add troy api

Reviewed-on: #2

_func.php

@@ -6,5 +6,6 @@ include_once ('string.php');
 include_once ('numbers.php');
 include_once ('mail.php');
 include_once ('debug.php');
-include_once ('markdown.php');
+include_once ('troy-api.php');
+// include_once ('markdown.php');
 ?>

ips/crawler.php

@@ -1,18 +1,43 @@
 <?php
 $_ips_crawler = array (
+        '34.79.234.76', // google
         '40.77.167.', // bing bot
+        '54.36.148.', // ahrefbot
+        '54.36.149.', // ahrefbot
         '66.249.',
         '62.138.',
         '62.210.149.60',
+        '65.21.180.26', // seekport
+        '81.209.177.145', // website-datenbank.de
+        '85.25.177.', // abuse
+        '85.25.210.', // hosteurope abuse
         '92.118.160.37', // netsystem research bot
         '104.155.85.', // google
         '114.119.1', // petalbot
+        '144.76.15.153', // mj12bot
+        '148.251.120.201', // mj12bot
+        '157.55.39.', // microsoft???
+        '172.217.', //google
+        '176.125.230.38', //sql inj
         '185.191.171.', // semrush bot
-        '207.46.13.124', // bing bot
-        '54.36.148.', // ahrefbot
+        '192.99.5.225', // ...
+        '205.185.115.87', //sex spam
+        '207.46.13.', // bing bot
+        '216.58.', //google
         '216.244.66.196', // opensiteexplorer
-        '65.21.180.26', // seekport
-        '81.209.177.145', // website-datenbank.de
-        '2a01:4f8:190:4244::2' // mj12bot
+        '2a01:4f8:190:4244::2', // mj12bot
+        '2a01:4f8:162:43c5::2', // mj12bot
 );
+function checkHuman() {
+  global $_ips_crawler;
+  if (stripos ( $_SERVER ['HTTP_USER_AGENT'], 'bot' ) !== false || stripos ( $_SERVER ['HTTP_USER_AGENT'], 'crawler' ) !== false) {
+    return false;
+  }
+  foreach ( $_ips_crawler as $np ) {
+    if (startsWith ( $_SERVER ['REMOTE_ADDR'], $np )) {
+      return false;
+    }
+  }
+  return true;
+}
 ?>

mail.php

@@ -1,9 +1,14 @@
 <?php
 function send_mail($an, $betreff, $text, $ok = '', $error = '') {
-  include 'secret.php';
+  global $absender;
   $sender = 'noreply@troy-grunt.de';
-  if (isset ( $_sendermail )) {
-    $sender = $_sendermail;
+  if(isset($absender) && $absender) {
+    $sender = $absender;
+  }else{
+    include 'secret.php';
+    if (isset ( $_sendermail )) {
+      $sender = $_sendermail;
+    }
   }
   $header = 'From: ' . $sender . "\r\n";
   $header .= 'To: ' . $an . "\r\n";
@@ -18,3 +23,59 @@ function send_mail($an, $betreff, $text, $ok = '', $error = '') {
   }
 }
 
+function send_html_mail($an, $betreff, $text, $ok = '', $error = '') {
+  global $absender;
+  $sender = 'noreply@troy-grunt.de';
+  if(isset($absender) && $absender) {
+    $sender = $absender;
+  }else{
+    include 'secret.php';
+    if (isset ( $_sendermail )) {
+      $sender = $_sendermail;
+    }
+  }
+  $boundary = md5($an.$betreff.$text.time());
+
+  $header = 'From: ' . $sender . "\n";
+  $header .= 'To: ' . $an . "\n";
+  $header .= 'Content-Type:multipart/alternative;boundary='.$boundary . "\n";
+  $header .= 'X-Mailer: PHP/' . phpversion ();
+  $content = "This is multipart message using MIME\n";
+  $content .= "--" . $boundary . "\n";
+  $content .= "Content-type: text/plain;charset=utf-8\n";
+  $content .= 'Content-Transfer-Encoding: 8bit' . "\n\n";
+  $content .= strip_tags($text)."\n\n";
+  $content .= "--" . $boundary . "\n";
+  $content .= "Content-type: text/html;charset=utf-8\n";
+  $content .= "Content-Transfer-Encoding: 8bit". "\n\n";
+  $content .= '<html><body>'.$text.'</body></html>'."\n\n";
+
+  if (mail ( $an, $betreff, $content, $header ) === true) {
+    echo $ok;
+  } else {
+    echo $error;
+  }
+}
+
+function send_php_mail($an, $betreff, $text, $ok = '', $error = '') {
+  global $_sendermail;
+  $sender = 'noreply@troy-grunt.de';
+  if (isset ( $_sendermail )) {
+    $sender = $_sendermail;
+  }
+  include 'php-mailer/PHPMailer.php';
+  $mail = new PHPMailer();
+
+  $mail->setFrom($sender);
+  $mail->addAddress($an);
+  $mail->Subject = $betreff;
+  $mail->msgHTML($text, __DIR__);
+  $mail->AltBody = strip_tags($text);
+
+  if (!$mail->send()) {
+    echo 'Mailer Error: ' . $mail->ErrorInfo;
+  } else {
+      echo 'Message sent!';
+  }
+}
+?>

og.php

@@ -0,0 +1,15 @@
+<?php
+function scanOG($url) {
+  $og = array();
+  $html = file_get_contents($url);
+
+  $re = '/<meta (name|property)=("|\')(.*?)("|\').*?content=("|\')(.*?)("|\')/m';
+  preg_match_all($re, $html, $matches, PREG_SET_ORDER, 0);
+
+  foreach($matches as $m) {
+    $og[$m[3]] = $m[6];
+  }
+  //print_r($og);
+  return $og;
+}
+?>

secret.php.example

@@ -1,12 +1,15 @@
-<?php 
+<?php
 if (!defined('SQL_LOG')) define ( 'SQL_LOG', 1 ); // schreibt sql querys in eine log
 
-$_m['host'] = 'localhost'; 
+$_m['host'] = 'localhost';
 $_m['user'] = '';
 $_m['pass'] = '';
 $_m['data'] = '';
-$_m['pre']  = 'efcms2_';
+$_m['pre']  = '';
 $_m['salt'] = '';
 
-$_sendermail = 'noreply@troy-grunt.de';
+$_sendermail = 'noreply@.de';
+$_smtp['srv'] = 'mail.seemsleg.it';
+$_smtp['user'] = 'noreply@.de';
+$_smtp['pw'] = '';
 ?>

sql.php

@@ -27,46 +27,50 @@ class SQL {
     $this->cnt_get ++;
     if (SQL_LOG)
       fputs ( $this->f, str_replace ( array (
-          "\n",
-          "	"
+              "\n",
+              "  "
       ), array (
-          ' ',
-          ''
+              ' ',
+              ''
       ), $que ) . "\n" . print_r ( $p, true ) . "\n\n" );
     $statement = $this->h->prepare ( $que );
-    switch (count ( $p )) {
-      case 0 :
-        break;
-      case 1 :
-        $statement->bind_param ( $t, $p [0] );
-        break;
-      case 2 :
-        $statement->bind_param ( $t, $p [0], $p [1] );
-        break;
-      case 3 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2] );
-        break;
-      case 4 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3] );
-        break;
-      case 5 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4] );
-        break;
-      case 6 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5] );
-        break;
-      case 7 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6] );
-        break;
-      case 8 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7] );
-        break;
-      case 9 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8] );
-        break;
-      case 10 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9] );
-        break;
+    if (is_array ( $p )) {
+      switch (count ( $p )) {
+        case 0 :
+          break;
+        case 1 :
+          $statement->bind_param ( $t, $p [0] );
+          break;
+        case 2 :
+          $statement->bind_param ( $t, $p [0], $p [1] );
+          break;
+        case 3 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2] );
+          break;
+        case 4 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3] );
+          break;
+        case 5 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4] );
+          break;
+        case 6 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5] );
+          break;
+        case 7 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6] );
+          break;
+        case 8 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7] );
+          break;
+        case 9 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8] );
+          break;
+        case 10 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9] );
+          break;
+      }
+    } else {
+      $statement->bind_param ( $t, $p );
     }
     $statement->execute ();
 
@@ -122,60 +126,55 @@ class SQL {
     $statement = $this->h->prepare ( $que );
     if (SQL_LOG)
       fputs ( $this->f, str_replace ( array (
-          "\n",
-          "	"
+              "\n",
+              "  "
       ), array (
-          ' ',
-          ''
+              ' ',
+              ''
       ), $que ) . "\n" . print_r ( $p, true ) . "\n\n" );
-    switch (count ( $p )) {
-      case 0 :
-        break;
-      case 1 :
-        $statement->bind_param ( $t, $p [0] );
-        break;
-      case 2 :
-        $statement->bind_param ( $t, $p [0], $p [1] );
-        break;
-      case 3 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2] );
-        break;
-      case 4 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3] );
-        break;
-      case 5 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4] );
-        break;
-      case 6 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5] );
-        break;
-      case 7 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6] );
-        break;
-      case 8 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7] );
-        break;
-      case 9 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8] );
-        break;
-      case 10 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9] );
-        break;
-      case 11 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10] );
-        break;
-      case 12 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11] );
-        break;
-      case 13 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11], $p [12] );
-        break;
-      case 14 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11], $p [12], $p [13] );
-        break;
-      case 15 :
-        $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11], $p [12], $p [13], $p [14] );
-        break;
+    if (is_array ( $p )) {
+      switch (count ( $p )) {
+        case 0 :
+          break;
+        case 1 :
+          $statement->bind_param ( $t, $p [0] );
+          break;
+        case 2 :
+          $statement->bind_param ( $t, $p [0], $p [1] );
+          break;
+        case 3 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2] );
+          break;
+        case 4 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3] );
+          break;
+        case 5 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4] );
+          break;
+        case 6 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5] );
+          break;
+        case 7 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6] );
+          break;
+        case 8 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7] );
+          break;
+        case 9 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8] );
+          break;
+        case 10 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9] );
+          break;
+        case 11 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10] );
+          break;
+        case 12 :
+          $statement->bind_param ( $t, $p [0], $p [1], $p [2], $p [3], $p [4], $p [5], $p [6], $p [7], $p [8], $p [9], $p [10], $p [11] );
+          break;
+      }
+    } else {
+      $statement->bind_param ( $t, $p );
     }
     $statement->execute ();
     if (isset ( $statement->error ) && $statement->error != '') {

string.php

@@ -7,7 +7,8 @@ function umlaute($str) {
           'ä',
           'ö',
           'ü',
-          'ß'
+          'ß',
+          '&'
   ), array (
           'Ä',
           'Ö',
@@ -15,7 +16,8 @@ function umlaute($str) {
           'ä',
           'ö',
           'ü',
-          'ß'
+          'ß',
+          '&'
   ), $str );
 }
 function chk($str) {
@@ -33,11 +35,11 @@ function noScript($str) {
 function random($name_laenge) {
   $zeichen = "abcedfghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRTSUVWXYZ0123456789";
   $name_neu = "";
-  
+
   @mt_srand ( ( double ) microtime () * 1000000 );
   for($i = 0; $i < $name_laenge; $i ++) {
     $r = mt_rand ( 0, strlen ( $zeichen ) - 1 );
-    $name_neu .= $zeichen {$r};
+    $name_neu .= $zeichen[$r];
   }
   return $name_neu;
 }
@@ -47,7 +49,7 @@ function startsWith($haystack, $needle) {
 }
 function endsWith($haystack, $needle) {
   $length = strlen ( $needle );
-  
+
   return $length === 0 || (substr ( $haystack, - $length ) === $needle);
 }
 function onlyAlpha($str, $zus = '') {
@@ -245,7 +247,7 @@ function onlySimpleHTML($s) {
           '<pre>',
           '<pre/>'
   ), $s );
-  
+
   // cleanup
   $s = str_replace ( array (
           '{{|-',
@@ -254,7 +256,7 @@ function onlySimpleHTML($s) {
           '',
           ''
   ), $s );
-  
+
   return $s;
 }
 function linkify($input) {

troy-api.php

@@ -0,0 +1,16 @@
+<?php
+function sendToTroy($data) {
+  $url = 'https://troy-grunt.de/api.php';
+  $options = array (
+          'http' => array (
+                  'method' => 'POST',
+                  'header' => array (
+                          'Content-Type: application/json'
+                  ),
+                  'content' => json_encode ( $data )
+          )
+  );
+  $context = stream_context_create ( $options );
+  return file_get_contents ( $url, false, $context );
+}
+?>