Download nu

Modulerne scanner din webfolders for manglende index.html filer.

Det springer mapper over, hvor der allerede indexfiles (index.php, index.html, index.html).

Hvis du finder mapper uden indexfiler kan du automatisk oprette disse ved at trykke på "Opret index-filer".

Modulet genemser txt i din index.php, index.html, index.htm, mainfile.php, sidehoveder og sidefødder for ordene iframe eller kode, der angiver kodet javascript osv. som er almindeligt anvendt i kodet javascript inserts.

Skulle det finde nogle af disse ord, kan du selv tjekke kildekoden ved at klikke på den røde bjælke der fremkommer på linjen til filen.

Slet ikke filer, bare fordi moduet finder disse ord på dine sider. Ikke alle anvendelser af iframe og javascript er lig med skadelig kode og hellere kontroller og i tvivlstilfælde bede om hjælp, om hvad man skal gøre med disse filer.
Changes

v2.0 friday 27 november 2009 - 13:28 (gmt +1)

- Added searchwords "fromCharCode","%69%66%72%61%6D%65","document.write(unescape(" to search words in iframe scan, to look for encoded javascript includes
- Spiced the scanning up with some highlighting javascript + some jquery for the scan and messages with lazy load
- Excluded the modules/indexscan from the iframe scan. The description and functions contain multible iframe-words and thus always gets caught in the scan.
- french translation and style css corrections // thanks Kris_fr


- new translations definitions in admin.php are

// Added in 1.01
define("_AM_INDEXSCAN_CHECKFORFILES","<tr class='header'><center><h2>Checking files for IFRAME Infection</h2></tr></center><center><small>Not that not all uses of Ifram is injections.<br>Check the code in the files found before you delete.<br><hr></small></center>");
define("_AM_INDEXSCAN_UNABLETOREADFILE","Unable to open file ");
define("_AM_INDEXSCAN_INFECTED","!!Word IFRAME found!!");
define("_AM_INDEXSCAN_CLEAN","OK");
define("_AM_INDEXSCAN_INJECTIONSCAN","Scan for ifram injections");

//added in 2.00
define("_AM_INDEXSCAN_SCANNING4MISS","<br>Looking for missin index files.<br>Please wait.");
define("_AM_INDEXSCAN_CREATINGMISS","<br>Creating missing index files.<br>Please wait.");
define("_AM_INDEXSCAN_SCANNING4IFRAME","<br>Looking for iframes and encoded javascript.<br>Please wait.");

Default english translations have been added in all language files. Feel free to send me in your language so I can change to correct language.

Changes in 2.01 is few but here they are

- Added a checksum to compare against the files left out of the scans. This to make sure the core files have not been changed since original file.

- Freed the folder in 2.0 left out of the scan. If a file give false result in scan due to the presense of the word "iframe", it will now be automaticly check against a md5 checksum.

- Added 2 new language definitions.
- Frensch language definitions added // thanks Kris_fr

//added in 2.02

- Added the option in config to change the base of the starting point for the scans. To avoid users - having xoops_data, xoops_lib outside of the root, not having all folders scanned.
- Added a function to get the $xoopsModuleConfig (root) where global $xoopsModuleConfig not working in admin.
- New language defines are.:
//Added in 2.02
define("_MI_INDEXSCAN_ROOTORSUB","Root or sub folder installation");
define("_MI_INDEXSCAN_ROOTORSUB_DESC","Write here from where you want to start scanning
'../../../' if your web is like 'www.myspace.com/mainfile,php';
'../../../../' if it is like www.websted.dk/htdocs/mainfile.com";);

Changes in 2.03

- Added possibility to check files in webfolders against xoops check file and filter from Config. Filter separates extensions of files presumed to be ok.
- Files found in check files marked red are presumed not to be part of Xoops, and can be deleted by the 'delete icon' using ajax + jquery avoid reloading the page.
- Added the PclZip.Class to create zip file on the fly for users not having php > 5.20.
- Scan to create back up from the folders residing in the admin/folder2backup. The scan creates a copy of the empty folders, existing index.html, index.php, index.htm files, delete all other files, creates new indexfiles, and create link to download as zip. Handy when working with developing and want to create a zip with nothing but index files.
I tested with htdoc from Xoops 2.4.4 in a Wamp, creation time is aprox. 2 minutes. Not tested in real server yet, but time must be considerble.
- New language defines are

modinfo.php

//Added in 2.03

define ("_MI_INDEXSCAN_ILLEGALFILETYPES", "Skip file types.");
define("_MI_INDEXSCAN_ILLEGALFILETYPES_DESC","Add files you wish to skip while 'checking files'.<br/>These files will be considered 'safe'<br/>if they also are listed in the file 'admin/filecheck.txt'.");
define("_MI_INDEXSCAN_FROMBACKUP", "Create file zip");
define ("_MI_INDEXSCAN_FROMBACKUP_DESC", "Creates a zip archieve with same folder structure from the folder you ftp to folder2backup.<br/>The zip contains nothing but the folders and,<br/>index.html files where missing from<br/>your uploaded folder.<br/><br/>The folder name is the name of the folder in your folder2backup folder, for instance 'testing'.<br/>You can delete 'testing' this folder is only for example.");


admin.php
// Added in 2.03

define ("_AM_INDEXSCAN_CHECKILLEGALFILES","Check files");
define ("_AM_INDEXSCAN_SCANNING4ILLEGALFILES", "Scanning web files");
define("_AM_INDEXSCAN_MAYBEOK", "Looks to be ok");
define ("_AM_INDEXSCAN_NOTINXOOPSINSTALL", "Not Xoops file");
define ("_AM_INDEXSCAN_FINISDILLEGAL", " files found that are not Xoops files. Total files scanned: ");
define ("_AM_INDEXSCAN_ILLEGAL_DESC", "The file found Not to be Xoops files, are checked against checkfile.txt in admin folder, and agains files in config defined as allowed file types.<br/>These files could be unwanted tmp, thumbs.db, or info files.<br/>If you you dont need these files add them to automaticly delete in config and they will be deleted when you run this scan next time.");
define ("_AM_INDEXSCAN_REALLYDELETE", "Are you sure ?, delete file.: ");
define("_AM_INDEXSCAN_CREATEZIP", "Create zip file for download");
define("_AM_INDEXSCAN_CREATINGZIP", "Creating backup with empty folders<br/>plus index files.<br/>");
define("_AM_INDEXSCAN_BACKEDUPDELETEDFROMBACKUP", "Deleted files in folder from backup except index.html files");
define("_AM_INDEXSCAN_BACKEDUP2", "Backed up folder.: ");
define("_AM_INDEXSCAN_DOWNLOADZIP", "Download index files zip");
define("_AM_INDEXSCAN_CREATINGZIPFORDOWNLOAD", "Creating zip file for download");
define("_AM_INDEXSCAN_CREATEDINDEXINBACKUP", "Created index file in backup folder");
define("_AM_INDEXSCAN_CLEANUPDONE", "Cleaning up...Done!");
define("_AM_INDEXSCAN_FILESARECOPIED", " Files were copied to backup folder");