Subversion Repositories ALCASAR

<?php

# $Id: index.php 2242 2017-05-20 22:40:33Z tom.houdayer $

#

# change user password on ALACASAR NAC

# Copyright (C) 2003, 2004 Mondru AB.

# Copyright (C) 2008-20017 ANGEL95 & REXY

/****************************************************************

*			GLOBAL FILE PATHS			*

*****************************************************************/

define('CONF_FILE', '/usr/local/etc/alcasar.conf');

/****************************************************************

*			FILE reading test			*

*****************************************************************/

$conf_files = array(CONF_FILE);

foreach ($conf_files as $file) {

	if (!file_exists($file)) {

		exit("Fichier $file non présent");

	}

	if (!is_readable($file)) {

		exit("Vous n'avez pas les droits de lecture sur le fichier $file");

	}

}

/****************************************************************

*			Read CONF_FILE				*

*****************************************************************/

$file_conf = fopen(CONF_FILE, 'r');

if (!$file_conf) {

	exit('Error opening the file '.CONF_FILE);

}

while (!feof($file_conf)) {

	$buffer = fgets($file_conf, 4096);

	if ((strpos($buffer, '=') !== false) && (substr($buffer, 0, 1) !== '#')) {

		$tmp = explode('=', $buffer);

		$conf[$tmp[0]] = trim($tmp[1]);

	}

}

fclose($file_conf);

require('/etc/freeradius-web/config.php');

$current_page = htmlspecialchars($_SERVER['PHP_SELF']);

$homepage = (((!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off')) ? 'https' : 'http').'://'.$conf['HOSTNAME'].'.'.$conf['DOMAIN'];

// Choice of language

$Language = 'en';

if (isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])) {

	$Langue = explode(',', $_SERVER['HTTP_ACCEPT_LANGUAGE']);

	$Language = strtolower(substr(chop($Langue[0]), 0, 2));

}

if ($Language === 'es') {		// Spanish

	$l_title			= "User password change";

	$l_form_l1			= "User";

	$l_form_l2			= "Old password";

	$l_form_l3			= "New password";

	$l_form_l4			= "New password (confirmation)";

	$l_eval_pass			= "Score :";

	$l_passwordmeter		= "Powered by 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modify";

	$l_form_button_retour		= "Cancel";

	$l_form_result1			= "Your password has been successfuly changed";

	$l_form_result2			= "Error when trying to change password";

} else if ($Language === 'pt') {	// Portuguese

	$l_title			= "Alteração de senha do usuário";

	$l_form_l1			= "Usuário";

	$l_form_l2			= "Senha antiga";

	$l_form_l3			= "Nova senha";

	$l_form_l4			= "Nova senha (confirmação)";

	$l_eval_pass			= "Resultado:";

	$l_passwordmeter		= "Powered by 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modificar";

	$l_form_button_retour		= "Cancelar";

	$l_form_result1			= "Sua senha foi alterada com sucesso";

	$l_form_result2			= "Erro ao tentar alterar a senha";

} else if ($Language === 'de') {	// German

	$l_title			= "User password change";

	$l_form_l1			= "User";

	$l_form_l2			= "Old password";

	$l_form_l3			= "New password";

	$l_form_l4			= "New password (confirmation)";

	$l_eval_pass			= "Score :";

	$l_passwordmeter		= "Powered by 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modify";

	$l_form_button_retour		= "Cancel";

	$l_form_result1			= "Your password has been successfuly changed";

	$l_form_result2			= "Error when trying to change password";

} else if ($Language === 'nl') {	// Dutch

	$l_title			= "User password change";

	$l_form_l1			= "User";

	$l_form_l2			= "Old password";

	$l_form_l3			= "New password";

	$l_form_l4			= "New password (confirmation)";

	$l_eval_pass			= "Score :";

	$l_passwordmeter		= "Powered by 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modify";

	$l_form_button_retour		= "Cancel";

	$l_form_result1			= "Your password has been successfuly changed";

	$l_form_result2			= "Error when trying to change password";

} else if ($Language === 'zh') {	// Chinese

	$l_title			= "修改用户密码";

	$l_form_l1			= "用户";

	$l_form_l2			= "旧密码";

	$l_form_l3			= "新密码";

	$l_form_l4			= "新密码(确认)";

	$l_eval_pass			= ""; // TODO: to translate

	$l_passwordmeter		= "技术支持 'Shibbo Password Analyser'";

	$l_form_button_valid		= "修改";

	$l_form_button_retour		= "取消";

	$l_form_result1			= "您的密码已成功修改";

	$l_form_result2			= "修改密码出错";

} else if ($Language === 'ar') {	// Arabic

	$l_title			= "تغيير كلمة المرور للمستخدم";

	$l_form_l1			= "المستعمل";

	$l_form_l2			= "كلمه السر القديمة";

	$l_form_l3			= "كلمة السر الجديدة";

	$l_form_l4			= "كلمة السر الجديدة (أكد)";

	$l_eval_pass			= ""; // TODO: to translate

	$l_passwordmeter		= "مشغل بواسطة 'Shibbo Password Analyser'";

	$l_form_button_valid		= "تغيير";

	$l_form_button_retour		= "إلغاء";

	$l_form_result1			= "تم تغيير الرقم السري بنجاح";

	$l_form_result2			= "خطأ عند محاولة تغيير كلمة المرور";

} else if ($Language === 'fr') {	// French

	$l_title			= "Changement de mot de passe utilisateur";

	$l_form_l1			= "Utilisateur :";

	$l_form_l2			= "Ancien mot de passe :";

	$l_form_l3			= "Nouveau mot de passe :";

	$l_form_l4			= "Nouveau mot de passe (confirmation) :";

	$l_eval_pass			= "Score :";

	$l_passwordmeter		= "Propulsé par 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modifier";

	$l_form_button_retour		= "Annuler";

	$l_form_result1			= "Votre mot de passe a été modifié avec succès";

	$l_form_result2			= "Erreur de changement de mot de passe";

} else {				// English

	$l_title			= "User password change";

	$l_form_l1			= "User";

	$l_form_l2			= "Old password";

	$l_form_l3			= "New password";

	$l_form_l4			= "New password (confirmation)";

	$l_eval_pass			= "Score:";

	$l_passwordmeter		= "Powered by 'Shibbo Password Analyser'";

	$l_form_button_valid		= "Modify";

	$l_form_button_retour		= "Cancel";

	$l_form_result1			= "Your password has been successfuly changed";

	$l_form_result2			= "Error when trying to change password";

}

if (isset($action)) {

	if ($action === 'checkpass') {

		if (!is_file("../acc/manager/lib/sql/drivers/$config[sql_type]/functions.php")) {

			exit('<b>Could not include SQL library</b>');

		}

		require_once("../acc/manager/lib/sql/drivers/$config[sql_type]/functions.php");

		$link = @da_sql_pconnect($config);

		if ($link) {

			$sql = "SELECT attribute,value FROM $config[sql_check_table] WHERE username = '$login' AND attribute = '$config[sql_password_attribute]';";

			$res = @da_sql_query($link,$config, $sql);

			if ($res) {

				$row = @da_sql_fetch_array($res, $config);

				if (!is_file("../acc/manager/lib/crypt/$config[general_encryption_method].php")) {

					exit('<b>Could not open encryption library file</b>');

				}

				include("../acc/manager/lib/crypt/$config[general_encryption_method].php");

				$enc_passwd = $row['value'];

				$passwd     = da_encrypt($passwd,$enc_passwd);

				$newpasswd  = da_encrypt($newpasswd,$enc_passwd);

				$newpasswd2 = da_encrypt($newpasswd2,$enc_passwd);

				if (($passwd === $enc_passwd) && ($newpasswd === $newpasswd2)) {

					$sql = "UPDATE $config[sql_check_table] SET value='$newpasswd' WHERE username = '$login' AND attribute = '$config[sql_password_attribute]';";

					$res2 = @da_sql_query($link, $config, $sql);

					$changePasswordMessage = '<font color=blue><b>'.$l_form_result1.'</b></font>';

				} else {

					$changePasswordMessage = '<font color=red><b>'.$l_form_result2.'</b></font>';

				}

			}

		}

	}

}

// Cleaning the cache

header('Expires: Tue, 01 Jan 2000 00:00:00 GMT');

header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT');

header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');

header('Cache-Control: post-check=0, pre-check=0', false);

header('Pragma: no-cache');

?>

<!DOCTYPE html>

<html>

	<head>

		<meta charset="UTF-8">

		<title>ALCASAR - <?= $l_title ?></title>

		<link rel="stylesheet" href="../css/pass.css" type="text/css">

		<link rel="stylesheet" href="../css/style_intercept.css" type="text/css">

		<link rel="stylesheet" href="../css/pwdmeter.css" type="text/css">

		<!--[if lt IE 7]>

			<link rel="stylesheet" href="../css/ie.css" type="text/css">

		<![endif]-->

		<script src="../js/pwdmeter.js"></script>

	</head>

	<body>

		<div id="cadre_titre" class="titre_controle">

			<p id="acces_controle" class="titre_controle"><?= $l_title ?></p>

			<div id="boite_logo"><img src="/images/organisme.png"></div>

		</div>

		<div id="contenu_acces">

			<form name="master" action="<?= $current_page ?>" method="post">

				<input type="hidden" name="action" value="checkpass">

				<table id="champs_pass" border="0">

					<tr>

						<td class="first_item"><?= $l_form_l1 ?></td>

						<td><input type="text" name="login" value="" label="test"></td>

					</tr>	

					<tr>

						<td class="first_item"><?= $l_form_l2 ?></td>

						<td><input type="password" name="passwd" value=""></td>

					</tr>

					<tr>

						<td class="first_item"><?= $l_form_l3 ?></td>

						<td>

							<input type="password" name="newpasswd" id="passwordPwd" value="" autocomplete="off" onkeyup="chkPass(this.value);" />

							<input type="text" id="passwordTxt" name="passwordTxt" autocomplete="off" onkeyup="chkPass(this.value);" class="hide" />

						</td>

					</tr>

					<tr>

						<td class="first_item"><?= $l_eval_pass ?></td>

						<td>

							<div id="scorebarBorder">

								<div id="score">0%</div>

								<div id="scorebar">&nbsp;</div>

							</div>

							<div id="complexity"></div>

						</td>

					</tr>

					<tr>

						<td colspan="2" id="lien_pass"><?= $l_passwordmeter ?></td>

					</tr>

					<tr>

						<td class="first_item"><?= $l_form_l4 ?></td>

						<td><input type="password" name="newpasswd2" value=""></td>

					</tr>

					<tr>

						<td colspan="2" id="lien_pass">

							<input type="submit" class="btn_form" id="btn_pass" value="<?= $l_form_button_valid ?>">

							<input type="button" class="btn_form" id="btn_retour" value="<?= $l_form_button_retour ?>" onclick="window.location = '<?= $homepage ?>';">

						</td>

					</tr>

					<?php if (isset($changePasswordMessage)): ?>

						<tr>

							<td colspan="2"><?= $changePasswordMessage ?></td>

						</tr>

					<?php endif; ?>

				</table>

			</form>

		</div>

		<div id="info_pass">

			<table id="tablePwdStatus" cellpadding="5" cellspacing="1" border="0">

				<tr>

					<th colspan="2">Additions</th>

					<th class="txtCenter">Type</th>

					<th class="txtCenter">Rate</th>

					<th class="txtCenter">Count</th>

					<th class="txtCenter">Bonus</th>

				</tr>

				<tr>

					<td width="1%"><div id="div_nLength" class="fail">&nbsp;</div></td>

					<td width="94%">Number of Characters</td>

					<td width="1%" class="txtCenter">Flat</td>

					<td width="1%" class="txtCenter italic">+(n*4)</td>

					<td width="1%"><div id="nLength" class="box">&nbsp;</div></td>

					<td width="1%"><div id="nLengthBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<td><div id="div_nAlphaUC" class="fail">&nbsp;</div></td>

					<td>Uppercase Letters</td>

					<td class="txtCenter">Cond/Incr</td>

					<td nowrap="nowrap" class="txtCenter italic">+((len-n)*2)</td>

					<td><div id="nAlphaUC" class="box">&nbsp;</div></td>

					<td><div id="nAlphaUCBonus" class="boxPlus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nAlphaLC" class="fail">&nbsp;</div></td>

					<td>Lowercase Letters</td>

					<td class="txtCenter">Cond/Incr</td>

					<td class="txtCenter italic">+((len-n)*2)</td>

					<td><div id="nAlphaLC" class="box">&nbsp;</div></td>

					<td><div id="nAlphaLCBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<td><div id="div_nNumber" class="fail">&nbsp;</div></td>

					<td>Numbers</td>

					<td class="txtCenter">Cond</td>

					<td class="txtCenter italic">+(n*4)</td>

					<td><div id="nNumber" class="box">&nbsp;</div></td>

					<td><div id="nNumberBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<td><div id="div_nSymbol" class="fail">&nbsp;</div></td>

					<td>Symbols</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">+(n*6)</td>

					<td><div id="nSymbol" class="box">&nbsp;</div></td>

					<td><div id="nSymbolBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<td><div id="div_nMidChar" class="fail">&nbsp;</div></td>

					<td>Middle Numbers or Symbols</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">+(n*2)</td>

					<td><div id="nMidChar" class="box">&nbsp;</div></td>

					<td><div id="nMidCharBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<td><div id="div_nRequirements" class="fail">&nbsp;</div></td>

					<td>Requirements</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">+(n*2)</td>

					<td><div id="nRequirements" class="box">&nbsp;</div></td>

					<td><div id="nRequirementsBonus" class="boxPlus">&nbsp;</div></td>

				</tr>

				<tr>

					<th colspan="6">Deductions</th>

				</tr>

				<tr>

					<td width="1%"><div id="div_nAlphasOnly" class="pass">&nbsp;</div></td>

					<td width="94%">Letters Only</td>

					<td width="1%" class="txtCenter">Flat</td>

					<td width="1%" class="txtCenter italic">-n</td>

					<td width="1%"><div id="nAlphasOnly" class="box">&nbsp;</div></td>

					<td width="1%"><div id="nAlphasOnlyBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nNumbersOnly" class="pass">&nbsp;</div></td>

					<td>Numbers Only</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-n</td>

					<td><div id="nNumbersOnly" class="box">&nbsp;</div></td>

					<td><div id="nNumbersOnlyBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nRepChar" class="pass">&nbsp;</div></td>

					<td>Repeat Characters (Case Insensitive)</td>

					<td class="txtCenter">Comp</td>

					<td nowrap="nowrap" class="txtCenter italic"> - </td>

					<td><div id="nRepChar" class="box">&nbsp;</div></td>

					<td><div id="nRepCharBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nConsecAlphaUC" class="pass">&nbsp;</div></td>

					<td>Consecutive Uppercase Letters</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*2)</td>

					<td><div id="nConsecAlphaUC" class="box">&nbsp;</div></td>

					<td><div id="nConsecAlphaUCBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nConsecAlphaLC" class="pass">&nbsp;</div></td>

					<td>Consecutive Lowercase Letters</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*2)</td>

					<td><div id="nConsecAlphaLC" class="box">&nbsp;</div></td>

					<td><div id="nConsecAlphaLCBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nConsecNumber" class="pass">&nbsp;</div></td>

					<td>Consecutive Numbers</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*2)</td>

					<td><div id="nConsecNumber" class="box">&nbsp;</div></td>

					<td><div id="nConsecNumberBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nSeqAlpha" class="pass">&nbsp;</div></td>

					<td>Sequential Letters (3+)</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*3)</td>

					<td><div id="nSeqAlpha" class="box">&nbsp;</div></td>

					<td><div id="nSeqAlphaBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nSeqNumber" class="pass">&nbsp;</div></td>

					<td>Sequential Numbers (3+)</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*3)</td>

					<td><div id="nSeqNumber" class="box">&nbsp;</div></td>

					<td><div id="nSeqNumberBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<td><div id="div_nSeqSymbol" class="pass">&nbsp;</div></td>

					<td>Sequential Symbols (3+)</td>

					<td class="txtCenter">Flat</td>

					<td class="txtCenter italic">-(n*3)</td>

					<td><div id="nSeqSymbol" class="box">&nbsp;</div></td>

					<td><div id="nSeqSymbolBonus" class="boxMinus">&nbsp;</div></td>

				</tr>	

				<tr>

					<th colspan="6">Legend</th>

				</tr>

				<tr>

					<td colspan="6">

						<ul id="listLegend">

							<li><div class="exceed imgLegend">&nbsp;</div><span class="bold">Exceptional:</span> Exceeds minimum standards. Additional bonuses are applied.</li>

							<li><div class="pass imgLegend">&nbsp;</div><span class="bold">Sufficient:</span> Meets minimum standards. Additional bonuses are applied.</li>

							<li><div class="warn imgLegend">&nbsp;</div><span class="bold">Warning:</span> Advisory against employing bad practices. Overall score is reduced.</li>

							<li><div class="fail imgLegend">&nbsp;</div><span class="bold">Failure:</span> Does not meet the minimum standards. Overall score is reduced.</li>

						</ul>

					</td>

				</tr>

			</table>

		   	<table id="tablePwdNotes" cellpadding="5" cellspacing="1" border="0">

				<tr>

					<th>Quick Footnotes</th>

				</tr>

				<tr>

					<td>

						&bull; <strong>Flat:</strong> Rates that add/remove in non-changing increments.<br>

						&bull; <strong>Incr:</strong> Rates that add/remove in adjusting increments.<br>

						&bull; <strong>Cond:</strong> Rates that add/remove depending on additional factors.<br>

						&bull; <strong>Comp:</strong> Rates that are too complex to summarize. See source code for details.<br>

						&bull; <strong>n:</strong> Refers to the total number of occurrences.<br>

						&bull; <strong>len:</strong> Refers to the total password length.<br>

						&bull; Additional bonus scores are given for increased character variety.<br>

						&bull; Final score is a cumulative result of all bonuses minus deductions.<br>

						&bull; Final score is capped with a minimum of 0 and a maximum of 100.<br>

						&bull; Score and Complexity ratings are not conditional on meeting minimum requirements.<br>

					</td>

				</tr>

			</table>

		</div>

	</body>

</html>