Merge branch 'main' into conf-updates

jaapmarcus · jaapmarcus · commit c7b6b6c9a9f6 · 2021-05-23T11:01:34.000+02:00
Resolve conflict
diff --git a/bin/v-delete-web-domain b/bin/v-delete-web-domain
@@ -67,7 +67,7 @@ fi
 
 # Deleting web backend
 if [ ! -z "$WEB_BACKEND" ]; then
-    $BIN/v-delete-web-domain-backend $user $domain $restart
+    $BIN/v-delete-web-domain-backend $user $domain 'no'
 fi
 
 # Deleting vhost configuration
@@ -142,10 +142,14 @@ fi
 $BIN/v-restart-web $restart
 check_result $? "Web restart failed" >/dev/null
 
-# Restartinh proxy server
+# Restarting proxy server
 $BIN/v-restart-proxy $restart
 check_result $? "Proxy restart failed" >/dev/null
 
+# Restarting backend server
+$BIN/v-restart-web-backend $restart
+check_result $? "Backend restart failed" >/dev/null
+
 # Logging
 $BIN/v-log-action "$user" "Info" "Web" "Deleted web domain (Name: $domain)."
 log_event "$OK" "$ARGUMENTS"
diff --git a/install/deb/firewall/ipset/blacklist.sh b/install/deb/firewall/ipset/blacklist.sh
@@ -8,7 +8,6 @@ BLACKLISTS=(
     "https://www.projecthoneypot.org/list_of_ips.php?t=d&rss=1" # Project Honey Pot Directory of Dictionary Attacker IPs
     "https://check.torproject.org/cgi-bin/TorBulkExitList.py?ip=1.1.1.1"  # TOR Exit Nodes
     "https://www.maxmind.com/en/high-risk-ip-sample-list" # MaxMind GeoIP Anonymous Proxies
-    "http://danger.rulez.sk/projects/bruteforceblocker/blist.php" # BruteForceBlocker IP List
     "https://www.spamhaus.org/drop/drop.lasso" # Spamhaus Don't Route Or Peer List (DROP)
     "https://cinsscore.com/list/ci-badguys.txt" # C.I. Army Malicious IP List
     "https://lists.blocklist.de/lists/all.txt" # blocklist.de attackers
diff --git a/install/deb/templates/mail/nginx/default_rainloop.stpl b/install/deb/templates/mail/nginx/default_rainloop.stpl
@@ -11,6 +11,11 @@ ssl_certificate_key %ssl_key%;
 ssl_stapling on;
 ssl_stapling_verify on;
 
+location ^~ /data {
+    deny all;
+    return 404;
+}
+
 location ~ ^/(README.md|config|temp|logs|bin|SQL|INSTALL|LICENSE|CHANGELOG|UPGRADING)$ {
     deny all;
     return 404;
diff --git a/install/deb/templates/mail/nginx/default_rainloop.tpl b/install/deb/templates/mail/nginx/default_rainloop.tpl
@@ -13,7 +13,12 @@ location ~ /\.(?!well-known\/) {
     return 404;
 }
 
-location ~ /data/ {
+location ^~ /data {
+    deny all;
+    return 404;
+}
+
+location ~ ^/(README.md|config|temp|logs|bin|SQL|INSTALL|LICENSE|CHANGELOG|UPGRADING)$ {
     deny all;
     return 404;
 }
diff --git a/install/deb/templates/mail/nginx/rainloop.stpl b/install/deb/templates/mail/nginx/rainloop.stpl
@@ -16,6 +16,11 @@ location ~ /\.(?!well-known\/) {
     return 404;
 }
 
+location ^~ /data {
+    deny all;
+    return 404;
+}
+
 location ~ ^/(README.md|config|temp|logs|bin|SQL|INSTALL|LICENSE|CHANGELOG|UPGRADING)$ {
     deny all;
     return 404;
diff --git a/install/deb/templates/mail/nginx/rainloop.tpl b/install/deb/templates/mail/nginx/rainloop.tpl
@@ -13,6 +13,11 @@ location ~ /\.(?!well-known\/) {
     return 404;
 }
 
+location ^~ /data {
+    deny all;
+    return 404;
+}
+
 location ~ ^/(README.md|config|temp|logs|bin|SQL|INSTALL|LICENSE|CHANGELOG|UPGRADING)$ {
     deny all;
     return 404;
diff --git a/install/upgrade/versions/1.4.0.sh b/install/upgrade/versions/1.4.0.sh
@@ -185,6 +185,10 @@ if [ -f "/etc/clamav/clamd.conf" ]; then
     $HESTIA/bin/v-add-user-notification admin 'ClamAV config has been overwritten' 'Warning: If you have manualy changed /etc/clamav/clamd.conf and any changes you made will be lost an backup has been created in the /root/hst_backups folder with the original config. If you have not changed the config file you can ignore this message'
 fi
 
+if [ -f "$HESTIA/data/firewall/ipset/blacklist.sh" ]; then
+    sed -i  '/BruteForceBlocker/d' $HESTIA/data/firewall/ipset/blacklist.sh
+fi
+
 ##### COMMANDS FOR V1.5.X
 
 # Back up default package and install latest version
diff --git a/web/bulk/web/index.php b/web/bulk/web/index.php
@@ -45,6 +45,7 @@
     exec (HESTIA_CMD."v-restart-web", $output, $return_var);
     exec (HESTIA_CMD."v-restart-proxy", $output, $return_var);
     exec (HESTIA_CMD."v-restart-dns", $output, $return_var);
+    exec (HESTIA_CMD."v-restart-web-backend", $output, $return_var);
 }
 
 header("Location: /list/web/");
diff --git a/web/delete/web/index.php b/web/delete/web/index.php
@@ -19,7 +19,7 @@
 if (!empty($_GET['domain'])) {
     $v_username = escapeshellarg($user);
     $v_domain = escapeshellarg($_GET['domain']);
-    exec (HESTIA_CMD."v-delete-web-domain ".$v_username." ".$v_domain, $output, $return_var);
+    exec (HESTIA_CMD."v-delete-web-domain ".$v_username." ".$v_domain." 'yes'", $output, $return_var);
     check_return_code($return_var,$output);
     unset($output);
 }
diff --git a/web/templates/pages/edit_server.html b/web/templates/pages/edit_server.html
@@ -332,10 +332,10 @@
 									</tr>
 									<tr>
 										<td class="vst-text">
-											<?=_('DNS Cluster');?>: <span class="optional"><?php if ($v_dns_cluster == 'yes') { echo 'Yes'; } else { echo 'No'; } ?></span>
+											<?=_('DNS Cluster');?>: <span class="optional"><?php if ($v_dns_cluster == 'yes') { echo _('Yes'); } else { echo _('No'); } ?></span>
 										</td>
 									</tr>
-									<?php if ($v_dns_cluster = 'yes') {
+									<?php if ($v_dns_cluster == 'yes') {
 										$i = 0;
 										foreach ($dns_cluster as $key => $value) {
 											$i++;
@@ -482,8 +482,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_mysql" disabled>
-												<option value='no'><?=_('no'); ?></option>
-												<option value='yes' <?php if($v_mysql == 'yes') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='no'><?=_('No'); ?></option>
+												<option value='yes' <?php if($v_mysql == 'yes') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>
@@ -582,8 +582,8 @@
 										<tr>
 											<td>
 												<select class="vst-list" name="v_pgsql" disabled>
-													<option value='no'><?=_('no'); ?></option>
-													<option value='yes' <?php if($v_pgsql == 'yes') echo 'selected' ?>><?=_('yes'); ?></option>
+													<option value='no'><?=_('No'); ?></option>
+													<option value='yes' <?php if($v_pgsql == 'yes') echo 'selected' ?>><?=_('Yes'); ?></option>
 												</select>
 												<br><br>
 											</td>
@@ -660,8 +660,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_backup">
-												<option value='no'><?=_('no'); ?></option>
-												<option value='yes' <?php if($v_backup == 'yes') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='no'><?=_('No'); ?></option>
+												<option value='yes' <?php if($v_backup == 'yes') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>
@@ -963,8 +963,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_api" id="api">
-															<option value='yes'><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['API'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes'><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['API'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1017,8 +1017,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_system_password_reset">
-															<option value='yes'><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_SYSTEM_PASSWORD_RESET'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes'><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_SYSTEM_PASSWORD_RESET'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1061,8 +1061,8 @@
 													<tr>
 														<td>
 															<select class="vst-list" name="v_policy_system_protected_admin">
-																<option value='yes'><?=_('yes'); ?></option>
-																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_PROTECTED_ADMIN'] !== 'yes') echo 'selected' ?>><?=_('no'); ?></option>
+																<option value='yes'><?=_('Yes'); ?></option>
+																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_PROTECTED_ADMIN'] !== 'yes') echo 'selected' ?>><?=_('No'); ?></option>
 															</select>
 															<br><br>
 														</td>
@@ -1075,8 +1075,8 @@
 													<tr>
 														<td>
 															<select class="vst-list" name="v_policy_system_hide_admin">
-																<option value='yes'><?=_('yes'); ?></option>
-																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_HIDE_ADMIN'] !== 'yes') echo 'selected' ?>><?=_('no'); ?></option>
+																<option value='yes'><?=_('Yes'); ?></option>
+																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_HIDE_ADMIN'] !== 'yes') echo 'selected' ?>><?=_('No'); ?></option>
 															</select>
 															<br><br>
 														</td>
@@ -1089,8 +1089,8 @@
 													<tr>
 														<td>
 															<select class="vst-list" name="v_policy_system_hide_services">
-																<option value='yes'><?=_('yes'); ?></option>
-																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_HIDE_SERVICES'] !== 'yes') echo 'selected' ?>><?=_('no'); ?></option>
+																<option value='yes'><?=_('Yes'); ?></option>
+																<option value='no' <?php if($_SESSION['POLICY_SYSTEM_HIDE_SERVICES'] !== 'yes') echo 'selected' ?>><?=_('No'); ?></option>
 															</select>
 															<br><br>
 														</td>
@@ -1122,8 +1122,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_view_suspended">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_VIEW_SUSPENDED'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_VIEW_SUSPENDED'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_VIEW_SUSPENDED'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_VIEW_SUSPENDED'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1137,8 +1137,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_edit_details">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_DETAILS'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_DETAILS'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_DETAILS'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_DETAILS'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1151,8 +1151,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_edit_web_templates">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_WEB_TEMPLATES'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_WEB_TEMPLATES'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_WEB_TEMPLATES'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_WEB_TEMPLATES'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1165,8 +1165,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_edit_dns_templates">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_DNS_TEMPLATES'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_DNS_TEMPLATES'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_EDIT_DNS_TEMPLATES'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_EDIT_DNS_TEMPLATES'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1179,8 +1179,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_view_logs">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_VIEW_LOGS'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_VIEW_LOGS'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_VIEW_LOGS'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_VIEW_LOGS'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1193,8 +1193,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_policy_user_delete_logs">
-															<option value='yes' <?php if($_SESSION['POLICY_USER_DELETE_LOGS'] !== 'no') echo 'selected' ?>><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['POLICY_USER_DELETE_LOGS'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes' <?php if($_SESSION['POLICY_USER_DELETE_LOGS'] !== 'no') echo 'selected' ?>><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['POLICY_USER_DELETE_LOGS'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 														<br><br>
 													</td>
@@ -1212,8 +1212,8 @@
 												<tr>
 													<td>
 														<select class="vst-list" name="v_enforce_subdomain_ownership">
-															<option value='yes'><?=_('yes'); ?></option>
-															<option value='no' <?php if($_SESSION['ENFORCE_SUBDOMAIN_OWNERSHIP'] == 'no') echo 'selected' ?>><?=_('no'); ?></option>
+															<option value='yes'><?=_('Yes'); ?></option>
+															<option value='no' <?php if($_SESSION['ENFORCE_SUBDOMAIN_OWNERSHIP'] == 'no') echo 'selected' ?>><?=_('No'); ?></option>
 														</select>
 													</td>
 												</tr>
@@ -1246,8 +1246,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_plugin_app_installer">
-												<option value='false'><?=_('no'); ?></option>
-												<option value='true' <?php if($_SESSION['PLUGIN_APP_INSTALLER'] == 'true') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='false'><?=_('No'); ?></option>
+												<option value='true' <?php if($_SESSION['PLUGIN_APP_INSTALLER'] == 'true') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>
@@ -1260,8 +1260,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_filemanager">
-												<option value='false'><?=_('no'); ?></option>
-												<option value='true' <?php if($_SESSION['FILE_MANAGER'] == 'true') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='false'><?=_('No'); ?></option>
+												<option value='true' <?php if($_SESSION['FILE_MANAGER'] == 'true') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>
@@ -1274,8 +1274,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_quota">
-												<option value='no'><?=_('no'); ?></option>
-												<option value='yes' <?php if($_SESSION['DISK_QUOTA'] == 'yes') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='no'><?=_('No'); ?></option>
+												<option value='yes' <?php if($_SESSION['DISK_QUOTA'] == 'yes') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>
@@ -1288,8 +1288,8 @@
 									<tr>
 										<td>
 											<select class="vst-list" name="v_firewall">
-												<option value='no'><?=_('no'); ?></option>
-												<option value='yes' <?php if($_SESSION['FIREWALL_SYSTEM'] == 'iptables') echo 'selected' ?>><?=_('yes'); ?></option>
+												<option value='no'><?=_('No'); ?></option>
+												<option value='yes' <?php if($_SESSION['FIREWALL_SYSTEM'] == 'iptables') echo 'selected' ?>><?=_('Yes'); ?></option>
 											</select>
 											<br><br>
 										</td>

Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,12 @@ location ~ /\.(?!well-known\/) {`
`13`	`13`	`return 404;`
`14`	`14`	`}`
`15`	`15`
`16`		`-location ~ /data/ {`
	`16`	`+location ^~ /data {`
	`17`	`+ deny all;`
	`18`	`+ return 404;`
	`19`	`+}`
	`20`	`+`
	`21`	`+location ~ ^/(README.md\|config\|temp\|logs\|bin\|SQL\|INSTALL\|LICENSE\|CHANGELOG\|UPGRADING)$ {`
`17`	`22`	`deny all;`
`18`	`23`	`return 404;`
`19`	`24`	`}`
Original file line number	Diff line number	Diff line change
`@@ -45,6 +45,7 @@`
`45`	`45`	`exec (HESTIA_CMD."v-restart-web", $output, $return_var);`
`46`	`46`	`exec (HESTIA_CMD."v-restart-proxy", $output, $return_var);`
`47`	`47`	`exec (HESTIA_CMD."v-restart-dns", $output, $return_var);`
	`48`	`+ exec (HESTIA_CMD."v-restart-web-backend", $output, $return_var);`
`48`	`49`	`}`
`49`	`50`
`50`	`51`	`header("Location: /list/web/");`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@`
`19`	`19`	`if (!empty($_GET['domain'])) {`
`20`	`20`	`$v_username = escapeshellarg($user);`
`21`	`21`	`$v_domain = escapeshellarg($_GET['domain']);`
`22`		`- exec (HESTIA_CMD."v-delete-web-domain ".$v_username." ".$v_domain, $output, $return_var);`
	`22`	`+ exec (HESTIA_CMD."v-delete-web-domain ".$v_username." ".$v_domain." 'yes'", $output, $return_var);`
`23`	`23`	`check_return_code($return_var,$output);`
`24`	`24`	`unset($output);`
`25`	`25`	`}`