神秘的dbboon文件夹与proxy.php文件在我的godaddy帐户
发布时间:2020-12-13 13:13:16 所属栏目:PHP教程 来源:网络整理
导读:当我今天做一些Web维护时,我发现一个名为“dbboon”的根级别的GoDaddy主机帐户上有一个奇怪的新文件夹,里面有一个名为proxy.php的单个文件.它的代码如下所示,似乎是某种代理功能. 我有点困扰,因为我没有把它放在那里.我google了所有这一切了解更多,但没有找
|
当我今天做一些Web维护时,我发现一个名为“dbboon”的根级别的GoDaddy主机帐户上有一个奇怪的新文件夹,里面有一个名为proxy.php的单个文件.它的代码如下所示,似乎是某种代理功能.
我有点困扰,因为我没有把它放在那里.我google了所有这一切了解更多,但没有找到任何东西,除了代理文件也存储在pastebin.com:http://pastebin.com/PQsSPbCr 我打电话给GoDaddy,他们确认它属于他们,说它是由他们的高级主机组放在测试目的,但没有更多的信息. 有人知道吗 <?php
$version = '1.2';
if(isset($_GET['dbboon_version'])) {
echo '{"version":"' . $version . '"}';
exit;
}
function dbboon_parseHeaders($subject) {
global $version;
$subject = trim($subject);
$parsed = Array();
$len = strlen($subject);
$position = $field = 0;
$position = strpos($subject,"rn") + 2;
while(isset($subject[$position])) {
$nextC = strpos($subject,':',$position);
$fieldName = substr($subject,$position,($nextC-$position));
$position += strlen($fieldName) + 1;
$fieldValue = NULL;
while(1) {
$nextCrlf = strpos($subject,"rn",$position - 1);
if(FALSE === $nextCrlf) {
$t = substr($subject,$position);
$position = $len;
} else {
$t = substr($subject,$nextCrlf-$position);
$position += strlen($t) + 2;
}
$fieldValue .= $t;
if(!isset($subject[$position]) || (' ' != $subject[$position] && "t" != $subject[$position])) {
break;
}
}
$parsed[strtolower($fieldName)] = trim($fieldValue);
if($position > $len) {
echo '{"result":false,"error":{"code":4,"message":"Communication error,unable to contact proxy service.","version":"' . $version . '"}}';
exit;
}
}
return $parsed;
}
if(!function_exists('http_build_query')) {
function http_build_query($data,$prefix = '',$sep = '',$key = '') {
$ret = Array();
foreach((array) $data as $k => $v) {
if(is_int($k) && NULL != $prefix) {
$k = urlencode($prefix . $k);
}
if(!empty($key) || $key === 0) {
$k = $key . '[' . urlencode($k) . ']';
}
if(is_array($v) || is_object($v)) {
array_push($ret,http_build_query($v,'',$sep,$k));
} else {
array_push($ret,$k . '=' . urlencode($v));
}
}
if(empty($sep)) {
$sep = '&';
}
return implode($sep,$ret);
}
}
$host = 'dbexternalsubscriber.secureserver.net';
$get = http_build_query($_GET);
$post = http_build_query($_POST);
$url = $get ? "?$get" : '';
$fp = fsockopen($host,80,$errno,$errstr);
if($fp) {
$payload = "POST /embed/$url HTTP/1.1rn";
$payload .= "Host: $hostrn";
$payload .= "Content-Length: " . strlen($post) . "rn";
$payload .= "Content-Type: application/x-www-form-urlencodedrn";
$payload .= "Connection: Closernrn";
$payload .= $post;
fwrite($fp,$payload);
$httpCode = NULL;
$response = NULL;
$timeout = time() + 15;
do {
while($line = fgets($fp)) {
$response .= $line;
if(!trim($line)) {
break;
}
}
} while($timeout > time() && NULL === $response);
$headers = dbboon_parseHeaders($response);
if(isset($headers['transfer-encoding']) && 'chunked' === $headers['transfer-encoding']) {
do {
$cSize = $read = hexdec(trim(fgets($fp)));
while($read > 0) {
$buff = fread($fp,$read);
$read -= strlen($buff);
$response .= $buff;
}
$response .= fgets($fp);
} while($cSize > 0);
} else {
preg_match('/Content-Length:s([0-9]+)rn/msi',$response,$match);
if(!isset($match[1])) {
echo '{"result":false,"error":{"code":3,unable to contact proxy service.","version":"' . $version . '"}}';
exit;
} else {
while($match[1] > 0) {
$buff = fread($fp,$match[1]);
$match[1] -= strlen($buff);
$response .= $buff;
}
}
}
fclose($fp);
if(!$pos = strpos($response,"rnrn")) {
echo '{"result":false,"error":{"code":2,"version":"' . $version . '"}}';
exit;
}
echo substr($response,$pos + 4);
} else {
echo '{"result":false,"error":{"code":1,"version":"' . $version . '"}}';
exit;
}
看起来代码测试与dbexternalsubscriber.secureserver.net的连接,并将结果返回到某种JSON输出.它可以用作某种类型的连接测试仪.我听说过GoDaddy主持人的话题不多,但是如果可以的话,我会将其删除.另外,检查您的.htaccess文件是否有可能反映此代码的任何更改.
(编辑:李大同) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |