# coding=utf-8 # --------------------------------------------------------------------------------- # MW-Linux面板 # --------------------------------------------------------------------------------- # copyright (c) 2018-∞(https://github.com/midoks/mdserver-web) All rights reserved. # --------------------------------------------------------------------------------- # Author: midoks # --------------------------------------------------------------------------------- # --------------------------------------------------------------------------------- # 工具箱 # --------------------------------------------------------------------------------- import sys import os import json import time import re web_dir = os.getcwd() + "/web" os.chdir(web_dir) sys.path.append(web_dir) from utils.firewall import Firewall as MwFirewall import core.mw as mw import thisdb INIT_DIR = "/etc/rc.d/init.d" if mw.isAppleSystem(): INIT_DIR = mw.getPanelDir() + "/scripts/init.d" INIT_CMD = INIT_DIR + "/mw" def mw_input_cmd(msg): if sys.version_info[0] == 2: in_val = raw_input(msg) else: in_val = input(msg) return in_val def getRemainLen(cmd, max_length=100): cmd_len = len(cmd) cmd_u8_len = len(cmd.encode('utf-8')) return max_length-int((cmd_u8_len - cmd_len)/2+cmd_len) def mwcli(mw_input=0): panel_dir = mw.getPanelDir() raw_tip = "========================================================================" if not mw_input: print("========================mdserver-web cli tools==========================") cmd_list = [ '(1) 重启面板服务', '(2) 停止面板服务', '(3) 启动面板服务', '(4) 重载面板服务', '(5) 修改面板IP', '(6) 修改面板端口', '(7) 关闭安全入口', '(10) 查看面板默认信息', '(11) 修改面板密码', '(12) 修改面板用户名', '(13) 显示面板错误日志', '(14) 关闭面板访问', '(15) 开启面板访问', '(20) 关闭BasicAuth认证', '(21) 解除域名绑定', '(22) 解除面板SSL绑定', '(23) 开启IPV6支持', '(24) 关闭IPV6支持', '(25) 开启防火墙SSH端口', '(26) 关闭二次验证', '(27) 查看防火墙信息', '(28) 自动识别防火墙端口到面板', '(29) 自动识别配置站点信息', '(100) 开启PHP52显示', '(101) 关闭PHP52显示', '(200) 切换Linux系统软件源', '(201) 简单速度测试', '(202) SSH终端管理', '(0) 取消' ] cmd_list_num = len(cmd_list) for index in range(cmd_list_num): cmd = cmd_list[index] if index % 2 == 0: if index == (cmd_list_num-1): print(cmd) else: print(cmd + " " * getRemainLen(cmd, 40), end="") if index % 2 == 1: print(cmd) print(raw_tip) try: mw_input = input("请输入命令编号:") if sys.version_info[0] == 3: mw_input = int(mw_input) except: mw_input = 0 nums = [ 1, 2, 3, 4, 5, 6, 7, 10, 11, 12, 13, 14, 15, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 100, 101, 200, 201, 202 ] if not mw_input in nums: print(raw_tip) print("已取消!") exit() if mw_input == 1: os.system(INIT_CMD + " restart") elif mw_input == 2: os.system(INIT_CMD + " stop") elif mw_input == 3: os.system(INIT_CMD + " start") elif mw_input == 4: os.system(INIT_CMD + " reload") elif mw_input == 5: in_ip = mw_input_cmd("请输入设置的面板IP:") in_ip = in_ip.strip() ip_text = panel_dir + '/data/iplist.txt' if not mw.isVaildIp(in_ip): mw.echoInfo("【"+in_ip+"】: IP不合法") return mw.writeFile(ip_text, in_ip) thisdb.setOption('server_ip', in_ip) mw.echoInfo("设置面板IP: " + in_ip) elif mw_input == 6: in_port = mw_input_cmd("请输入新的面板端口:") in_port_int = int(in_port.strip()) if in_port_int < 65536 and in_port_int > 0: MwFirewall.instance().addAcceptPort(in_port, 'WEB面板[TOOLS修改]', 'port') panel_port = panel_dir + '/data/port.pl' mw.writeFile(panel_port, in_port) os.system(INIT_CMD + " restart_panel") os.system(INIT_CMD + " default") else: mw.echoInfo("端口范围在0-65536之间") return elif mw_input == 7: thisdb.setOption('admin_path', '') mw.echoInfo("关闭安全入口成功!") elif mw_input == 10: os.system(INIT_CMD + " default") elif mw_input == 11: input_pwd = mw_input_cmd("请输入新的面板密码:") if len(input_pwd.strip()) < 5: mw.echoInfo("错误,密码长度不能小于5位") return set_panel_pwd(input_pwd.strip(), True) elif mw_input == 12: input_user = mw_input_cmd("请输入新的面板用户名(>=5位):") set_panel_username(input_user.strip()) elif mw_input == 13: os.system('tail -100 ' + panel_dir + '/logs/panel_error.log') elif mw_input == 14: admin_close = thisdb.getOption('admin_close') if admin_close == 'no': thisdb.setOption('admin_close', 'yes') mw.echoInfo("关闭面板访问成功!") else: mw.echoInfo("已关闭面板访问!") elif mw_input == 15: admin_close = thisdb.getOption('admin_close') if admin_close == 'yes': thisdb.setOption('admin_close', 'no') mw.echoInfo("开启面板访问成功!") else: mw.echoInfo("已开启面板访问!") elif mw_input == 20: basic_auth = thisdb.getOptionByJson('basic_auth', default={'open':False}) if basic_auth['open']: basic_auth['open'] = False thisdb.setOption('basic_auth', json.dumps(basic_auth)) os.system(INIT_CMD + " restart") mw.echoInfo("关闭basic_auth成功") elif mw_input == 21: panel_domain = thisdb.getOption('panel_domain', default='') if panel_domain != '': thisdb.setOption('panel_domain', '') os.system(INIT_CMD + " unbind_domain") mw.echoInfo("解除域名绑定成功") else: mw.echoInfo("面板未绑定域名!") elif mw_input == 22: panel_ssl = thisdb.getOptionByJson('panel_ssl', default={'open':False}) if panel_ssl['open']: panel_ssl['open'] = False thisdb.setOption('panel_ssl', json.dumps(panel_ssl)) os.system(INIT_CMD + " unbind_ssl") mw.echoInfo("解除面板SSL绑定成功") elif mw_input == 23: listen_ipv6 = panel_dir + '/data/ipv6.pl' if not os.path.exists(listen_ipv6): mw.writeFile(listen_ipv6, 'True') os.system(INIT_CMD + " restart") mw.echoInfo("开启IPv6支持了") else: mw.echoInfo("已开启IPv6支持!") elif mw_input == 24: listen_ipv6 = panel_dir + '/data/ipv6.pl' if not os.path.exists(listen_ipv6): mw.echoInfo("已关闭IPv6支持!") else: os.remove(listen_ipv6) os.system(INIT_CMD + " restart") mw.echoInfo("关闭IPv6支持了") elif mw_input == 25: open_ssh_port() mw.echoInfo("已开启!") elif mw_input == 26: two_step_verification = thisdb.getOptionByJson('two_step_verification', default={'open':False}) if two_step_verification['open']: two_step_verification['open'] = False thisdb.setOption('two_step_verification', json.dumps(two_step_verification)) mw.echoInfo("关闭二次验证成功!") else: mw.echoInfo("二次验证已关闭!") elif mw_input == 27: cmd = 'which ufw' run_cmd = False find_cmd = mw.execShell(cmd) if find_cmd[0].strip() != '': run_cmd = True os.system('ufw status') cmd = 'which firewall-cmd' find_cmd = mw.execShell(cmd) if find_cmd[0].strip() != '': run_cmd = True os.system('firewall-cmd --list-all') if not run_cmd: mw.echoInfo("未检测到防火墙!") elif mw_input == 28: MwFirewall.instance().aIF() mw.echoInfo("执行自动识别防火墙端口到面板成功!") elif mw_input == 29: from utils.site_reflect import parse as MwParse MwParse() mw.echoInfo("自动识别配置站点信息成功!") elif mw_input == 100: php_conf = panel_dir + '/plugins/php/info.json' if os.path.exists(php_conf): cont = mw.readFile(php_conf) cont = re.sub("\"53\"", "\"52\",\"53\"", cont) cont = re.sub("\"5.3.29\"", "\"5.2.17\",\"5.3.29\"", cont) mw.writeFile(php_conf, cont) mw.echoInfo("执行PHP52显示成功!") elif mw_input == 101: php_conf = panel_dir + '/plugins/php/info.json' if os.path.exists(php_conf): cont = mw.readFile(php_conf) cont = re.sub("\"52\",", "", cont) cont = re.sub("\"5.2.17\",", cont) mw.writeFile(php_conf, cont) mw.echoInfo("执行PHP52隐藏成功!") elif mw_input == 200: os.system("bash <(curl -sSL https://linuxmirrors.cn/main.sh)") # os.system(INIT_CMD + " mirror") elif mw_input == 201: os.system('curl -Lso- bench.sh | bash') elif mw_input == 202: package = mw.getPanelDir()+'/plugins' dst_plugin = mw.getServerDir() + "/webssh" if not os.path.exists(dst_plugin): mw.echoInfo("未安装!") exit(1) if not package in sys.path: sys.path.append(package) from webssh.index import App obj = App() data = obj.get_server_list() data = json.loads(data) if data['status']: wlist = data['data'] wlist_len = len(wlist) if wlist_len == 0: mw.echoInfo("SSH终端管理,数据为空!") exit(1) if len(sys.argv) == 4: pos = int(sys.argv[3]) if pos >= wlist_len: mw.echoInfo("SSH终端管理,超过限制!") exit(1) dst_data = wlist[pos] tmp_host = dst_data["host"] info = obj.get_server_by_host_data(tmp_host) pp_info = tmp_host+"|"+info["port"]+"|"+info['username']+"|"+info['password']+"" print(pp_info) exit(0) mw.echoInfo("请选择:") for x in range(wlist_len): dst_data = wlist[x] tag = dst_data['host'] if dst_data['ps'] != "": tag = dst_data['ps'] print(str(x) +") " + tag) def open_ssh_port(): find_ssh_port_cmd = "cat /etc/ssh/sshd_config | grep '^Port \\d*' | tail -1" cmd_data = mw.execShell(find_ssh_port_cmd) ssh_port = cmd_data[0].replace("Port ", '').strip() if ssh_port == '': ssh_port = '22' mw.echoInfo("SSH端口: "+ str(ssh_port)) MwFirewall.instance().addAcceptPort(ssh_port, 'SSH远程管理服务', 'port') return True def set_panel_pwd(password, ncli=False): info = thisdb.getUserByRoot() thisdb.setUserByRoot(password=password) if ncli: mw.echoInfo("username: " + info['name']) mw.echoInfo("password: " + password) else: print(username) def show_panel_pwd(): # 面板密码展示 info = thisdb.getUserByRoot() defailt_pwd_file = mw.getPanelDir()+'/data/default.pl' pwd = '' if os.path.exists(defailt_pwd_file): pwd = mw.readFile(defailt_pwd_file).strip() if mw.md5(pwd) == info['password']: mw.echoInfo('password: ' + pwd) return print("*-password has been changed!") def show_panel_adminpath(): admin_path = thisdb.getOption('admin_path') if admin_path == '': print('/login') else: print('/'+admin_path) def set_panel_username(username=None): # 随机面板用户名 if username: if len(username) < 5: mw.echoInfo("错误,用户名长度不能少于5位") return if username in ['admin', 'root']: mw.echoInfo("错误,不能使用过于简单的用户名") return thisdb.setUserByRoot(name=username) mw.echoInfo("username: %s" % username) return info = thisdb.getUserByRoot() if info['name'] == 'admin': username = mw.getRandomString(8).lower() thisdb.setUserByRoot(name=username) mw.echoInfo('username: ' + info['name']) def getServerIp(): version = sys.argv[2] # ip = mw.execShell( # "curl --insecure -{} -sS --connect-timeout 5 -m 60 https://v6r.ipip.net/?format=text".format(version)) ip = mw.execShell( "curl --insecure -{} -sS --connect-timeout 5 -m 60 https://ip.cachecha.com/?format=text".format(version)) # print(ip[0]) return ip[0] def getPanelSslType(): scheme = 'http' panel_ssl = thisdb.getOptionByJson('panel_ssl', default={'open':False}) if panel_ssl['open']: scheme = 'https' return scheme def getPanelBindDomain(): return thisdb.getOption('panel_domain', default='') def main(): if len(sys.argv) == 1: print('ERROR: Parameter error!') exit(-2) method = sys.argv[1] if method == 'panel': set_panel_pwd(sys.argv[2]) elif method == 'username': if len(sys.argv) > 2: set_panel_username(sys.argv[2]) else: set_panel_username() elif method == 'password': show_panel_pwd() elif method == 'test': thisdb.getOption('admin_path') elif method == 'admin_path': show_panel_adminpath() elif method == 'getServerIp': print(getServerIp()) elif method == 'panel_ssl_type': print(getPanelSslType()) elif method == 'panel_bind_domain': print(getPanelBindDomain()) elif method == "cli": clinum = 0 try: if len(sys.argv) > 2: clinum = int(sys.argv[2]) if sys.argv[2][:6] else sys.argv[2] except: clinum = sys.argv[2] mwcli(clinum) else: print('ERROR: Parameter error') if __name__ == "__main__": main()