Gecko [ www.omxrelocation.in ]

Name	Size	Permission
aakore	481 B	-rwxr-xr-x
accessdb	11.55 KB	-rwxr-xr-x
acp-update-controller	852 B	-rwxr-xr-x
acrocmd	822 B	-rwxr-xr-x
acronis_encrypt	818 B	-rwxr-xr-x
acronis_mms	1.29 KB	-rwxr-xr-x
acronis_schedinfo	435 B	-rwxr-xr-x
acronis_schedule	818 B	-rwxr-xr-x
acropsh	804 B	-rwxr-xr-x
addgnupghome	3.05 KB	-rwxr-xr-x
addpart	19.69 KB	-rwxr-xr-x
adduser	134.39 KB	-rwxr-xr-x
agetty	48.48 KB	-rwxr-xr-x
alternatives	27.61 KB	-rwxr-xr-x
anacron	35.52 KB	-rwxr-xr-x
apachectl	4.31 KB	-rwxr-xr-x
applygnupgdefaults	2.21 KB	-rwxr-xr-x
arp	63.98 KB	-rwxr-xr-x
arpd	52.98 KB	-rwxr-xr-x
arping	23.19 KB	-rwxr-xr-x
atd	27.17 KB	-rwxr-xr-x
atrun	67 B	-rwxr-xr-x
audispd	39.75 KB	-rwxr-xr-x
auditctl	39.56 KB	-rwxr-xr-x
auditd	125.65 KB	-rwxr-xr-x
augenrules	3.7 KB	-rwxr-xr-x
aureport	105.39 KB	-rwxr-xr-x
ausearch	109.8 KB	-rwxr-xr-x
authconfig	43.49 KB	-rwxr-xr-x
authconfig-tui	43.49 KB	-rwxr-xr-x
autrace	15.49 KB	-rwxr-x---
avcstat	11.25 KB	-rwxr-xr-x
badblocks	27.69 KB	-rwxr-xr-x
biosdecode	24.15 KB	-rwxr-xr-x
biosdevname	36.57 KB	-rwxr-xr-x
blkdeactivate	15.97 KB	-r-xr-xr-x
blkdiscard	23.84 KB	-rwxr-xr-x
blkid	77.92 KB	-rwxr-xr-x
blkmapd	43.81 KB	-rwxr-xr-x
blockdev	32.2 KB	-rwxr-xr-x
bridge	77.61 KB	-rwxr-xr-x
btrfs	690.59 KB	-rwxr-xr-x
btrfs-convert	378.62 KB	-rwxr-xr-x
btrfs-debug-tree	354.23 KB	-rwxr-xr-x
btrfs-find-root	346.22 KB	-rwxr-xr-x
btrfs-image	374.63 KB	-rwxr-xr-x
btrfs-map-logical	350.27 KB	-rwxr-xr-x
btrfs-select-super	346.2 KB	-rwxr-xr-x
btrfs-zero-log	346.2 KB	-rwxr-xr-x
btrfsck	690.59 KB	-rwxr-xr-x
btrfstune	350.24 KB	-rwxr-xr-x
build-locale-archive	860.52 KB	-rwx------
cacertdir_rehash	644 B	-rwxr-xr-x
capsh	19.43 KB	-rwxr-xr-x
cbq	32.73 KB	-rwxr-xr-x
cfdisk	71.37 KB	-rwxr-xr-x
chcpu	23.7 KB	-rwxr-xr-x
chgpasswd	64.1 KB	-rwxr-xr-x
chkconfig	40.22 KB	-rwxr-xr-x
chpasswd	55.88 KB	-rwxr-xr-x
chronyd	263.08 KB	-rwxr-xr-x
chroot	32.48 KB	-rwxr-xr-x
clock	48.44 KB	-rwxr-xr-x
clockdiff	19.04 KB	-rwxr-xr-x
consoletype	6.95 KB	-rwxr-xr-x
convertquota	70.88 KB	-rwxr-xr-x
cracklib-check	7.04 KB	-rwxr-xr-x
cracklib-format	246 B	-rwxr-xr-x
cracklib-packer	11.06 KB	-rwxr-xr-x
cracklib-unpacker	7.02 KB	-rwxr-xr-x
create-cracklib-dict	990 B	-rwxr-xr-x
crond	68.48 KB	-rwxr-xr-x
csf	245.1 KB	-rwx------
ctrlaltdel	11.2 KB	-rwxr-xr-x
ctstat	20.09 KB	-rwxr-xr-x
ddns-confgen	19.44 KB	-rwxr-xr-x
debugfs	120.65 KB	-rwxr-xr-x
delpart	19.69 KB	-rwxr-xr-x
depmod	143.24 KB	-rwxr-xr-x
devlink	64.72 KB	-rwxr-xr-x
dhclient	414.34 KB	-rwxr-xr-x
dhclient-script	30.38 KB	-rwxr-xr-x
dkms	84.51 KB	-rwxr-xr-x
dmfilemapd	19.16 KB	-r-xr-xr-x
dmidecode	120.2 KB	-rwxr-xr-x
dmsetup	149.2 KB	-r-xr-xr-x
dmstats	149.2 KB	-r-xr-xr-x
dnssec-checkds	922 B	-rwxr-xr-x
dnssec-coverage	924 B	-rwxr-xr-x
dnssec-dsfromkey	56.6 KB	-rwxr-xr-x
dnssec-importkey	52.59 KB	-rwxr-xr-x
dnssec-keyfromlabel	60.52 KB	-rwxr-xr-x
dnssec-keygen	64.55 KB	-rwxr-xr-x
dnssec-keymgr	920 B	-rwxr-xr-x
dnssec-revoke	48.46 KB	-rwxr-xr-x
dnssec-settime	56.52 KB	-rwxr-xr-x
dnssec-signzone	105.71 KB	-rwxr-xr-x
dnssec-verify	48.46 KB	-rwxr-xr-x
dovecot	362.53 KB	-rwxr-xr-x
dovecot_cpshutdown	3.27 KB	-rwxr-xr-x
dracut	55.83 KB	-rwxr-xr-x
dumpe2fs	23.62 KB	-rwxr-xr-x
e2freefrag	11.15 KB	-rwxr-xr-x
e2fsck	250.55 KB	-rwxr-xr-x
e2image	27.85 KB	-rwxr-xr-x
e2label	69.41 KB	-rwxr-xr-x
e2undo	11.32 KB	-rwxr-xr-x
e4defrag	23.55 KB	-rwxr-xr-x
eapol_test	1.77 MB	-rwxr-xr-x
ebtables	6.85 KB	-rwxr-xr-x
ebtables-restore	10.88 KB	-rwxr-xr-x
ebtables-save	851 B	-rwxr-xr-x
edquota	83.09 KB	-rwxr-xr-x
ether-wake	73.26 KB	-rwxr-xr-x
ethtool	293.87 KB	-rwxr-xr-x
exicyclog	11.01 KB	-rwxr-xr-x
exigrep	10.44 KB	-rwxr-xr-x
exim	1.33 MB	-rwsr-xr-x
exim_checkaccess	4.73 KB	-rwxr-xr-x
exim_dbmbuild	82.25 KB	-rwxr-xr-x
exim_dumpdb	134.61 KB	-rwxr-xr-x
exim_fixdb	168.38 KB	-rwxr-xr-x
exim_lock	64.84 KB	-rwxr-xr-x
exim_tidydb	142.97 KB	-rwxr-xr-x
eximstats	148.01 KB	-rwxr-xr-x
exinext	8.02 KB	-rwxr-xr-x
exiqgrep	5.46 KB	-rwxr-xr-x
exiqsumm	5.07 KB	-rwxr-xr-x
exiwhat	4.32 KB	-rwxr-xr-x
exportfs	76.91 KB	-rwxr-xr-x
faillock	15.02 KB	-rwxr-xr-x
fcgistarter	23.85 KB	-rwxr-xr-x
fdformat	11.27 KB	-rwxr-xr-x
fdisk	195.8 KB	-rwxr-xr-x
filefrag	15.23 KB	-rwxr-xr-x
findfs	11.2 KB	-rwxr-xr-x
fixfiles	11.03 KB	-rwxr-xr-x
fsck	32.12 KB	-rwxr-xr-x
fsck.btrfs	1.16 KB	-rwxr-xr-x
fsck.cramfs	19.57 KB	-rwxr-xr-x
fsck.ext2	250.55 KB	-rwxr-xr-x
fsck.ext3	250.55 KB	-rwxr-xr-x
fsck.ext4	250.55 KB	-rwxr-xr-x
fsck.minix	73.32 KB	-rwxr-xr-x
fsck.xfs	433 B	-rwxr-xr-x
fsfreeze	11.23 KB	-rwxr-xr-x
fstrim	40.59 KB	-rwxr-xr-x
fuser	32.34 KB	-rwxr-xr-x
fxload	19.26 KB	-rwxr-xr-x
genhomedircon	23.77 KB	-rwxr-xr-x
genhostid	6.94 KB	-rwxr-xr-x
genl	52.81 KB	-rwxr-xr-x
genl-ctrl-list	11.27 KB	-rwxr-xr-x
genrandom	11.16 KB	-rwxr-xr-x
getcap	11.13 KB	-rwxr-xr-x
getenforce	7.01 KB	-rwxr-xr-x
getpcaps	7.07 KB	-rwxr-xr-x
getsebool	11.13 KB	-rwxr-xr-x
glibc_post_upgrade.x86_64	772.05 KB	-rwx------
groupadd	85.65 KB	-rwxr-xr-x
groupdel	77.38 KB	-rwxr-xr-x
groupmems	55.97 KB	-rwxr-xr-x
groupmod	85.66 KB	-rwxr-xr-x
grpck	59.93 KB	-rwxr-xr-x
grpconv	51.73 KB	-rwxr-xr-x
grpunconv	51.73 KB	-rwxr-xr-x
grub2-bios-setup	1.03 MB	-rwxr-xr-x
grub2-get-kernel-settings	2.08 KB	-rwxr-xr-x
grub2-install	1.29 MB	-rwxr-xr-x
grub2-macbless	1.02 MB	-rwxr-xr-x
grub2-mkconfig	7.63 KB	-rwxr-xr-x
grub2-ofpathname	225.54 KB	-rwxr-xr-x
grub2-probe	1.03 MB	-rwxr-xr-x
grub2-reboot	4 KB	-rwxr-xr-x
grub2-rpm-sort	258.52 KB	-rwxr-xr-x
grub2-set-default	3.46 KB	-rwxr-xr-x
grub2-setpassword	2.96 KB	-rwxr-xr-x
grub2-sparc64-setup	1.04 MB	-rwxr-xr-x
grubby	71.27 KB	-rwxr-xr-x
gss-server	23.13 KB	-rwxr-xr-x
gssproxy	130.64 KB	-rwxr-xr-x
halt	704.8 KB	-rwxr-xr-x
hardlink	15.29 KB	-rwxr-xr-x
htcacheclean	78.45 KB	-rwxr-xr-x
httpd	2.31 MB	-rwxr-xr-x
hwclock	48.44 KB	-rwxr-xr-x
iconvconfig	22.15 KB	-rwxr-xr-x
iconvconfig.x86_64	22.15 KB	-rwxr-xr-x
ifcfg	2.99 KB	-rwxr-xr-x
ifconfig	80.05 KB	-rwxr-xr-x
ifdown	1.61 KB	-rwxr-xr-x
ifenslave	19.74 KB	-rwxr-xr-x
ifstat	40.6 KB	-rwxr-xr-x
ifup	4.89 KB	-rwxr-xr-x
im360-ssl-cache	6.9 MB	-rwxr-xr-x
imunify-auditd-log-reader	16.23 MB	-rwxr-xr-x
imunify-auditd-log-reader-cfg-...	600 B	-rwxr-xr-x
imunify-notifier	9.8 MB	-rwxr-xr-x
imunify-realtime-av	8.97 MB	-rwxr-xr-x
imunify360-pam	37.06 KB	-rwxr-xr-x
imunify360-php-daemon	15.59 MB	-rwxr-xr-x
imunify360-scanlogd	10.22 KB	-rwx------
imunify360-unified-access-logg...	12.85 MB	-rwxr-xr-x
imunify360-watchdog	8.52 KB	-rwxr-xr-x
imunify360-webshield	1.41 MB	-rwxr-xr-x
imunify360-webshield-compose-l...	7.01 KB	-rwxr-xr-x
imunify360-webshield-ipdetect	11.51 KB	-rwxr-xr-x
imunify360-webshield-ssl-cache	6.9 MB	-rwxr-xr-x
init	1.56 MB	-rwxr-xr-x
insmod	143.24 KB	-rwxr-xr-x
install-info	110.42 KB	-rwxr-xr-x
installkernel	2.69 KB	-rwxr-xr-x
intel-microcode2ucode	11.1 KB	-rwxr-xr-x
ip	459.59 KB	-rwxr-xr-x
ip6tables	91.52 KB	-rwxr-xr-x
ip6tables-restore	91.52 KB	-rwxr-xr-x
ip6tables-save	91.52 KB	-rwxr-xr-x
ipmaddr	19.33 KB	-rwxr-xr-x
iprconfig	394.37 KB	-rwxr-xr-x
iprdbg	135.94 KB	-rwx------
iprdump	123.67 KB	-rwxr-xr-x
iprinit	123.64 KB	-rwxr-xr-x
iprsos	2.18 KB	-rwxr-xr-x
iprupdate	123.64 KB	-rwxr-xr-x
ipset	7.02 KB	-rwxr-xr-x
iptables	91.52 KB	-rwxr-xr-x
iptables-restore	91.52 KB	-rwxr-xr-x
iptables-save	91.52 KB	-rwxr-xr-x
iptunnel	23.33 KB	-rwxr-xr-x
irqbalance	48.5 KB	-rwxr-xr-x
isc-hmac-fixup	11.2 KB	-rwxr-xr-x
kexec	166.06 KB	-rwxr-xr-x
key.dns_resolver	19.45 KB	-rwxr-xr-x
killall5	23.17 KB	-rwxr-xr-x
kpartx	39.47 KB	-rwxr-xr-x
lchage	15.41 KB	-rwxr-xr-x
ldattach	27.93 KB	-rwxr-xr-x
ldconfig	952.08 KB	-rwxr-xr-x
lfd	382.45 KB	-rwx------
lgroupadd	11.28 KB	-rwxr-xr-x
lgroupdel	11.26 KB	-rwxr-xr-x
lgroupmod	15.44 KB	-rwxr-xr-x
lid	15.4 KB	-rwxr-xr-x
lnewusers	15.46 KB	-rwxr-xr-x
lnstat	20.09 KB	-rwxr-xr-x
load_policy	10.97 KB	-rwxr-xr-x
logrotate	68.61 KB	-rwxr-xr-x
logsave	11.27 KB	-rwxr-xr-x
losetup	82.45 KB	-rwxr-xr-x
lpasswd	15.5 KB	-rwxr-xr-x
lsmod	143.24 KB	-rwxr-xr-x
lsof	150.57 KB	-rwxr-xr-x
luseradd	15.38 KB	-rwxr-xr-x
luserdel	11.3 KB	-rwxr-xr-x
lusermod	19.43 KB	-rwxr-xr-x
lwresd	768.19 KB	-rwxr-xr-x
makedumpfile	376.52 KB	-rwxr-xr-x
matchpathcon	11.19 KB	-rwxr-xr-x
mediabuilder	826 B	-rwxr-xr-x
mii-diag	20.08 KB	-rwxr-xr-x
mii-tool	19.51 KB	-rwxr-xr-x
mkdict	246 B	-rwxr-xr-x
mkdumprd	13.99 KB	-rwxr-xr-x
mke2fs	94.08 KB	-rwxr-xr-x
mkfs	11.25 KB	-rwxr-xr-x
mkfs.btrfs	366.45 KB	-rwxr-xr-x
mkfs.cramfs	36.16 KB	-rwxr-xr-x
mkfs.ext2	94.08 KB	-rwxr-xr-x
mkfs.ext3	94.08 KB	-rwxr-xr-x
mkfs.ext4	94.08 KB	-rwxr-xr-x
mkfs.minix	36.27 KB	-rwxr-xr-x
mkfs.xfs	359.8 KB	-rwxr-xr-x
mkhomedir_helper	19.05 KB	-rwxr-xr-x
mklost+found	11.11 KB	-rwxr-xr-x
mkswap	69.64 KB	-rwxr-xr-x
modinfo	143.24 KB	-rwxr-xr-x
modprobe	143.24 KB	-rwxr-xr-x
mount.nfs	114.68 KB	-rwsr-xr-x
mount.nfs4	114.68 KB	-rwsr-xr-x
mountstats	40.59 KB	-rwxr-xr-x
mysqld	244.14 MB	-rwxr-xr-x
mysqld-debug	165.52 MB	-rwxr-xr-x
named	768.19 KB	-rwxr-xr-x
named-checkconf	32.25 KB	-rwxr-xr-x
named-checkzone	32.06 KB	-rwxr-xr-x
named-compilezone	32.06 KB	-rwxr-xr-x
named-journalprint	11.13 KB	-rwxr-xr-x
nameif	15.32 KB	-rwxr-xr-x
netreport	10.96 KB	-rwxr-xr-x
new-kernel-pkg	24.96 KB	-rwxr-xr-x
newusers	93.45 KB	-rwxr-xr-x
nfsdcltrack	40.11 KB	-rwxr-xr-x
nfsidmap	19.32 KB	-rwxr-xr-x
nfsiostat	23.64 KB	-rwxr-xr-x
nfsstat	29.84 KB	-rwxr-xr-x
nl-class-add	11.7 KB	-rwxr-xr-x
nl-class-delete	11.55 KB	-rwxr-xr-x
nl-class-list	11.48 KB	-rwxr-xr-x
nl-classid-lookup	11.29 KB	-rwxr-xr-x
nl-cls-add	11.76 KB	-rwxr-xr-x
nl-cls-delete	11.68 KB	-rwxr-xr-x
nl-cls-list	11.58 KB	-rwxr-xr-x
nl-link-list	11.52 KB	-rwxr-xr-x
nl-pktloc-lookup	11.36 KB	-rwxr-xr-x
nl-qdisc-add	11.6 KB	-rwxr-xr-x
nl-qdisc-delete	11.54 KB	-rwxr-xr-x
nl-qdisc-list	11.63 KB	-rwxr-xr-x
nologin	7.01 KB	-rwxr-xr-x
nscd	180.02 KB	-rwxr-xr-x
nsec3hash	11.13 KB	-rwxr-xr-x
nstat	23.88 KB	-rwxr-xr-x
osd_login	2.55 KB	-rwxr-xr-x
ownership	15.04 KB	-rwxr-xr-x
packer	11.06 KB	-rwxr-xr-x
pam_console_apply	39.69 KB	-rwxr-xr-x
pam_imunify_daemon.bin	10.03 MB	-rwxr-xr-x
pam_tally2	15.05 KB	-rwxr-xr-x
pam_timestamp_check	10.97 KB	-rwxr-xr-x
paperconfig	4.07 KB	-rwxr-xr-x
parted	77.22 KB	-rwxr-xr-x
partprobe	11.23 KB	-rwxr-xr-x
partx	86.55 KB	-rwxr-xr-x
pidof	23.17 KB	-rwxr-xr-x
ping6	64.63 KB	-rwxr-xr-x
pivot_root	11.19 KB	-rwxr-xr-x
plipconfig	11.06 KB	-rwxr-xr-x
plymouth-set-default-theme	6.21 KB	-rwxr-xr-x
plymouthd	84.22 KB	-rwxr-xr-x
poweroff	704.8 KB	-rwxr-xr-x
ppp-watch	23.2 KB	-rwxr-xr-x
pwck	51.71 KB	-rwxr-xr-x
pwconv	47.57 KB	-rwxr-xr-x
pwhistory_helper	15.44 KB	-rwxr-xr-x
pwunconv	47.59 KB	-rwxr-xr-x
quot	70.66 KB	-rwxr-xr-x
quotacheck	107.29 KB	-rwxr-xr-x
quotaoff	75.03 KB	-rwxr-xr-x
quotaon	75.03 KB	-rwxr-xr-x
quotastats	14.03 KB	-rwxr-xr-x
rdisc	23.17 KB	-rwxr-xr-x
rdma	73.42 KB	-rwxr-xr-x
readprofile	15.46 KB	-rwxr-xr-x
reboot	704.8 KB	-rwxr-xr-x
repquota	75.16 KB	-rwxr-xr-x
request-key	19.41 KB	-rwxr-xr-x
resize2fs	48.41 KB	-rwxr-xr-x
resizepart	32.36 KB	-rwxr-xr-x
restorecon	27.16 KB	-rwxr-xr-x
rmmod	143.24 KB	-rwxr-xr-x
rndc	35.88 KB	-rwxr-xr-x
rndc-confgen	19.44 KB	-rwxr-xr-x
rotatelogs	53 KB	-rwxr-xr-x
route	66.6 KB	-rwxr-xr-x
routef	173 B	-rwxr-xr-x
routel	1.59 KB	-rwxr-xr-x
rpc.gssd	88.73 KB	-rwxr-xr-x
rpc.idmapd	48.13 KB	-rwxr-xr-x
rpc.mountd	128.91 KB	-rwxr-xr-x
rpc.nfsd	40.2 KB	-rwxr-xr-x
rpc.rquotad	78.95 KB	-rwxr-xr-x
rpc.statd	97.59 KB	-rwxr-xr-x
rpcbind	60.07 KB	-rwxr-xr-x
rpcdebug	18.05 KB	-rwxr-xr-x
rpcinfo	27.3 KB	-rwxr-xr-x
rsyslogd	648.45 KB	-rwxr-xr-x
rtacct	41.93 KB	-rwxr-xr-x
rtcwake	31.96 KB	-rwxr-xr-x
rtmon	48.67 KB	-rwxr-xr-x
rtpr	37 B	-rwxr-xr-x
rtstat	20.09 KB	-rwxr-xr-x
runlevel	704.8 KB	-rwxr-xr-x
runq	1.33 MB	-rwsr-xr-x
runuser	32.21 KB	-rwxr-xr-x
safe_finger	11.08 KB	-rwxr-xr-x
sasldblistusers2	19.26 KB	-rwxr-xr-x
saslpasswd2	15.09 KB	-rwxr-xr-x
schedmgr	517 B	-rwxr-xr-x
sefcontext_compile	60.53 KB	-rwxr-xr-x
selabel_digest	11.17 KB	-rwxr-xr-x
selabel_lookup	11.14 KB	-rwxr-xr-x
selabel_lookup_best_match	11.16 KB	-rwxr-xr-x
selabel_partial_match	11.09 KB	-rwxr-xr-x
selinux_restorecon	15.21 KB	-rwxr-xr-x
selinuxconlist	11.1 KB	-rwxr-xr-x
selinuxdefcon	11.12 KB	-rwxr-xr-x
selinuxenabled	6.98 KB	-rwxr-xr-x
selinuxexeccon	7.09 KB	-rwxr-xr-x
semanage	42.76 KB	-rwxr-xr-x
semodule	23.77 KB	-rwxr-xr-x
sendmail	13.64 KB	-rwxr-sr-x
service	3.17 KB	-rwxr-xr-x
sestatus	15.02 KB	-rwxr-xr-x
setcap	11.13 KB	-rwxr-xr-x
setenforce	7.05 KB	-rwxr-xr-x
setfiles	27.16 KB	-rwxr-xr-x
setquota	83.16 KB	-rwxr-xr-x
setsebool	14.99 KB	-rwxr-xr-x
sfdisk	83.25 KB	-rwxr-xr-x
showmount	19.56 KB	-rwxr-xr-x
shutdown	704.8 KB	-rwxr-xr-x
sim_server	10.97 KB	-rwxr-xr-x
slattach	42.4 KB	-rwxr-xr-x
sln	743.78 KB	-rwxr-xr-x
sm-notify	68.43 KB	-rwxr-xr-x
smartctl	864.48 KB	-rwxr-xr-x
smartd	670.63 KB	-rwxr-xr-x
snmpd	31.05 KB	-rwxr-xr-x
snmptrapd	31.22 KB	-rwxr-xr-x
ss	128.44 KB	-rwxr-xr-x
sshd	832.96 KB	-rwxr-xr-x
sshd-keygen	3.53 KB	-rwxr-xr-x
start-statd	842 B	-rwxr-xr-x
suexec	43.3 KB	-rwsr-xr-x
sulogin	40.53 KB	-rwxr-xr-x
sushell	67 B	-rwxr-xr-x
sw-engine-fpm	22.35 MB	-rwxr-xr-x
swaplabel	15.31 KB	-rwxr-xr-x
swapoff	15.53 KB	-rwxr-xr-x
swapon	53.29 KB	-rwxr-xr-x
switch_root	15.35 KB	-rwxr-xr-x
sys-unconfig	184 B	-rwxr-xr-x
sysctl	23.57 KB	-rwxr-xr-x
t1libconfig	3.83 KB	-rwxr-xr-x
tc	384.66 KB	-rwxr-xr-x
tcpd	36.62 KB	-rwxr-xr-x
tcpdmatch	40.83 KB	-rwxr-xr-x
telinit	704.8 KB	-rwxr-xr-x
tibxread	828 B	-rwxr-xr-x
tmpwatch	27.87 KB	-rwxr-xr-x
tracepath	15.05 KB	-rwxr-xr-x
tracepath6	15.05 KB	-rwxr-xr-x
trueimagemnt	850 B	-rwxr-xr-x
try-from	23.47 KB	-rwxr-xr-x
tsig-keygen	19.44 KB	-rwxr-xr-x
tune2fs	69.41 KB	-rwxr-xr-x
tuned	3.29 KB	-rwxr-xr-x
tuned-adm	5.22 KB	-rwxr-xr-x
udevadm	414.27 KB	-rwxr-xr-x
umount.nfs	114.68 KB	-rwsr-xr-x
umount.nfs4	114.68 KB	-rwsr-xr-x
unix_chkpwd	35.42 KB	-rwxr-xr-x
unix_update	35.42 KB	-rwx------
update-alternatives	27.61 KB	-rwxr-xr-x
update-smart-drivedb	14.34 KB	-rwxr-xr-x
useradd	134.39 KB	-rwxr-xr-x
userdel	93.5 KB	-rwxr-xr-x
usermod	130.33 KB	-rwxr-xr-x
usernetctl	11.03 KB	-rwxr-xr-x
uuserver	14.97 KB	-rwxr-xr-x
vigr	62.54 KB	-rwxr-xr-x
vipw	62.54 KB	-rwxr-xr-x
virt-what	11.57 KB	-rwxr-xr-x
visudo	200.91 KB	-rwxr-xr-x
vmcore-dmesg	19.28 KB	-rwxr-xr-x
vpddecode	15.33 KB	-rwxr-xr-x
wafd_imunify_daemon	11.74 MB	-rwxr-xr-x
weak-modules	31.9 KB	-rwxr-xr-x
whmapi0	3.02 MB	-rwxr-xr-x
whmapi1	3.02 MB	-rwxr-xr-x
whmlogin	2.33 KB	-rwxr-xr-x
wipefs	28.05 KB	-rwxr-xr-x
wpa_cli	128.06 KB	-rwxr-xr-x
wpa_passphrase	56.79 KB	-rwxr-xr-x
wpa_supplicant	1.93 MB	-rwxr-xr-x
xfs_admin	1.35 KB	-rwxr-xr-x
xfs_bmap	638 B	-rwxr-xr-x
xfs_copy	339.33 KB	-rwxr-xr-x
xfs_db	576.38 KB	-rwxr-xr-x
xfs_estimate	11.16 KB	-rwxr-xr-x
xfs_freeze	767 B	-rwxr-xr-x
xfs_fsr	31.83 KB	-rwxr-xr-x
xfs_growfs	327.2 KB	-rwxr-xr-x
xfs_info	472 B	-rwxr-xr-x
xfs_io	122.68 KB	-rwxr-xr-x
xfs_logprint	355.81 KB	-rwxr-xr-x
xfs_mdrestore	314.81 KB	-rwxr-xr-x
xfs_metadump	747 B	-rwxr-xr-x
xfs_mkfile	1007 B	-rwxr-xr-x
xfs_ncheck	650 B	-rwxr-xr-x
xfs_quota	84.88 KB	-rwxr-xr-x
xfs_repair	563.2 KB	-rwxr-xr-x
xfs_rtcp	15.25 KB	-rwxr-xr-x
xqmstats	14.03 KB	-rwxr-xr-x
xtables-multi	91.52 KB	-rwxr-xr-x
yum-complete-transaction	9.22 KB	-rwxr-xr-x
yumdb	8.67 KB	-rwxr-xr-x
zdump	14.02 KB	-rwxr-xr-x
zic	50.02 KB	-rwxr-xr-x
zramctl	82.23 KB	-rwxr-xr-x

Code Editor : imunify360-pam

#!/opt/imunify360/venv/bin/python3
#
# imunify360-pam        Python script to manage imunify360 pam module
#                       enabled/diabled state.
#

import argparse
import os
import re
import shutil
import signal
import subprocess
import sys
import traceback
from collections import OrderedDict
from configparser import ConfigParser
from contextlib import closing, suppress
from distutils.version import LooseVersion
from enum import Enum
from functools import lru_cache, wraps
from pathlib import Path
from string import Template
from typing import Iterable, Tuple

import yaml

from pam_i360.internals import getLogger, logger_init, pam_imunify_config

CONFIG_DOVECOT = "/etc/dovecot/dovecot.conf"
CONFIG_DOVECOT_DATASTORE = "/var/cpanel/conf/dovecot/main"
CONFIG_DOVECOT_BASEDIR = "/var/cpanel/templates/dovecot"
CONFIG_DOVECOT_DEFAULT_SUFFIX = "2.3"
CONFIG_DOVECOT_TMPL = "main.default"
CONFIG_DOVECOT_LOCAL = "main.local"
CONFIG_PAM_DOVECOT = "/etc/pam.d/dovecot_imunify"
CONFIG_PAM_DOVECOT_DOMAINOWNER = "/etc/pam.d/dovecot_imunify_domainowner"
CONFIG_PROFTPD = "/etc/proftpd.conf"
CONFIG_PAM_PROFTPD = "/etc/pam.d/proftpd_imunify"
CONFIG_PUREFTPD = "/etc/pure-ftpd.conf"
CONFIG_TEMPLATE_PUREFTPD = "/var/cpanel/conf/pureftpd/local"
CONFIG_PAM_PUREFTPD = "/etc/pam.d/pure-ftpd"
CONFIG_IMUNIFY360 = "/etc/sysconfig/imunify360/imunify360-merged.config"

LEVELDB = "/opt/i360_pam_imunify/db/leveldb"

PAM_UNIX_REGEX = re.compile(r"auth\s+.+?\s+pam_unix\.so")

# logger late init in order to let sigterm_handler() to break
# logger_init() if needed
logger = None

class DovecotState(Enum):
    DISABLED = 0
    PAM = 1
    NATIVE = 2

DOVECOT_STATES = {
    "disabled": DovecotState.DISABLED,
    "pam": DovecotState.PAM,
    "native": DovecotState.NATIVE,
}

class Output:
    def status_changed(self, services):
        enabled = []
        already_enabled = []
        disabled = []
        already_disabled = []

services = OrderedDict(sorted(services.items(), key=lambda x: x[0]))
        for key, value in services.items():
            enabled_prev, enabled_now = value
            if enabled_now:
                if enabled_prev:
                    already_enabled.append(key)
                else:
                    enabled.append(key)
            else:
                if not enabled_prev:
                    already_disabled.append(key)
                else:
                    disabled.append(key)

message = None
        if len(enabled) > 0:
            message = "imunify360-pam (%s) is now enabled." % ", ".join(enabled)

if len(already_enabled) > 0:
            message = "imunify360-pam (%s) is already enabled." % ", ".join(
                already_enabled
            )

if len(disabled) > 0:
            message = "imunify360-pam (%s) is now disabled." % ", ".join(disabled)

if len(already_disabled) > 0:
            message = "imunify360-pam (%s) is already disabled." % ", ".join(
                already_disabled
            )

if message:
            self._print(message)

def status(self, services):
        services = OrderedDict(sorted(services.items(), key=lambda x: x[1]))
        enabled = [key for key, value in services.items() if value]
        if len(enabled) > 0:
            self._print("status: enabled (%s)" % ", ".join(enabled))
        else:
            self._print("status: disabled")

def warning(self, *args, **kwargs):
        self._print("[WARNING]", *args, **kwargs)

def error(self, *args, **kwargs):
        self._print("[ERROR]", *args, **kwargs)

def run_and_log(self, *args, **kwargs):
        subprocess.run(*args, **kwargs)

def flush(self):
        pass

def _print(self, *args, **kwargs):
        print(*args, **kwargs)

# duplicate to pam.log
        if args[0] == "[WARNING]":
            logfun = logger.warning
            args = args[1:]
        elif args[0] == "[ERROR]":
            logfun = logger.error
            args = args[1:]
        else:
            logfun = logger.info
        logfun(" ".join(args))

class YamlOutput(Output):
    def __init__(self):
        self._buffer = {}

def flush(self):
        print(yaml.safe_dump(self._buffer, default_flow_style=False))

# duplicate to pam.log
        for k in ["status_changed", "status"]:
            if k in self._buffer:
                logger.info("%s=%r", k, self._buffer[k])

def status_changed(self, services):
        for service, value in services.items():
            enabled_prev, enabled_now = value
            self._buffer.setdefault("status_changed", {})[service] = {
                "from": "enabled" if enabled_prev else "disabled",
                "to": "enabled" if enabled_now else "disabled",
            }

def status(self, services):
        for service, enabled in services.items():
            self._buffer.setdefault("status", {})[service] = (
                "enabled" if enabled else "disabled"
            )

def warning(self, *args, **kwargs):
        self._buffer.setdefault("warnings", []).append(" ".join(args))
        logger.warning(" ".join(args))

def error(self, *args, **kwargs):
        self._buffer.setdefault("errors", []).append(" ".join(args))
        # catch message and backtrace for sentry
        logger.error(" ".join(args))

def run_and_log(self, cmd, *args, **kwargs):
        proc = subprocess.run(
            cmd,
            *args,
            **kwargs,
            stdin=subprocess.DEVNULL,
            # capture and combine both streams into one
            stdout=subprocess.PIPE,
            stderr=subprocess.STDOUT
        )

if proc.returncode != 0:
            self.warning("%s exit code %d" % (" ".join(cmd), proc.returncode))

if (
            proc.returncode != 0
            or options.verbose
            or pam_imunify_config().getboolean("verbose")
        ):
            self._buffer.setdefault("subprocess_call", []).append(
                {
                    "cmd": " ".join(cmd),
                    "returncode": proc.returncode,
                    # .decode('ascii', errors='ignore') is to suppress
                    # cPanel tools output colors
                    "output": proc.stdout.decode("ascii", errors="ignore"),
                }
            )

# This function get CP name only
@lru_cache(1)
def get_cp_name():
    panel = "generic"

# cPanel check
    if os.path.isfile("/usr/local/cpanel/cpanel"):
        panel = "cpanel"

# Plesk check
    elif os.path.isfile("/usr/local/psa/version"):
        panel = "plesk"

# DirectAdmin check
    elif os.path.isfile("/usr/local/directadmin/directadmin"):
        panel = "directadmin"

return panel

def readlink_f(filename):
    """
    Pythonic way of doing /bin/readlink --canonicalize filename
    and is needed for cPanel /etc/pam.d symlinks.
    """
    try:
        result = os.readlink(filename)
    except OSError:
        # not a symlink
        return filename

if os.path.isabs(result):
        return result
    else:
        return os.path.join(os.path.dirname(filename), result)

def detect_conffiles(output=None):
    if not output:
        output = Output()

if os.path.exists("/etc/pam.d/common-auth"):
        # debian, ubuntu
        conffiles = ("/etc/pam.d/common-auth",)
    else:
        conffiles = "/etc/pam.d/password-auth", "/etc/pam.d/system-auth"

if not all(os.path.exists(conf) for conf in conffiles):
        output.error("PAM configuration file(s) not found: %s" % " ".join(conffiles))
        sys.exit(1)

return [readlink_f(fn) for fn in conffiles]

def atomic_rewrite(filename, content):
    """
    Atomically rewrites filename with given content to
    avoid possible "No space left on device"
    or unintenrional PAM module break.

Backup original file content to {filename}.i360bak
    """
    if os.path.exists(filename):
        shutil.copy(filename, filename + ".i360bak")

tmp = filename + ".i360edit"
    with open(tmp, "wb" if isinstance(content, bytes) else "w") as tf:
        tf.write(content)
        try:
            st = os.stat(filename)
        except FileNotFoundError:
            pass
        else:
            os.fchmod(tf.fileno(), st.st_mode)
            os.fchown(tf.fileno(), st.st_uid, st.st_gid)
    ext = 3
    while ext > 0:
        try:
            os.rename(tmp, filename)
        except OSError:
            ext = ext - 1
            if ext == 0:
                output.error("Trouble in renaming of %s to %s" % (tmp, filename))
                sys.exit(1)
        else:
            ext = 0

class i360RPatch:
    def __init__(self, conf_filename, output=None):
        self._conf_filename = conf_filename
        self.output = Output() if not output else output

def filename(self):
        return os.path.join(
            os.path.dirname(self._conf_filename),
            ".%s.i360patch" % os.path.basename(self._conf_filename),
        )

def create_upon(self, content):
        cmd = ["/usr/bin/diff", "--unified=1", self._conf_filename, "-"]
        proc = subprocess.Popen(
            cmd, stdin=subprocess.PIPE, stdout=open(self.filename(), "w")
        )
        proc.communicate(content.encode())

if proc.returncode != 1:
            # not a big deal: will use .i360bak as the last resort
            self.output.warning("'diff -u' error", file=sys.stderr)
            os.unlink(self.filename())

def apply(self):
        """
        :raise CalledProcessError:
        """
        cmd = ["/usr/bin/patch", "--reverse", self._conf_filename]
        subprocess.check_call(
            cmd, stdin=open(self.filename()), stdout=open("/dev/null", "w")
        )
        os.unlink(self.filename())

def pam_unix_patch_around(pamconfig_lines, pam_unix_ln):
    match_offset = re.search(
        r"success=(\d)\s+default=ignore", pamconfig_lines[pam_unix_ln]
    )

patch_simple(pamconfig_lines, pam_unix_ln)
    pam_unix_ln += 1

if match_offset:
        fix_offset(pamconfig_lines, pam_unix_ln, int(match_offset.group(1)))

def dovecot_manyconfigs_basedir() -> Tuple[Iterable[str], str]:
    """
    As per DEF-18259 it comes out that dovecot config main.default and main.local
    files may reside in a directory /var/cpanel/conf/dovecot/main refers it via
    '_use_target_version: ...'

:return: dovecot multiple configs basedir list and
             warning message if any
    """
    result = set()
    warning_msg = None

def check_and_use(path_):
        # unwind '/var/cpanel/templates/dovecot -> /var/cpanel/templates/dovecot2.3'
        path_ = readlink_f(path_)

if os.path.exists(os.path.join(path_, CONFIG_DOVECOT_TMPL)):
            result.add(path_)
            return True
        return False

check_and_use(CONFIG_DOVECOT_BASEDIR)
    check_and_use(CONFIG_DOVECOT_BASEDIR + CONFIG_DOVECOT_DEFAULT_SUFFIX)

try:
        with open(CONFIG_DOVECOT_DATASTORE) as f:
            target_version = yaml.safe_load(f)["_use_target_version"]
    except (FileNotFoundError, UnicodeError, yaml.YAMLError) as e:
        warning_msg = "%s: %s" % (CONFIG_DOVECOT_DATASTORE, e)
    except KeyError:
        pass
    else:
        path_ = CONFIG_DOVECOT_BASEDIR + target_version
        if not check_and_use(path_):
            warning_msg = (
                "%s '_use_target_version: %s' refers a non existent "
                "configuration file %r"
                % (CONFIG_DOVECOT_DATASTORE, target_version, path_)
            )

return result, warning_msg

def insert_imunify_passdb(data, output=None):
    imunify_passdb_template = Template(
        "passdb {\n"
        "  driver = imunify360\n"
        "  args = key=/opt/i360_pam_imunify/key \\\n"
        "         secret=/opt/i360_pam_imunify/secret \\\n"
        "         socket=/opt/i360_pam_imunify/pam_imunify360.sock"
        "$check_only"
        "$result_action\n"
        "}"
    )

if not output:
        output = Output()

if not re.search(
        r"passdb\s*\{\s*driver\s*=\s*imunify360.*?}", data, re.DOTALL
    ):  # passdb is already in config
        match = re.search(
            r"passdb\s*\{\s*driver\s*=\s*dict.*?}", data, re.DOTALL
        )  # find default passdb
        if match:
            data = (
                data[: match.end()]
                + "\n"
                + imunify_passdb_template.substitute(
                    check_only="\n", result_action="  result_success = continue"
                )
                + "\n"
                + data[match.end() :]
            )  # insert imunify passdb after default passdb
            return (
                data[: match.start()]
                + "\n"
                + imunify_passdb_template.substitute(
                    check_only=" \\\n         check_only=1\n",
                    result_action="  result_failure = return-fail\n",
                )
                + "\n"
                + data[match.start() :]  # insert imunify passdb before default passdb
            )
        else:  # default passdb missing
            output.error("PAM configuration file parse error: passdb missing")
            sys.exit(1)

def patch_dovecot_config_template(dovecot_state: str, config_basedir: str):
    config_template = os.path.join(config_basedir, CONFIG_DOVECOT_TMPL)
    config_local = os.path.join(config_basedir, CONFIG_DOVECOT_LOCAL)
    passdb_regex = re.compile(r"^\s*passdb\s*\{.*?\}\s*$", re.DOTALL | re.MULTILINE)
    if dovecot_state == DovecotState.PAM or dovecot_state == DovecotState.NATIVE:

def passdb_replace(match):
            repl = None
            if dovecot_state == DovecotState.PAM:
                repl = re.sub(r"driver\s*=.*", "driver = pam", match.group(0))
                repl = re.sub(
                    r"args\s*=.*",
                    r"args = "
                    r"[% IF allow_domainowner_mail_pass %]"
                    r"dovecot_imunify_domainowner"
                    r"[% ELSE %]dovecot_imunify[% END %]",
                    repl,
                )

if dovecot_state == DovecotState.NATIVE:
                repl = re.sub(
                    r"result_internalfail\s*=.*",
                    "result_success = continue-ok",
                    match.group(0),
                )
                repl = re.sub(
                    r"result_failure\s*=.*", "result_failure = continue-fail", repl
                )
            return repl

data = Path(config_template).read_text()
        data = re.sub(passdb_regex, passdb_replace, data)
        if dovecot_state == DovecotState.NATIVE:
            data = insert_imunify_passdb(data)

if not options.dry:
            with open(config_local, "w") as f:
                f.write(data)
        else:
            return
    elif dovecot_state == DovecotState.DISABLED:
        with suppress(FileNotFoundError):
            os.unlink(config_local)

def change_dovecot_state(dovecot_state, output=None):
    """
    Enable or disable pam_imunify support for Dovecot
    """
    if not output:
        output = Output()

manyconfigs, warn = dovecot_manyconfigs_basedir()
    if warn:
        output.warning(warn)
    if len(manyconfigs) == 0:
        output.error("Dovecot config template file not found. Aborting.")
        sys.exit(1)
    for config_basedir in manyconfigs:
        patch_dovecot_config_template(dovecot_state, config_basedir)

if not options.norestart:
        if os.path.isfile("/scripts/builddovecotconf"):
            output.run_and_log(["/scripts/builddovecotconf"])
        if os.path.isfile("/scripts/restartsrv_dovecot"):
            output.run_and_log(["/scripts/restartsrv_dovecot"])

def service_incompatibility_panic(msg):
    """
    So far we decided to report service incompatibility error as warning,
    with the only exception for --dry-run option.

Otherwise we break agent PAM subsystem loop with the error when
    a client copied imunify360-merged.config from one server to another server
    in a case when the first server is compatible with that PAM integration feature
    but the second server is not capable with.
    """
    if options.dry:
        output.error(msg)
        sys.exit(1)
    else:
        output.warning(msg)
        sys.exit(0)

def cpanel_only_feature(service):
    def decorator(fun):
        @wraps(fun)
        def wrapper(*args, **kwargs):
            if get_cp_name() != "cpanel":
                service_incompatibility_panic(
                    "%s is not supported for %s."
                    % (service, get_cp_name().capitalize())
                )
            else:
                return fun(*args, **kwargs)

return wrapper

return decorator

def toggle_proftpd_support(enable=True, output=None):
    """
    Enable or disable pam_imunify support for ProFTPd
    """
    conf = CONFIG_PROFTPD
    if not os.path.isfile(conf):
        output.error("ProFTPD config file not found. Aborting.")
        sys.exit(1)

if enable:
        version_output = subprocess.check_output(
            [
                "in.proftpd" if get_cp_name() == "plesk" else "proftpd",
                "--version-status",
            ],
            stderr=subprocess.DEVNULL,
        ).decode(sys.stdout.encoding)
        if "mod_auth_pam" not in version_output:
            service_incompatibility_panic(
                "ProFTPD built without PAM support. "
                "pam_imunify for FTP is NOT enabled."
            )

version_regex = re.compile(r"ProFTPD Version:\s([0-9a-z\.]+)")
        version_found = version_regex.search(version_output)
        if version_found:
            version = LooseVersion(version_found.group(1))
            if version < LooseVersion("1.3.6c") or version.vstring.startswith(
                "1.3.6rc"
            ):
                if get_cp_name() == "cpanel":
                    service_incompatibility_panic(
                        "ProFTPD needs to be upgraded to "
                        "cPanel version 88 or higher. "
                        "pam_imunify for FTP is NOT enabled."
                    )
                else:
                    service_incompatibility_panic(
                        "ProFTPD needs to be upgraded. "
                        "pam_imunify for FTP is NOT enabled."
                    )

if not output:
        output = Output()

authpam_imunify = (
        "AuthOrder mod_auth_pam.c* mod_auth_file.c\n"
        "AuthPAM on\n"
        "AuthPAMConfig proftpd_imunify\n"
    )

authpam_regex = re.compile(r"(^AuthPAM.*\n?)+", re.MULTILINE)

data = open(conf).read()
    authpam_found = authpam_regex.search(data)

if enable:
        if authpam_found:
            authpam_span = authpam_found.span()
            data = data[: authpam_span[0]] + authpam_imunify + data[authpam_span[1] :]
        else:
            data = authpam_imunify + "\n" + data

if not options.dry:
            atomic_rewrite(conf, data)
        else:
            return
    else:
        conf_bak = conf + ".i360bak"
        if os.path.isfile(conf_bak):
            os.rename(conf_bak, conf)
        else:
            output.error(
                "Failed to disable proftpd integration: %s not found" % conf_bak
            )
            sys.exit(1)
    if os.path.isfile("/scripts/restartsrv_ftpd"):
        output.run_and_log(["/scripts/restartsrv_ftpd"])

def file_patchline(config: str, pattern, repl: bytes, reverse: bool):
    """
    Patch config file line inplace and backup config to '%s.i360bak' % config
    :param config: file path
    :param pattern: re.compile(b'...') result type
    :param reverse: revert back the previos operation on the same config file
    """
    if reverse:
        # lookup replacement in config_i360bak
        try:
            with open("%s.i360bak" % config, "rb") as f:
                repl = next(ln for ln in f if re.match(pattern, ln))
        except (FileNotFoundError, StopIteration):
            # there were no such entry before us
            repl = b""

if os.path.exists(config):
        with open(config, "rb") as f:
            conf_before = f.read()
            conf_after = re.sub(pattern, repl, conf_before, count=1)
            if conf_after == conf_before and not repl in conf_after:
                conf_after = (
                    conf_before + (b"" if conf_before.endswith(b"\n") else b"\n") + repl
                )
        if conf_after != conf_before:
            atomic_rewrite(config, conf_after)
    else:
        atomic_rewrite(config, repl)

def is_pureftpd_supported():
    # Pure-FTPd writes output to stdin, so we have to use
    # pipes to read from stdin afterwards...
    pipe_r, pipe_w = map(os.fdopen, os.pipe())

def finalize():
        pipe_w.close()
        pipe_r.close()

try:
        subprocess.check_output(
            ["pure-ftpd", "-l", "pam"],
            stdin=pipe_w,
            stderr=subprocess.STDOUT,
            timeout=1,
        )
    except subprocess.CalledProcessError:
        # after pipe_w.close() we can do pipe_r.read()
        pipe_w.close()
        with closing(pipe_r):
            # 421 Unknown authentication method: pam
            if pipe_r.read().startswith("421 "):
                return False
    except subprocess.TimeoutExpired:
        # This could happen if pam is supported
        # and pure-ftpd has started
        finalize()
    else:
        finalize()

return True

def is_pureftpd_enabled():
    """
    Check if pure-ftpd.conf contains /var/run/ftpd.imunify360.sock
    """
    if not os.path.isfile(CONFIG_PUREFTPD):
        return False

imunify360_regex = re.compile(
        rb"^(?!#).*\/var\/run\/ftpd.imunify360.sock",
        re.MULTILINE
    )

return imunify360_regex.search(
               open(CONFIG_PUREFTPD, "rb").read()) is not None

def toggle_pureftpd_conf_support(enable, output):
    extauth_regex = re.compile(rb"^\s*ExtAuth\s.*$", re.MULTILINE)
    extauth_imunify = b"ExtAuth /var/run/ftpd.imunify360.sock"

file_patchline(CONFIG_PUREFTPD, extauth_regex, extauth_imunify, reverse=enable is False)

if not options.norestart_pureftpd and \
            os.path.isfile("/scripts/restartsrv_ftpd"):
        output.run_and_log(["/scripts/restartsrv_ftpd"])

def toggle_pureftpd_cpanel_support(enable, output):
    extauth_regex = re.compile(rb"^\s*ExtAuth:\s.*$", re.MULTILINE)
    extauth_imunify = b"ExtAuth: /var/run/ftpd.imunify360.sock"

file_patchline(CONFIG_TEMPLATE_PUREFTPD, extauth_regex, extauth_imunify, reverse=enable is False)

if os.path.isfile("/scripts/setupftpserver"):
        output.run_and_log(["/usr/local/cpanel/scripts/setupftpserver", "--force", "pure-ftpd"])

def disable_ftp_protection():
    if not os.path.exists(CONFIG_IMUNIFY360):
        return

ftp_protection_pattern = re.compile(
        rb"^(?!#)([^\S\r\n]*ftp_protection:[^\S\r\n])*true",
        re.MULTILINE
    )
    def replacement(match):
        return match.group(1) + b'false'

with open(CONFIG_IMUNIFY360, "rb") as f:
        contents = f.read()
        if ftp_protection_pattern.search(contents):
            disabled_ftp_content = re.sub(
                ftp_protection_pattern,
                replacement,
                contents,
                count=1
            )
            atomic_rewrite(CONFIG_IMUNIFY360, disabled_ftp_content)

def toggle_pureftpd_support(enable=True, output=None):
    """
    Enable or disable pam_imunify support for PureFTPd
    """
    conf = CONFIG_PUREFTPD
    if not os.path.isfile(conf):
        output.error("Pure-FTPd config file not found. Aborting.")
        sys.exit(1)
    if enable:
        if not is_pureftpd_supported():
            service_incompatibility_panic(
                "Pure-FTPd built without PAM support. "
                "pam_imunify for FTP is NOT enabled."
            )

# ensure that ftp_protection is disabled in imunify360-merged.config
    if enable is False:
        disable_ftp_protection()

if not output:
        output = Output()
    if options.dry:
        return

toggle_pureftpd_conf_support(enable, output)

def toggle_sshd_support(conffiles, enable=True, output=None):
    """
    Enable or disable pam_imunify module for sshd authentication
    """
    if not output:
        output = Output()

if enable:
        for conf in conffiles:
            lines = open(conf).readlines()

try:
                pam_unix_ln = next(
                    ln for ln, line in enumerate(lines) if PAM_UNIX_REGEX.search(line)
                )
            except StopIteration:
                output.error("PAM configuration file %s parse error" % conf)
                sys.exit(1)

pam_unix_patch_around(lines, pam_unix_ln)

content = "".join(lines)
            i360RPatch(conf, output).create_upon(content)
            if not options.dry:
                atomic_rewrite(conf, content)
    else:
        for conf in conffiles:
            rpatch = i360RPatch(conf, output)
            if os.path.exists(rpatch.filename()):
                try:
                    rpatch.apply()
                    continue
                except subprocess.CalledProcessError as e:
                    output.warning(
                        "'patch -R' was not successful: %s" % e, file=sys.stderr
                    )
            else:
                output.warning(
                    "File not found: %s" % rpatch.filename(), file=sys.stderr
                )

atomic_rewrite(conf, open(conf + ".i360bak").read())

def set_panel_integration(confs, output=None):
    imunify_regex = re.compile(r"auth\s+sufficient\s+pam_imunify\.so")
    assert get_cp_name() == "cpanel", "The only supported integration so far."

if not output:
        output = Output()

for conf in confs:
        lines = open(conf).readlines()

try:
            imunify_ln = next(
                ln for ln, line in enumerate(lines) if imunify_regex.search(line)
            )
        except StopIteration:
            output.error("PAM configuration file %s parse error" % conf)
            sys.exit(1)

match_count = 0

def panel_replace(match):
            nonlocal match_count
            if match.group() in ["cpanel", "plesk", "directadmin"]:
                match_count += 1
                return get_cp_name()
            return match.group()

lines[imunify_ln] = re.sub(r"\b([^\s]+)\b", panel_replace, lines[imunify_ln])

if match_count == 0:
            lines[imunify_ln] = "%s %s\n" % (lines[imunify_ln].strip(), get_cp_name())

content = "".join(lines)
        atomic_rewrite(conf, content)
        os.unlink(conf + ".i360bak")

def patch_simple(pamconfig_lines, pam_unix_ln):
    pamconfig_lines.insert(pam_unix_ln + 1, "auth\trequired\tpam_imunify.so\n")
    pamconfig_lines.insert(pam_unix_ln, "auth\trequired\tpam_imunify.so\tcheck_only\n")

def fix_offset(pamconfig_lines, pam_unix_ln, pam_unix_success_offset):
    bump_to = pam_unix_success_offset + 1
    pamconfig_lines[pam_unix_ln] = re.sub(
        r"success=\d", "success=%d" % bump_to, pamconfig_lines[pam_unix_ln]
    )

def dovecot_state():
    pam_dovecot_enabled = (
        os.path.isfile(CONFIG_DOVECOT)
        and "dovecot_imunify" in open(CONFIG_DOVECOT).read()
    )
    native_dovecot_enabled = (
        os.path.isfile(CONFIG_DOVECOT) and "imunify360" in open(CONFIG_DOVECOT).read()
    )

if pam_dovecot_enabled:
        return DovecotState.PAM
    elif native_dovecot_enabled:
        return DovecotState.NATIVE
    else:
        return DovecotState.DISABLED

class Cmd:
    @classmethod
    def enable(cls, conffiles, output=None):
        if not output:
            output = Output()

if any("pam_imunify.so" in open(conf).read() for conf in conffiles):
            cls._cphulk_check()
            output.status_changed({"sshd": (True, True)})
            return

toggle_sshd_support(conffiles, True, output)

if not options.dry:
            cls._cphulk_check(output)
            output.status_changed({"sshd": (False, True)})

@staticmethod
    @cpanel_only_feature("Dovecot")
    def set_dovecot(conffiles, output=None):
        if not output:
            output = Output()

target_dovecot_state = DOVECOT_STATES[options.dovecot_state]
        if target_dovecot_state:
            prev_dovecot_state = dovecot_state()
            if prev_dovecot_state != target_dovecot_state:
                set_panel_integration(
                    [CONFIG_PAM_DOVECOT, CONFIG_PAM_DOVECOT_DOMAINOWNER], output
                )
                change_dovecot_state(target_dovecot_state, output)
            if target_dovecot_state in [DovecotState.PAM, DovecotState.NATIVE]:
                output.status_changed(
                    {
                        "dovecot-{}".format(options.dovecot_state): (
                            prev_dovecot_state == target_dovecot_state,
                            True,
                        )
                    }
                )
            else:
                output.status_changed(
                    {"dovecot": (prev_dovecot_state != target_dovecot_state, False)}
                )

else:
            output.error("Unexpected dovecot state {}".format(options.dovecot_state))

@staticmethod
    @cpanel_only_feature("ProFTPd")
    def enable_proftpd(conffiles, output=None):
        if not output:
            output = Output()

set_panel_integration([CONFIG_PAM_PROFTPD], output)

proftpd_enabled = (
            os.path.isfile(CONFIG_PROFTPD)
            and "proftpd_imunify" in open(CONFIG_PROFTPD).read()
        )

if not proftpd_enabled:
            toggle_proftpd_support(True, output)

if not options.dry:
            output.status_changed({"ftp": (proftpd_enabled, True)})

@staticmethod
    @cpanel_only_feature("Pure-FTPd")
    def enable_pureftpd(conffiles, output=None):
        if not output:
            output = Output()

panel = get_cp_name()

pureftpd_enabled = is_pureftpd_enabled()

if not pureftpd_enabled:
            toggle_pureftpd_support(True, output)

if not options.dry:
            output.status_changed({"ftp": (pureftpd_enabled, True)})

@staticmethod
    def disable_all(conffiles, output=None):
        if not output:
            output = Output()

dovecot_enabled = dovecot_state() != DovecotState.DISABLED
        proftpd_enabled = (
            os.path.isfile(CONFIG_PROFTPD)
            and "proftpd_imunify" in open(CONFIG_PROFTPD).read()
        )
        pureftpd_enabled = is_pureftpd_enabled()
        sshd_enabled = any("pam_imunify.so" in open(conf).read() for conf in conffiles)

if dovecot_enabled:
            change_dovecot_state(DovecotState.DISABLED, output)

if proftpd_enabled:
            toggle_proftpd_support(False, output)

if pureftpd_enabled:
            toggle_pureftpd_support(False, output)

if sshd_enabled:
            toggle_sshd_support(conffiles, False, output)

output.status_changed(
            {
                "sshd": (sshd_enabled, False),
                "dovecot": (dovecot_enabled, False),
                "ftp": (proftpd_enabled or pureftpd_enabled, False),
            }
        )

@staticmethod
    def disable(conffiles, output=None):
        if not output:
            output = Output()

sshd_enabled = any("pam_imunify.so" in open(conf).read() for conf in conffiles)

if sshd_enabled:
            toggle_sshd_support(conffiles, False, output)

output.status_changed({"sshd": (sshd_enabled, False)})

@staticmethod
    def disable_proftpd(conffiles, output=None):
        if not output:
            output = Output()

proftpd_enabled = (
            os.path.isfile(CONFIG_PROFTPD)
            and "proftpd_imunify" in open(CONFIG_PROFTPD).read()
        )
        if proftpd_enabled:
            toggle_proftpd_support(False, output)

output.status_changed({"ftp": (proftpd_enabled, False)})

@staticmethod
    def disable_pureftpd(conffiles, output=None):
        if not output:
            output = Output()

pureftpd_enabled = is_pureftpd_enabled()
        if pureftpd_enabled:
            toggle_pureftpd_support(False, output)

output.status_changed({"ftp": (pureftpd_enabled, False)})

@staticmethod
    @cpanel_only_feature("FTP service")
    def enable_ftp(conffiles, output=None):
        if not output:
            output = Output()

with open("/var/cpanel/cpanel.config", "r") as cpcfg:
            data = cpcfg.read()
            if "ftpserver=proftpd" in data:
                Cmd.enable_proftpd(conffiles, output)
            elif "ftpserver=pure-ftpd" in data:
                Cmd.enable_pureftpd(conffiles, output)
            else:
                service_incompatibility_panic("No supported FTP found.")

@staticmethod
    def disable_ftp(conffiles, output=None):
        if not output:
            output = Output()

proftpd_enabled = (
            os.path.isfile(CONFIG_PROFTPD)
            and "proftpd_imunify" in open(CONFIG_PROFTPD).read()
        )
        pureftpd_enabled = is_pureftpd_enabled()

if proftpd_enabled:
            toggle_proftpd_support(False, output)

if pureftpd_enabled:
            toggle_pureftpd_support(False, output)

output.status_changed({"ftp": (proftpd_enabled or pureftpd_enabled, False)})

@classmethod
    def status(cls, conffiles, output=None):
        if not output:
            output = Output()

dovecot_enabled = dovecot_state() != DovecotState.DISABLED
        sshd_enabled = any("pam_imunify.so" in open(conf).read() for conf in conffiles)
        proftpd_enabled = (
            os.path.isfile(CONFIG_PROFTPD)
            and "proftpd_imunify" in open(CONFIG_PROFTPD).read()
        )
        pureftpd_enabled = is_pureftpd_enabled()

if dovecot_enabled or sshd_enabled or proftpd_enabled or pureftpd_enabled:
            cls._cphulk_check(output)

output.status(
            {
                "sshd": sshd_enabled,
                "dovecot-pam": dovecot_state() == DovecotState.PAM,
                "dovecot-native": dovecot_state() == DovecotState.NATIVE,
                "ftp": proftpd_enabled or pureftpd_enabled,
            }
        )

@staticmethod
    def state_reset(*_):
        subprocess.check_call(["service", "imunify360-pam", "stop"])
        shutil.rmtree(LEVELDB)
        logger.info("rm -rf %s", LEVELDB)
        subprocess.check_call(["service", "imunify360-pam", "start"])

@staticmethod
    def _cphulk_check(output=None):
        if not os.path.isfile("/usr/sbin/whmapi1"):
            return
        if not options.verbose and not pam_imunify_config().getboolean("verbose"):
            return

if not output:
            output = Output()

proc = subprocess.run(
            ["whmapi1", "servicestatus", "service=cphulkd"],
            stdin=subprocess.DEVNULL,
            stdout=subprocess.PIPE,
        )
        if proc.returncode != 0:
            # we expect err dump is printed to stderr
            return

try:
            status = yaml.safe_load(proc.stdout)
            if status["data"]["service"][0]["enabled"]:
                output.warning("cPHulk is enabled", file=sys.stderr)
        except (yaml.YAMLError, IndexError, KeyError) as e:
            output.warning("whmapi error:", e, file=sys.stderr)

def sigterm_handler(signum, frame):
    """
    generate backtrace on SIGTERM
    """
    traceback.print_stack(frame, file=sys.stderr)
    print("caught SIGTERM.", file=sys.stderr)
    if logger is not None:
        logger.fatal("caught SIGTERM.")
    sys.exit(15)

if __name__ == "__main__":
    def add_opt_args(parser):
        parser.add_argument(
            "-r",
            "--dry-run",
            dest="dry",
            action="store_true",
            help="Dry run the command, whithout changing of state",
        )
        parser.add_argument(
            "-n",
            "--no-restart",
            dest="norestart",
            action="store_true",
            help="Don't restart dovecot and don't rebuild, just patch local dovecot template (cPanel only)",
        )
        parser.add_argument(
            "--no-restart-pureftpd",
            dest="norestart_pureftpd",
            action="store_true",
            help="Don't restart pureftpd",
        )
        parser.add_argument(
            "--yaml", dest="yaml", action="store_true", help="for YAML output"
        )
        parser.add_argument("-v", "--verbose", dest="verbose", action="store_true")

signal.signal(signal.SIGTERM, sigterm_handler)
    logger = logger_init(console_stream=None)
    parser = argparse.ArgumentParser()
    subparsers = parser.add_subparsers(dest="cmd")
    subparsers.required = True

for command in sorted(
        (cmd.replace("_", "-") for cmd in dir(Cmd) if not cmd.startswith("_")),
        reverse=True,
    ):
        if command == "set-dovecot":
            command_parser = subparsers.add_parser(command)
            command_parser.add_argument(
                "dovecot_state", type=str, choices=["pam", "native", "disabled"]
            )
            add_opt_args(command_parser)
        else:
            command_parser = subparsers.add_parser(command)
            add_opt_args(command_parser)

options = parser.parse_args()
    output = YamlOutput() if options.yaml else Output()
    try:
        cmd = getattr(Cmd, options.cmd.replace("-", "_"))
        cmd(detect_conffiles(output), output)
    except Exception as e:
        logger.exception("unexpected error: %s", e)
    finally:
        # even if we caught an exception there is still a possibility
        # that stdout is still usable (at least partially)
        output.flush()

${this.title}

Code Editor : imunify360-pam