00:00:00 GMT"; $domain = "www.como.com.tw"; $path = "/cgi-bin/"; ################################################## #read Var From Disk ################################################# open (SETMYVAR,"$vdata"); while () { $_ =~ s/\r//g; $_ =~ s/^\s+//g; $_ =~ s/\s+$//g; ($myvarname,$mynamevalue) = split (/\=/, $_); $$myvarname="$mynamevalue"; } close (SETMYVAR); ################################################## #Page Setup ################################################## Member DBM $idnamefile ="BASEIDNAME"; #代號-->姓名------------------ $idenamefile ="BASEEIDNAME"; #代號-->英文姓名------------------ $idtelfile ="BASEIDTEL"; #代號-->電話------------------ $idfaxfile ="BASEIDFAX"; #代號-->傳真------------------ $idbdayfile ="BASEBDAY"; #代號-->年齡 $idsexfile ="BASEIDSEX"; #代號-->性別------------------ $idaddressfile ="BASEIDADDRESS"; #代號-->地址------------------ $idmanidfile ="BASEMAN"; #代號-->身份証字號 $idemailfile ="BASEIDEMAIL"; #代號-->信箱------------------ $emailidfile ="BASEEMAILID"; #信箱-->代號------------------ $passwordfile ="BASEPASSWORD"; #代號-->密碼------------------ $idcpass ="BASEIDCPASS"; #代號-->密碼更改日期---------- $joindatefile ="BASEJOINDATE"; #代號-->註冊時間-------------- $lastlogindatefile ="BASELASTLOGINDATE"; #代號-->最後使用時間---------- $lastloginipfile ="BASELASTLOGINIP"; #代號-->最後使用IP------------ $idbuyfile ="BASEBUY"; #代號-->累計購買金額 $freereport ="BASEFREEREPORT"; #代號-->累計購買金額 $iddepfile ="BASEDEP"; #代號-->類別------------------ ################################################## DOC DBM ################################################## #Page Setup ################################################## $errorpage ="error.htm"; $succpage ="succpage.htm"; $newpage ="mlogin.htm"; $userfirst ="userfirst.htm"; $doagainpage ="doagain.htm"; $doagain1page ="doagain1.htm"; $joinsuccpage ="joinsucc.htm"; $profilepage ="profile.htm"; $profile2page ="profile2.htm"; $loginpage ="login.htm"; $m001page ="m001.htm"; $freepage ="free.htm"; ################################################################ $ip=$ENV{'REMOTE_ADDR'}; #($secn,$minn,$hourn,$dayn,$monn,$yearn,$weekn,$yeardayn,$isdst) = localtime(time+(3600*$time_miss)); #SERVER在國外之時間修正 ($secn,$minn,$hourn,$dayn,$monn,$yearn,$weekn,$yeardayn,$isdst) = localtime(time); #SERVER在國內 $monn=$monn+1; if ($monn<10) {$monn="0$monn";} if ($dayn<10) {$dayn="0$dayn";} if ($hourn<10) {$hourn="0$hourn";} if ($minn<10) {$minn="0$minn";} if ($secn<10) {$secn="0$secn";} #y2k correction from here ################################################## $yearn+=1900; #end of y2k correction ################################################## $timen="$yearn/$monn/$dayn($hourn\:$minn\:$secn)"; $timew="$yearn$monn$dayn"; $no =$timen; $no =~ s/\/|\(|\)|\://g; $chktime=substr($no,0,10); $mydayname=substr($no,0,14); ################################################################ # Count Limit Days ################################################################ $timeo="$yearn/$monn/$dayn($hourn\:$minn\:$secn)"; $username=$V{'name'}; $useremail=$V{'email'}; $userid=$V{'id'}; $usertime=$timew; $kvv="$userid:$usertime:$o1:$o2:$o3:$o4:$s"; #&setCookie("mycomo", "$kvv", $expDate, $path, $domain); ################################################## #Main Program ################################################## print "Content-type: text/html\n\n"; @querys = split(/&/, $ENV{'QUERY_STRING'}); foreach (@querys) {($name,$value)=split(/=/, $_); &setv($name,$value);} read(STDIN, $buffer, $ENV{'CONTENT_LENGTH'}); @pairs = split(/&/, $buffer); foreach (@pairs) {($name,$value)=split(/=/, $_); &setv($name,$value);} $V{'id'} =~ s/\n|∥|"|<|>|\&|;| |\?|\.|\|//g; $V{'password'} =~ s/\n|∥|"|<|>|\&|;| |\?|\.|\|//g; $V{'oldpassword'}=~ s/\n|∥|"|<|>|\&|;| |\?|\.|\|//g; if ($V{'name'}) { if (length($V{'name'})>20) {&doagain("姓名長度不得超過 10 個中文字!");} if (length($V{'name'})<2) {&doagain("姓名長度不得小於 1 個中文字!");} } if ($V{'id'}) { if (length($V{'id'})>20) {&doagain("使用代號長度不得超過 20 個字!");} if (length($V{'id'})<=1) {&doagain("使用代號長度不得小於 2 個字!");} } if ($V{'password'}) { if (length($V{'password'})>10) {&doagain("密碼長度不得超過10!");} if (length($V{'password'})<2) {&doagain("密碼長度不得小於2!");} } if ($V{'email'}) { $emailcheck=&checkemail($V{'email'}); if ($emailcheck eq "wrongemail") {&doagain("錯誤的郵件地址 !");} } if ($V{'newemail'}) { $emailcheck=&checkemail($V{'newemail'}); if ($emailcheck eq "wrongemail") {&doagain("錯誤的郵件地址 !");} } if ($V{'chkemail'}) { $emailcheck=&checkemail($V{'chkemail'}); if ($emailcheck eq "wrongemail") {&doagain1("錯誤的郵件地址 !");} } ################################################## #General CGI Code ################################################## if ($V{'ac'} eq "master") {do 'masterdis.cgi'; &masterdis;} elsif ($V{'ac'} eq "join") {do 'first.cgi'; &first;} elsif ($V{'ac'} eq "new") {do 'first2.cgi'; &first2;} elsif ($V{'ac'} eq "check") {do 'first2.cgi'; ✓} elsif ($V{'ac'} eq "cc") {do 'profile.cgi'; &profile;} elsif ($V{'ac'} eq "cc2") {do 'profile2.cgi'; &profile2;} elsif ($V{'ac'} eq "login") {do 'correct.cgi'; &correct;} elsif ($V{'ac'} eq "man") {do 'master.cgi'; &master;} elsif ($V{'ac'} eq "gc") {do 'getcookie.cgi'; &gc;} elsif ($V{'ac'} eq "free1") {do 'lfree1.cgi'; &free;} elsif ($V{'ac'} eq "free2") {do 'lfree2.cgi'; &free;} elsif ($V{'ac'} eq "eout") {do 'eout.cgi'; &eout;} elsif ($V{'ac'} eq "dissendout") {do 'dissendout.cgi'; &dis;} elsif ($V{'ac'} eq "emailout") {do 'sendout.cgi'; &sendout;} elsif ($V{'ac'} eq "testemail") {do 'testemail.cgi'; &sendout;} elsif ($V{'ac'} eq "show") {do 'showmember.cgi'; &show;} elsif ($V{'ac'} eq "msearch") {do 'showmember.cgi'; &msearch;} elsif ($V{'ac'} eq "mm") {do 'modifymember.cgi'; &modify;} elsif ($V{'ac'} eq "mmm") {do 'mmm.cgi'; &modify;} elsif ($V{'ac'} eq "delmem") {do 'delmem.cgi'; &delmem;} exit 0; ################################################## #Read Input ################################################## sub setv { $_[1]=~ tr/+/ /; $_[1]=~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg; $_[1]=~ s///g; if ($allow_html != 1) { $_[1] =~ s/<([^>]|\n)*>//g; $_[1] =~ s/; close FOOTER; } sub newsdis{ $news="$serverpath/page/news.txt"; open(N_EWS, "$news") or die "can't open : $!"; local($/) = undef; $n_ews = ; $n_ews =~ s/\r/
/g; $n_ews =~ s/\n/
/g; close N_EWS; } ################################################## #Get Cookie ################################################## sub getCookies { # cookies are seperated by a semicolon and a space, this will split # them and return a hash of cookies local(@rawCookies) = split (/; /,$ENV{'HTTP_COOKIE'}); local(%cookies); foreach(@rawCookies){ if(/myemail/i){ ($key, $val) = split (/=/,$_); $cookies{$key} = $val; #$cookies{myemail} = $myval; ($username,$useremail,$userco,$useraddress,$usertel,$userfax,$useruse,$usersendname,$usersendemail,$usersex,$userage,$userother,$userothera,$userotherb,$userotherc,$userotherd,$userothere,$userotherf,$userotherg,$userotherh,$userotheri,) = split (/\:/, $val); } } return %cookies; } ################################################## #Get Cookie ################################################## sub setCookie { # end a set-cookie header with the word secure and the cookie will only # be sent through secure connections local($name, $value, $expiration, $path, $domain, $secure) = @_; print "Set-Cookie: "; #print ($name, "=", $value, "; expires=", $expiration, print ("mycomo=", $value, "; expires=", $expiration, "; path=", $path, "; domain=", $domain, "; ", $secure, "\n"); } ################################################## #Readtxtfile ################################################## sub readtxtfile { open(READTXTFILE,"$_[0]"); @readtxtfile=; close(READTXTFILE); return @readtxtfile; } ################################################## #Readtxtline ################################################## sub readtxtline { open(READTXTFILE,"$_[0]"); $readtxtline=; close(READTXTFILE); return $readtxtline; } ################################################## #Readdbmfile ################################################## sub readdbmfile { dbmopen(%READDBMFILE,$_[0],0666); %TEMPDBM=%READDBMFILE; dbmclose(%READDBMFILE); return %TEMPDBM; } ################################################## #Readdbmrecord ################################################## sub readdbmrecord { $TEMPRECORD=""; dbmopen(%READDBMFILE,$_[0],0666); if ($READDBMFILE{$_[1]}) { $TEMPRECORD=$READDBMFILE{$_[1]}; } dbmclose(%READDBMFILE); return $TEMPRECORD; } ################################################## #Writedbmrecord ################################################## sub writedbmrecord { dbmopen(%WRITEDBMFILE,$_[0],0666); $WRITEDBMFILE{$_[1]}=$_[2]; dbmclose(%WRITEDBMFILE); } ################################################## #Deletedbmrecord ################################################## sub deletedbmrecord { dbmopen(%DELETEDBMFILE,$_[0],0666); delete $DELETEDBMFILE{$_[1]}; dbmclose(%DELETEDBMFILE); } ################################################## #Checkempty ################################################## sub checkempty { local($chkval)=$_[0]; $chkval =~ s/ |
|\n//g; &error($_[1]) if ($chkval eq ""); } ################################################## #Error ################################################## sub error { &adv; &footdis; &newsdis; @errorpage=&readtxtfile("$pagehead$errorpage"); foreach (@errorpage) { $_ =~ s/\$errormessage/$_[0]/g; $_ =~ s/\$xip/$ip/g; $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$bannerhere/$bannerhere/g; $_ =~ s/\$foodis/$foodis/g; $_ =~ s/\$n_ews/$n_ews/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$password/$password/g; print; } exit 0; } sub doagain { &adv; &footdis; &newsdis; @errorpage=&readtxtfile("$pagehead$doagainpage"); foreach (@errorpage) { $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$errormessage/$_[0]/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$foodis/$foodis/g; $_ =~ s/\$n_ews/$n_ews/g; $_ =~ s/\$bannerhere/$bannerhere/g; print; } exit 0; } sub doagain1 { &adv; &footdis; &newsdis; @errorpage=&readtxtfile("$pagehead$doagain1page"); foreach (@errorpage) { $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$errormessage/$_[0]/g; #$_ =~ s/\$id/$V{'id'}/g; #$_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$chkemail/$V{'chkemail'}/g; $_ =~ s/\$foodis/$foodis/g; $_ =~ s/\$n_ews/$n_ews/g; $_ =~ s/\$bannerhere/$bannerhere/g; print; } exit 0; } sub checkemail { $at = index("$_[0]","@"); $dot = index("$_[0]","."); $len = length("$_[0]"); $comma = index("$_[0]",","); $space = index("$_[0]"," "); $lastToken = $len - rindex("$_[0]","."); $return = "rightemail"; if ($at<=0) {$return = "wrongemail";} elsif ($dot<=2) {$return = "wrongemail";} elsif ($comma!=-1) {$return = "wrongemail";} elsif ($space!=-1) {$return = "wrongemail";} elsif ($lastToken<2) {$return = "wrongemail";} elsif ($lastToken>3) {$return = "wrongemail";} return $return; } ################################################## #limitcount ################################################## sub limitcount{ if ($chkdep eq "v") {$timevar=$viplimitdays;} if ($chkdep eq "d") {$timevar=$_[0];} ($secn,$minn,$hourn,$dayn,$monn,$yearn,$weekn,$yeardayn,$isdst) = localtime(time+(86400*$timevar)+(3600*$time_miss)); $monn=$monn+1; if ($monn<10) {$monn="0$monn";} if ($dayn<10) {$dayn="0$dayn";} if ($hourn<10) {$hourn="0$hourn";} if ($minn<10) {$minn="0$minn";} if ($secn<10) {$secn="0$secn";} #y2k correction from here ################################################## $oldsign=19; if (($yearn != 99) && ($yearn > 99)) { $yearntest=$yearn-100; $yearn=2000+$yearntest; } if ($yearn == 99) { $yearn="$oldsign$yearn"; } #end of y2k correction ################################################## $timen="$yearn/$monn/$dayn($hourn\:$minn\:$secn)"; $timew="$yearn$monn$dayn"; $no =$timen; $no =~ s/\/|\(|\)|\://g; $limittime=substr($no,0,10); } ################################################## #Count Now ################################################## sub count_now{ ($secn,$minn,$hourn,$dayn,$monn,$yearn,$weekn,$yeardayn,$isdst) = localtime(time); #SERVER在國內 $monn=$monn+1; $sehour=$hourn; $semin=$minn; if ($monn<10) {$monn="0$monn";} if ($dayn<10) {$dayn="0$dayn";} if ($hourn<10) {$hourn="0$hourn";} if ($minn<10) {$minn="0$minn";} if ($secn<10) {$secn="0$secn";} #y2k correction from here ################################################## $oldsign=19; if (($yearn != 99) && ($yearn > 99)) { $yearntest=$yearn-100; $yearn=2000+$yearntest; } if ($yearn == 99) { $yearn="$oldsign$yearn"; } #end of y2k correction ################################################## $timen="$yearn/$monn/$dayn($hourn\:$minn\:$secn)"; $timew="$yearn$monn$dayn"; $starttime=$sehour; $starttime*=60; $starttime+=$semin; $sessiontime=$starttime; $sessiontime+=2; $no =$timen; $no =~ s/\/|\(|\)|\://g; $timenow=substr($no,0,10); $myuutime=substr($no,0,12); } ##################################### # get my session number ##################################### sub getmyno{ ($secn,$minn,$hourn,$dayn,$monn,$yearn,$weekn,$yeardayn,$isdst) = localtime(time); #SERVER在國內 $monn=$monn+1; $sehour=$hourn; $semin=$minn; if ($monn<10) {$monn="0$monn";} if ($dayn<10) {$dayn="0$dayn";} if ($hourn<10) {$hourn="0$hourn";} if ($minn<10) {$minn="0$minn";} if ($secn<10) {$secn="0$secn";} #y2k correction from here ################################################## $oldsign=19; if (($yearn != 99) && ($yearn > 99)) { $yearntest=$yearn-100; $yearn=2000+$yearntest; } if ($yearn == 99) { $yearn="$oldsign$yearn"; } #end of y2k correction ################################################## $timen="$yearn/$monn/$dayn($hourn\:$minn\:$secn)"; $timew="$yearn$monn$dayn"; $myno =$timen; $myno =~ s/\/|\(|\)|\://g; $s1=substr($myno,0,12); #$s1=$sehour; #$s1*=60; #$s1+=$semin; $s2=$s1; $s2+=2; } ################################################## #Find What Member Effect ################################################## sub find_what_effect{ %ORDERNUM=&readdbmfile("$filehead$orderidtoid"); %DEP=&readdbmfile("$filehead$iddepfile"); %ORDERCOM=&readdbmfile("$filehead$ordercomment"); %ORDEREFF=&readdbmfile("$filehead$ordereff"); %ORDERLIM=&readdbmfile("$filehead$orderlimit"); %ORDERPO=&readdbmfile("$filehead$orderpoint"); @orderid=keys %ORDERNUM; @orderid=sort @orderid; $V{'searchword'}="$V{'id'}"; if ($V{'searchword'}) { @temp=(); foreach (@orderid) { if ((&searchwordfororder($_)==1)) { push(@temp,$_); } } @orderid=@temp; } ################## BD Counting ########################################## if ($DEP{$V{'id'}} eq "d") { &count_now; foreach (@orderid) { if (($timenow > $ORDERLIM{$_}) && ($ORDEREFF{$_} ne 'ff')) { &writedbmrecord("$filehead$oldorder" ,$_,"$ORDERLIM{$_}"); &deletedbmrecord("$filehead$orderidtoid" ,$_); &deletedbmrecord("$filehead$ordereff" ,$_); } if (($timenow <= $ORDERLIM{$_}) && ($ORDEREFF{$_} ne 'ff')) { push (@mytemp,$_); $chkstill=1; } } if ($chkstill != 1) { &deletedbmrecord("$filehead$idlimit" ,$V{'id'}); &writedbmrecord("$filehead$idlimit" ,$V{'id'},"0"); &deletedbmrecord("$filehead$idcpass" ,$V{'id'}); } } #################### END Of BD ############################################# ################## AV Counting ########################################## if ($DEP{$V{'id'}} eq "v") { foreach (@orderid) { if (($ORDERPO{$_} <= $vip_per_min)) { &writedbmrecord("$filehead$oldorder" ,$_,"{$V{'id'}"); &deletedbmrecord("$filehead$orderidtoid" ,$_); &deletedbmrecord("$filehead$ordereff" ,$_); } if ($ORDERPO{$_} > $vip_per_min) { push (@mytemp,$_); $chkstill=1; } } if ($chkstill != 1) { &deletedbmrecord("$filehead$idlimit" ,$V{'id'}); &writedbmrecord("$filehead$idlimit" ,$V{'id'},0); &deletedbmrecord("$filehead$idcpass" ,$V{'id'}); } } #################### END Of AV ############################################# if (@mytemp) {@orderid=@mytemp;} @temp1=(); foreach $orderid(@orderid) { if ($ORDEREFF{$orderid} eq "vv") { push(@temp1,$ORDERCOM{$orderid}); push(@temp2,$ORDERPO{$orderid}); $temppoint=$temp2[0]; } } @tempworkid=(); foreach (@temp1) { @workid=split (/\./,$_); push (@tempworkid,@workid); } @realwork=(); $yy="@realwork"; foreach $tempworkid(@tempworkid) { if ($yy!~m/\b$tempworkid\b/i) { push (@realwork,$tempworkid); $yy="@realwork"; } } @realwork=sort @realwork; } ################################################## #find what eff again ################################################## ################################################# # Dispoint ################################################ ################################################## #Succ ################################################## sub succ { @succpage=&readtxtfile("$pagehead$succpage"); foreach (@succpage) { $_ =~ s/\$succmessage/$_[0]/g; $_ =~ s/\$message/$message/g; $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$xid/$xid/g; $_ =~ s/\$xpass/$xpass/g; $_ =~ s/\$manager/$manager/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$score/$V{'score'}/g; $_ =~ s/\$dep/$V{'dep'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$password/$noticepass/g; print; } } ################################################## #Join Succ ################################################## sub joinsucc { &adv; &footdis; &newsdis; if ($V{sex} eq '1') {$selected1='checked';} if ($V{sex} eq '2') {$selected2='checked';} @succpage=&readtxtfile("$pagehead$joinsuccpage"); foreach (@succpage) { $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$succmessage/$_[0]/g; $_ =~ s/\$bannerhere/$bannerhere/g; $_ =~ s/\$foodis/$foodis/g; $_ =~ s/\$n_ews/$n_ews/g; $_ =~ s/\$id/$userid/g; $_ =~ s/\$password/$noticepass/g; $_ =~ s/\$name/$username/g; $_ =~ s/\$email/$useremail/g; $_ =~ s/\$selected1/$selected1/g; $_ =~ s/\$selected2/$selected2/g; $_ =~ s/\$age/$V{'age'}/g; $_ =~ s/\$password/$password/g; print; } } ################################################## #Succ more ################################################## sub succmore { @succpage=&readtxtfile("$pagehead$succpage"); foreach (@succpage) { $_ =~ s/\$succmessage/$_[0]/g; $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$xid/$xid/g; $_ =~ s/\$xpass/$xpass/g; $_ =~ s/\$manager/$manager/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$score/$V{'score'}/g; $_ =~ s/\$dep/$V{'dep'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$password/$noticepass/g; print; } exit 0; } ################################################## #top Succ ################################################## sub topsucc { @succpage=&readtxtfile("$pagehead$topsuccpage"); foreach (@succpage) { $_ =~ s/\$succmessage/$_[0]/g; $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$xid/$V{'manageid'}/g; $_ =~ s/\$xpass/$V{'managepassword'}/g; $_ =~ s/\$manager/$manager/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$score/$V{'score'}/g; $_ =~ s/\$dep/$V{'dep'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$password/$noticepass/g; print; } exit 0; } ################################################## #top Succ ################################################## sub topsucc_gen { @succpage=&readtxtfile("$pagehead$topsucc_genpage"); foreach (@succpage) { $_ =~ s/\$succmessage/$_[0]/g; $_ =~ s/\$cgiurl/$cgiurl/g; $_ =~ s/\$xid/$V{'manageid'}/g; $_ =~ s/\$xpass/$V{'managepassword'}/g; $_ =~ s/\$manager/$manager/g; $_ =~ s/\$name/$V{'name'}/g; $_ =~ s/\$score/$V{'score'}/g; $_ =~ s/\$dep/$V{'dep'}/g; $_ =~ s/\$email/$V{'email'}/g; $_ =~ s/\$id/$V{'id'}/g; $_ =~ s/\$password/$noticepass/g; print; } exit 0; } ################################################## #Banner ################################################## sub adv { $image_url = "/ximg"; $default_image_list = "$serverpath/vdata/myadv.list"; $location_of_cgi_lib = "/home/comoman/httpd/cgi-bin/cgi-lib.pl"; srand; require "$location_of_cgi_lib"; $image_database = "$default_image_list"; open (IMAGE_DATABASE, "$image_database") || &CgiDie ("Can't open $image_database"); while () { ($image, $url , $kk, $hh , $owner) = split (/\|/, $_); chop $url; push (@imagelist, $image); push (@url_list, $url); push (@kk_list, $kk); push (@hh_list, $hh); push (@owner_list, $owner); } close (IMAGE_DATABSE); $random_number = int(rand(@imagelist)); $random_image = $imagelist[$random_number]; $random_url = $url_list[$random_number]; $random_kk = $kk_list[$random_number]; $random_hh = $hh_list[$random_number]; $random_owner = $owner_list[$random_number]; $bannerhere .=" $random_kk"; } ################################################## #Check manage id password (2) ################################################## sub chkme{ $topuser="open"; $guser="use"; $cryptpass=$_[1];; $temppassword=&readdbmrecord("$filehead$passwordfile",$_[0]); $tempscore=&readdbmrecord("$filehead$scorefile",$_[0]); if (($_[0]) && ($temppassword eq $cryptpass) && ($tempscore=~m/(m|$topuser|$guser)/i)) { $return="&manageid=$_[0]&managepassword=$_[1]&score=$_[3]"; } return $return; } ################################################## #Check Member Id And Password ################################################## sub chkid_password_1{ $tempchkid=&readdbmrecord("$filehead$idnamefile",$V{'id'}); if (!$tempchkid) {&error("您使用的 ID 並不存在!");} $temppassword=&readdbmrecord("$filehead$passwordfile",$V{'id'}); if ($V{'password'} ne $temppassword) {&error("密碼不符,無權使用!");} if ($tempchkid && ($V{'password'} eq $temppassword)) { $return="&id=$_[0]&password=$_[1]"; } return $return; } ################################################## #Check Member Id And Password ################################################## sub chkid_password_3{ $tempchkid=&readdbmrecord("$filehead$idnamefile",$V{'id'}); if (!$tempchkid) {&error("您使用的 ID 並不存在!");} $temppassword=&readdbmrecord("$filehead$passwordfile",$V{'id'}); if ($V{'oldpassword'} ne $temppassword) {&error("密碼不符,無權使用!");} $tempdep=&readdbmrecord("$filehead$iddepfile",$V{'id'}); if ($tempdep eq "v") { $tempscoreorg=&readdbmrecord("$filehead$vscorefile",$V{'id'}); } if ($tempdep eq "d") { %TSCORE=&readdbmfile("$filehead$dscoreorg$V{'id'}"); @sid=keys %TSCORE; $tempscoreorg="@sid"; } if ($tempchkid && ($V{'password'} eq $temppassword) && $tempscoreorg) { $return="&id=$_[0]&password=$_[1]"; } return $return; } ################################################## #Check Member Id And Old Password ################################################## sub chkid_password_2{ $tempchkid=&readdbmrecord("$filehead$idnamefile",$V{'id'}); if (!$tempchkid) {&error("您使用的 ID 並不存在!");} $temppassword=&readdbmrecord("$filehead$passwordfile",$V{'id'}); if ($V{'oldpassword'} ne $temppassword) {&error("密碼不符,無權使用!");} $tempdep=&readdbmrecord("$filehead$iddepfile",$V{'id'}); if ($V{'needtoid'} eq "") {&error("無任何可啟用的作業!");} if ($tempchkid && ($V{'oldpassword'} eq $temppassword) && $V{'needtoid'}) { $return="&id=$_[0]&password=$_[1]"; } return $return; } ################################################## #Check Member Id And Old Password ################################################## sub chkid_password_4{ $tempchkid=&readdbmrecord("$filehead$idnamefile",$V{'id'}); if (!$tempchkid) {&error("您使用的 ID 並不存在!");} $temppassword=&readdbmrecord("$filehead$passwordfile",$V{'id'}); if ($V{'oldpassword'} ne $temppassword) {&error("密碼不符,無權使用!");} if ($tempchkid && ($V{'oldpassword'} eq $temppassword) ) { $return="&id=$_[0]&password=$_[1]"; } return $return; } ################################################## #cp do ################################################## sub cpdo{ $oldpass=$_[1]; $noticepass=$_[2]; $newpass=crypt($noticepass,NB); &deletedbmrecord("$filehead$passwordfile",$_[0]); &writedbmrecord("$filehead$passwordfile",$_[0],$newpass); &deletedbmrecord("$filehead$idcpass",$_[0]); &writedbmrecord("$filehead$idcpass",$_[0],$timew); } ################################################## #cpemail do ################################################## sub cpemaildo{ $oldemail=$_[1]; $noticeemail=$_[2]; &deletedbmrecord("$filehead$idemailfile",$_[0]); &writedbmrecord("$filehead$idemailfile",$_[0],$noticeemail); } ################################################## #Check manage id password ################################################## sub checkmanageidpassword { local($return)=""; #$managefile="f:/users/myyankee/www/htdocs/member/page/xfile.conf"; $managefile="d:/inetpub/wwwroot/member/page/xfile.conf"; open (XFILE, "$managefile"); foreach () { if (/$_[0]/i){ ($xid, $xpass,$manager) = split (/\|/, $_); chop $manager; $manage{"$xid"} = "$xpass"; } close (XFILE); } if (($_[0] ne "") && ($_[1] ne "")) { if (($manage{$_[0]}) && ($manage{$_[0]} eq $_[1])) { $return="&manageid=$_[0]&managepassword=$_[1]"; } } return $return; } ################################################## #Check MASTER id password ################################################## sub checktopmaster { $topuser="open"; $cryptpass=$_[1];; $temppassword=&readdbmrecord("$filehead$passwordfile",$_[0]); $tempscore=&readdbmrecord("$filehead$scorefile",$_[0]); $tempdep=&readdbmrecord("$filehead$depfile",$_[0]); if (($_[0]) && ($temppassword eq $cryptpass) && ($tempscore=~m/$topuser/i)) { $return="&manageid=$_[0]&managepassword=$_[1]"; } return $return; } ################################################## #Check manage id password super again ################################################## sub pc32chkmasteragn { local($return)=""; #$superfile="f:/users/myyankee/www/htdocs/member/page/xxfile.conf"; $superfile="d:/inetpub/wwwroot/member/page/xxfile.conf"; open (XFILE, "$superfile"); foreach () { if (/super/i){ ($xid, $xpass,$manager) = split (/\|/, $_); $manage{"$xid"} = "$xpass"; chop $manager; } close (XFILE); } if (($_[0] ne "") && ($_[1] ne "")) { if (($manage{$_[0]}) && ($manage{$_[0]} eq $_[1]) && ($_[2] eq $manager )) { $return="&manageid=$_[0]&managepassword=$_[1]&manager=$_[2]"; } } return $return; } ################################################## #check manage id password super ################################################## sub pc32chkmaster { local($return)=""; #$superfile="f:/users/myyankee/www/htdocs/member/page/xxfile.conf"; $superfile="d:/inetpub/wwwroot/member/page/xxfile.conf"; open (XFILE, "$superfile"); foreach () { if (/super/i){ ($xid, $xpass,$manager) = split (/\|/, $_); $manage{"$xid"} = "$xpass"; chop $manager; } close (XFILE); } if (($_[0] ne "") && ($_[1] ne "")) { $_[1]=crypt($_[1],NB); if (($manage{$_[0]}) && ($manage{$_[0]} eq $_[1]) && ($manager eq 'top')) { $return="&manageid=$_[0]&managepassword=$_[1]"; } } return $return; } ################################################## #Check Referers ################################################## sub chkrefer { @referers = ('210.59.231.40','www.como.com.tw','www.comoo.com'); local($check_referer) = 0; if ($ENV{'HTTP_REFERER'}) { foreach $referer (@referers) { if ($ENV{'HTTP_REFERER'} =~ m|https?://([^/]*)$referer|i) { $check_referer = 1; last; } } } #else { # $check_referer = 1; #} if ($check_referer != 1) { &error("不合法的使用!"); } } ################################################## #check manage id password super cp ################################################## sub s32cp { local($return)=""; #$superfile="f:/users/myyankee/www/htdocs/member/page/xxfile.conf"; $superfile="d:/inetpub/wwwroot/member/page/xxfile.conf"; open (XFILE, "$superfile"); foreach () { if (/super/i){ ($xid, $xpass,$manager) = split (/\|/, $_); $manage{"$xid"} = "$xpass"; chop $manager; } close (XFILE); } if (($_[0] ne "") && ($_[1] ne "")) { $_[1]=crypt($_[1],NB); if (($manage{$_[0]}) && ($manage{$_[0]} eq $_[1]) && ($manager eq 'top')) { $return="&manageid=$_[0]&managepassword=$_[1]"; $oldpass=$V{'managepassword'}; $newpass1=$V{'newpass'}; $newpass =crypt($V{'newpass'},NB); #$superfile="f:/users/myyankee/www/htdocs/member/page/xxfile.conf"; #$newfile="f:/users/myyankee/www/htdocs/member/page/xxfile.temp"; $superfile="d:/inetpub/wwwroot/member/page/xxfile.conf"; $newfile="d:/inetpub/wwwroot/member/page/xxfile.temp"; $record="$_[0]|$newpass|top"; open (WRITE,">$newfile"); open (XFILE,"$superfile"); foreach () { if(/super/){ print WRITE "$record\n"; } else { print WRITE "$_"; } close(XFILE); close(WRITE); } #$t1='f:/users/myyankee/www/htdocs/member/page/xxfile.temp'; #$t2='f:/users/myyankee/www/htdocs/member/page/xxfile.conf'; $t1='d:/inetpub/wwwroot/member/page/xxfile.temp'; $t2='d:/inetpub/wwwroot/member/page/xxfile.conf'; open (kk,"d:/inetpub/wwwroot/member/page/xxfile.temp"); open (kk1,">d:/inetpub/wwwroot/member/page/xxfile.conf"); while(){ print kk1 "$_"; } close(kk); close(kk1); } } return $return; } sub searchwordfororder { $return=0; if ($ORDERNUM{$_[0]} =~m/\b$V{'searchword'}\b/i) {$return=1;} return $return; } sub replaceit{ if ($_ =~m /$kk/) { $_ =~ s/\$replace/selected/g; } else { $_ =~ s/\$replace//g; } } sub chkyou{ $tempname=&readdbmrecord("$filehead$idnamefile",$V{'id'}); $tempdep=&readdbmrecord("$filehead$iddepfile",$V{'id'}); $templimit=&readdbmrecord("$filehead$idlimit",$V{'id'}); if ($tempdep eq "v") { $tempscore=&readdbmrecord("$filehead$vscorefile",$V{'id'}); $tempscoreorg=&readdbmrecord("$filehead$vscoreorg",$V{'id'}); } &count_now; if (($tempdep eq "v") && ($tempscore eq "") && $tempscoreorg) {&error("您的帳戶資料尚未確認!");} if (($tempdep eq "d") && ($timenow > $templimit) ) {&error("您先前購買的天數已使用完畢!");} if (($tempdep eq "d") && ($templimit eq "")) {&error("您的帳戶資料尚未確認!");} if (($tempdep eq "v") && ($tempscore <= 0) && $tempscoreorg) {&error("您的帳戶資料尚未確認!");} if (($tempdep eq "v") && ($timenow > $templimit) && (!$tempscoreorg)) {&error("您的帳戶已無點數可使用!");} if (($tempdep eq "v") && ($tempscore < $vip_per_min) && (!$tempscoreorg)) {&error("您的帳戶點數已使用完畢,需續購方可繼續使用!");} } use Socket; sub sendmail{ my ($from, $reply, $to, $smtp, $subject, $mailmessage) = @_; $from=$_[1]; $reply=$from; $to=$_[0]; $subject=$_[3]; $mailmessage=$_[2]; $smtp="210.59.231.40"; my ($fromaddr) = $from; my ($replyaddr) = $reply; $to =~ s/[ \t]+/, /g; # pack spaces and add comma $fromaddr =~ s/.*<([^\s]*?)>/$1/; # get from email address $replyaddr =~ s/.*<([^\s]*?)>/$1/; # get reply email address $replyaddr =~ s/^([^\s]+).*/$1/; # use first address $mailmessage =~ s/^\./\.\./gm; # handle . as first character $mailmessage =~ s/\r\n/\n/g; # handle line ending $mailmessage =~ s/\n/\r\n/g; $smtp =~ s/^\s+//g; # remove spaces around $smtp $smtp =~ s/\s+$//g; if (!$to) { return -8; } my($proto) = (getprotobyname('tcp'))[2]; my($port) = (getservbyname('smtp', 'tcp'))[2]; my($smtpaddr) = ($smtp =~ /^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/) ? pack('C4',$1,$2,$3,$4) : (gethostbyname($smtp))[4]; if (!defined($smtpaddr)) { return -1; } if (!socket(S, AF_INET, SOCK_STREAM, $proto)) { return -2; } if (!connect(S, pack('Sna4x8', AF_INET, $port, $smtpaddr))) { return -3; } my($oldfh) = select(S); $| = 1; select($oldfh); $_ = ; if (/^[45]/) { close S; return -4; } print S "helo localhost\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } print S "mail from: <$fromaddr>\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } foreach (split(/, /, $to)) { print S "rcpt to: <$_>\r\n"; $_ = ; if (/^[45]/) { close S; return -6; } } print S "data\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } print S "To: $to\r\n"; print S "From: $from\r\n"; print S "Reply-to: $replyaddr\r\n" if $replyaddr; print S "X-Mailer: Windows NT Sendmail build 1.98 By YankeeNET\r\n"; print S "Subject: $subject\r\n\r\n"; print S "$mailmessage"; print S "\r\n.\r\n"; $_ = ; if (/^[45]/) { close S; return -7; } print S "quit\r\n"; $_ = ; close S; return; } sub sendmail4 { my ($from, $reply, $to, $smtp, $subject, $mailmessage) = @_; $from=$_[1]; $reply=$from; $to=$_[0]; $subject=$_[3]; $mailmessage=$_[2]; $ccto=$_[4]; my ($fromaddr) = $from; my ($replyaddr) = $reply; $to =~ s/[ \t]+/, /g; # pack spaces and add comma $fromaddr =~ s/.*<([^\s]*?)>/$1/; # get from email address $replyaddr =~ s/.*<([^\s]*?)>/$1/; # get reply email address $replyaddr =~ s/^([^\s]+).*/$1/; # use first address $ownmessage =~ s/^\./\.\./gm; # handle . as first character $mailmessage =~ s/\r\n/\n/g; # handle line ending $mailmessage =~ s/\n/\r\n/g; $smtp =~ s/^\s+//g; # remove spaces around $smtp $smtp =~ s/\s+$//g; if (!$to) { return -8; } my($proto) = (getprotobyname('tcp'))[2]; my($port) = (getservbyname('smtp', 'tcp'))[2]; my($smtpaddr) = ($smtp =~ /^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/) ? pack('C4',$1,$2,$3,$4) : (gethostbyname($smtp))[4]; if (!defined($smtpaddr)) { return -1; } if (!socket(S, AF_INET, SOCK_STREAM, $proto)) { return -2; } if (!connect(S, pack('Sna4x8', AF_INET, $port, $smtpaddr))) { return -3; } my($oldfh) = select(S); $| = 1; select($oldfh); $_ = ; if (/^[45]/) { close S; return -4; } print S "helo localhost\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } print S "mail from: <$fromaddr>\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } foreach (split(/, /, $to)) { print S "rcpt to: <$_>\r\n"; $_ = ; if (/^[45]/) { close S; return -6; } } print S "data\r\n"; $_ = ; if (/^[45]/) { close S; return -5; } print S "To: $to\r\n"; print S "Cd: $ccto\r\n"; print S "From: $from\r\n"; print S "Reply-to: $replyaddr\r\n" if $replyaddr; print S "X-Mailer: Windows NT Sendmail build 1.98 By YankeeNET\r\n"; print S "Subject: $subject\r\n\r\n"; print S "$mailmessage"; print S "\r\n.\r\n"; $_ = ; if (/^[45]/) { close S; return -7; } print S "quit\r\n"; $_ = ; close S; return; } sub sendemail_to_user{ $from=$masteremail; $to=$_[1]; $username=$_[0]; $mastername=$mastername; $userid=$_[2]; $userpass=$_[4]; $usertime=$_[3]; $subject=$_[5]; $mailprog = '/usr/sbin/sendmail'; $page="$serverpath/mailpage/joincomo.txt"; open(MAIL,"|$mailprog -t"); print MAIL "To: $to\n"; print MAIL "From: $from \n"; print MAIL "Subject: $subject\n\n"; open (PAGE,$page); local($/) = undef; $template = ; close(PAGE); $sendtime=localtime (time),; $template =~ s/\$username/$username/g; $template =~ s/\$userid/$userid/g; $template =~ s/\$sendtime/$timen/g; $template =~ s/\$userpass/$userpass/g; print MAIL "-" x 75 . "\n\n"; print MAIL "$template\n\n"; print MAIL "-" x 75 . "\n\n"; print MAIL "$mastername\n"; print MAIL "http://www.como.com.tw\n"; print MAIL "-" x 75 . "\n\n"; close (MAIL); }