File manager

File manager - Edit - /usr/local/CyberCP/install/install.py.bak

Back
import sys import subprocess import shutil import installLog as logging import argparse import os import shlex from firewallUtilities import FirewallUtilities import time import string import random import socket from os.path import * from stat import * import stat VERSION = '2.3' BUILD = 1 char_set = {'small': 'abcdefghijklmnopqrstuvwxyz', 'nums': '0123456789', 'big': 'ABCDEFGHIJKLMNOPQRSTUVWXYZ'} def generate_pass(length=14): chars = string.ascii_uppercase + string.ascii_lowercase + string.digits size = length return ''.join(random.choice(chars) for x in range(size)) # There can not be peace without first a great suffering. # distros centos = 0 ubuntu = 1 cent8 = 2 def get_distro(): distro = -1 distro_file = "" if exists("/etc/lsb-release"): distro_file = "/etc/lsb-release" with open(distro_file) as f: for line in f: if line == "DISTRIB_ID=Ubuntu\n": distro = ubuntu elif exists("/etc/os-release"): distro_file = "/etc/os-release" distro = centos data = open('/etc/redhat-release', 'r').read() if data.find('CentOS Linux release 8') > -1: return cent8 if data.find('AlmaLinux release 8') > -1: return cent8 if data.find('Rocky Linux release 8') > -1 or data.find('Rocky Linux 8') > -1 or data.find('rocky:8') > -1: return cent8 else: logging.InstallLog.writeToFile("Can't find linux release file - fatal error") preFlightsChecks.stdOut("Can't find linux release file - fatal error") os._exit(os.EX_UNAVAILABLE) if distro == -1: logging.InstallLog.writeToFile("Can't find distro name in " + distro_file + " - fatal error") preFlightsChecks.stdOut("Can't find distro name in " + distro_file + " - fatal error") os._exit(os.EX_UNAVAILABLE) return distro def get_Ubuntu_release(): release = -1 if exists("/etc/lsb-release"): distro_file = "/etc/lsb-release" with open(distro_file) as f: for line in f: if line[:16] == "DISTRIB_RELEASE=": release = float(line[16:]) if release == -1: preFlightsChecks.stdOut("Can't find distro release name in " + distro_file + " - fatal error", 1, 1, os.EX_UNAVAILABLE) else: logging.InstallLog.writeToFile("Can't find linux release file - fatal error") preFlightsChecks.stdOut("Can't find linux release file - fatal error") os._exit(os.EX_UNAVAILABLE) return release class preFlightsChecks: debug = 1 cyberPanelMirror = "mirror.cyberpanel.net/pip" cdn = 'cyberpanel.sh' def __init__(self, rootPath, ip, path, cwd, cyberPanelPath, distro, remotemysql=None, mysqlhost=None, mysqldb=None, mysqluser=None, mysqlpassword=None, mysqlport=None): self.ipAddr = ip self.path = path self.cwd = cwd self.server_root_path = rootPath self.cyberPanelPath = cyberPanelPath self.distro = distro self.remotemysql = remotemysql self.mysqlhost = mysqlhost self.mysqluser = mysqluser self.mysqlpassword = mysqlpassword self.mysqlport = mysqlport self.mysqldb = mysqldb @staticmethod def stdOut(message, log=0, do_exit=0, code=os.EX_OK): print("\n\n") print(("[" + time.strftime( "%m.%d.%Y_%H-%M-%S") + "] #########################################################################\n")) print(("[" + time.strftime("%m.%d.%Y_%H-%M-%S") + "] " + message + "\n")) print(("[" + time.strftime( "%m.%d.%Y_%H-%M-%S") + "] #########################################################################\n")) if log: logging.InstallLog.writeToFile(message) if do_exit: logging.InstallLog.writeToFile(message) sys.exit(code) def mountTemp(self): try: ## On OpenVZ there is an issue using .tempdisk for /tmp as it breaks network on container after reboot. if subprocess.check_output('systemd-detect-virt').decode("utf-8").find("openvz") > -1: varTmp = "/var/tmp /tmp none bind 0 0\n" fstab = "/etc/fstab" writeToFile = open(fstab, "a") writeToFile.writelines(varTmp) writeToFile.close() else: command = "dd if=/dev/zero of=/usr/.tempdisk bs=100M count=15" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "mkfs.ext4 -F /usr/.tempdisk" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "mkdir -p /usr/.tmpbak/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "cp -pr /tmp/* /usr/.tmpbak/" subprocess.call(command, shell=True) command = "mount -o loop,rw,nodev,nosuid,noexec,nofail /usr/.tempdisk /tmp" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod 1777 /tmp" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "cp -pr /usr/.tmpbak/* /tmp/" subprocess.call(command, shell=True) command = "rm -rf /usr/.tmpbak" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "mount --bind /tmp /var/tmp" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) tmp = "/usr/.tempdisk /tmp ext4 loop,rw,noexec,nosuid,nodev,nofail 0 0\n" varTmp = "/tmp /var/tmp none bind 0 0\n" fstab = "/etc/fstab" writeToFile = open(fstab, "a") writeToFile.writelines(tmp) writeToFile.writelines(varTmp) writeToFile.close() except BaseException as msg: preFlightsChecks.stdOut('[ERROR] ' + str(msg)) return 0 @staticmethod def pureFTPDServiceName(distro): if distro == ubuntu: return 'pure-ftpd-mysql' return 'pure-ftpd' @staticmethod def resFailed(distro, res): if distro == ubuntu and res != 0: return True elif distro == centos and res != 0: return True return False @staticmethod def call(command, distro, bracket, message, log=0, do_exit=0, code=os.EX_OK): finalMessage = 'Running: %s' % (message) preFlightsChecks.stdOut(finalMessage, log) count = 0 while True: res = subprocess.call(shlex.split(command)) if preFlightsChecks.resFailed(distro, res): count = count + 1 finalMessage = 'Running %s failed. Running again, try number %s' % (message, str(count)) preFlightsChecks.stdOut(finalMessage) if count == 3: fatal_message = '' if do_exit: fatal_message = '. Fatal error, see /var/log/installLogs.txt for full details' preFlightsChecks.stdOut("[ERROR] We are not able to run " + message + ' return code: ' + str(res) + fatal_message + ".", 1, do_exit, code) return False else: preFlightsChecks.stdOut('Successfully ran: %s.' % (message), log) break return True def checkIfSeLinuxDisabled(self): try: command = "sestatus" output = subprocess.check_output(shlex.split(command)).decode("utf-8") if output.find("disabled") > -1 or output.find("permissive") > -1: logging.InstallLog.writeToFile("SELinux Check OK. [checkIfSeLinuxDisabled]") preFlightsChecks.stdOut("SELinux Check OK.") return 1 else: logging.InstallLog.writeToFile( "SELinux is enabled, please disable SELinux and restart the installation!") preFlightsChecks.stdOut("Installation failed, consult: /var/log/installLogs.txt") os._exit(0) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + "[checkIfSeLinuxDisabled]") logging.InstallLog.writeToFile('[ERROR] ' + "SELinux Check OK. [checkIfSeLinuxDisabled]") preFlightsChecks.stdOut('[ERROR] ' + "SELinux Check OK.") return 1 def checkPythonVersion(self): if sys.version_info[0] == 3: return 1 else: preFlightsChecks.stdOut("You are running Unsupported python version, please install python 3.x") os._exit(0) def setup_account_cyberpanel(self): try: if self.distro == centos or self.distro == cent8: command = "yum install sudo -y" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## if self.distro == ubuntu: self.stdOut("Add Cyberpanel user") command = 'adduser --disabled-login --gecos "" cyberpanel' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) else: command = "useradd -s /bin/false cyberpanel" preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ############################### ### Docker User/group if self.distro == ubuntu: command = 'adduser --disabled-login --gecos "" docker' else: command = "adduser docker" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'groupadd docker' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'usermod -aG docker docker' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'usermod -aG docker cyberpanel' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ### command = "mkdir -p /etc/letsencrypt/live/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile("[ERROR] setup_account_cyberpanel. " + str(msg)) def installCyberPanelRepo(self): self.stdOut("Install Cyberpanel repo") if self.distro == ubuntu: try: filename = "enable_lst_debain_repo.sh" command = "wget http://rpms.litespeedtech.com/debian/" + filename preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) os.chmod(filename, S_IRWXU \| S_IRWXG) command = "./" + filename preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) except: logging.InstallLog.writeToFile("[ERROR] Exception during CyberPanel install") preFlightsChecks.stdOut("[ERROR] Exception during CyberPanel install") os._exit(os.EX_SOFTWARE) elif self.distro == centos: command = 'rpm -ivh http://rpms.litespeedtech.com/centos/litespeed-repo-1.2-1.el7.noarch.rpm' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) elif self.distro == cent8: command = 'rpm -Uvh http://rpms.litespeedtech.com/centos/litespeed-repo-1.1-1.el8.noarch.rpm' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) def fix_selinux_issue(self): try: cmd = [] cmd.append("setsebool") cmd.append("-P") cmd.append("httpd_can_network_connect") cmd.append("1") res = subprocess.call(cmd) if preFlightsChecks.resFailed(self.distro, res): logging.InstallLog.writeToFile("fix_selinux_issue problem") else: pass except: logging.InstallLog.writeToFile("[ERROR] fix_selinux_issue problem") def install_psmisc(self): self.stdOut("Install psmisc") if self.distro == centos or self.distro == cent8: command = "yum -y install psmisc" else: command = "apt-get -y install psmisc" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def download_install_CyberPanel(self, mysqlPassword, mysql): ## os.chdir(self.path) os.chdir('/usr/local') command = "git clone https://github.com/usmannasir/cyberpanel" preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) shutil.move('cyberpanel', 'CyberCP') ## ### update password: if self.remotemysql == 'OFF': passFile = "/etc/cyberpanel/mysqlPassword" f = open(passFile) data = f.read() password = data.split('\n', 1)[0] else: password = self.mysqlpassword ### Put correct mysql passwords in settings file! # This allows root/sudo users to be able to work with MySQL/MariaDB without hunting down the password like # all the other control panels allow # reference: https://oracle-base.com/articles/mysql/mysql-password-less-logins-using-option-files mysql_my_root_cnf = '/root/.my.cnf' mysql_root_cnf_content = """ [client] user=root password="%s" """ % password with open(mysql_my_root_cnf, 'w') as f: f.write(mysql_root_cnf_content) os.chmod(mysql_my_root_cnf, 0o600) command = 'chown root:root %s' % mysql_my_root_cnf subprocess.call(shlex.split(command)) logging.InstallLog.writeToFile("Updating /root/.my.cnf!") logging.InstallLog.writeToFile("Updating settings.py!") path = self.cyberPanelPath + "/CyberCP/settings.py" data = open(path, "r").readlines() writeDataToFile = open(path, "w") counter = 0 for items in data: if items.find('SECRET_KEY') > -1: SK = "SECRET_KEY = '%s'\n" % (generate_pass(50)) writeDataToFile.writelines(SK) continue if mysql == 'Two': if items.find("'PASSWORD':") > -1: if counter == 0: writeDataToFile.writelines(" 'PASSWORD': '" + mysqlPassword + "'," + "\n") counter = counter + 1 else: writeDataToFile.writelines(" 'PASSWORD': '" + password + "'," + "\n") else: writeDataToFile.writelines(items) else: if items.find("'PASSWORD':") > -1: if counter == 0: writeDataToFile.writelines(" 'PASSWORD': '" + mysqlPassword + "'," + "\n") counter = counter + 1 else: writeDataToFile.writelines(" 'PASSWORD': '" + password + "'," + "\n") elif items.find('127.0.0.1') > -1: writeDataToFile.writelines(" 'HOST': 'localhost',\n") elif items.find("'PORT':'3307'") > -1: writeDataToFile.writelines(" 'PORT': '',\n") else: writeDataToFile.writelines(items) if self.distro == ubuntu: os.fchmod(writeDataToFile.fileno(), stat.S_IRUSR \| stat.S_IWUSR) writeDataToFile.close() if self.remotemysql == 'ON': command = "sed -i 's\|localhost\|%s\|g' %s" % (self.mysqlhost, path) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) # command = "sed -i 's\|'mysql'\|'%s'\|g' %s" % (self.mysqldb, path) # preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i 's\|root\|%s\|g' %s" % (self.mysqluser, path) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i \"s\|'PORT': ''\|'PORT':'%s'\|g\" %s" % (self.mysqlport, path) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) logging.InstallLog.writeToFile("settings.py updated!") # self.setupVirtualEnv(self.distro) ### Applying migrations os.chdir("/usr/local/CyberCP") command = "/usr/local/CyberPanel/bin/python manage.py makemigrations" preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ## command = "/usr/local/CyberPanel/bin/python manage.py migrate" preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) if not os.path.exists("/usr/local/CyberCP/public"): os.mkdir("/usr/local/CyberCP/public") ## Moving static content to lscpd location command = 'mv static /usr/local/CyberCP/public/' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) try: path = "/usr/local/CyberCP/version.txt" writeToFile = open(path, 'w') writeToFile.writelines('%s\n' % (VERSION)) writeToFile.writelines(str(BUILD)) writeToFile.close() except: pass def fixCyberPanelPermissions(self): ###### fix Core CyberPanel permissions command = "usermod -G lscpd,lsadm,nobody lscpd" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "usermod -G lscpd,lsadm,nogroup lscpd" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "find /usr/local/CyberCP -type d -exec chmod 0755 {} \;" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "find /usr/local/CyberCP -type f -exec chmod 0644 {} \;" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod -R 755 /usr/local/CyberCP/bin" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## change owner command = "chown -R root:root /usr/local/CyberCP" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ########### Fix LSCPD command = "find /usr/local/lscp -type d -exec chmod 0755 {} \;" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "find /usr/local/lscp -type f -exec chmod 0644 {} \;" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod -R 755 /usr/local/lscp/bin" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod -R 755 /usr/local/lscp/fcgi-bin" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chown -R lscpd:lscpd /usr/local/CyberCP/public/phpmyadmin/tmp" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## change owner command = "chown -R root:root /usr/local/lscp" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chown -R lscpd:lscpd /usr/local/lscp/cyberpanel/rainloop/data" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod 700 /usr/local/CyberCP/cli/cyberPanel.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod 700 /usr/local/CyberCP/plogical/upgradeCritical.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod 755 /usr/local/CyberCP/postfixSenderPolicy/client.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod 640 /usr/local/CyberCP/CyberCP/settings.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chown root:cyberpanel /usr/local/CyberCP/CyberCP/settings.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) files = ['/etc/yum.repos.d/MariaDB.repo', '/etc/pdns/pdns.conf', '/etc/systemd/system/lscpd.service', '/etc/pure-ftpd/pure-ftpd.conf', '/etc/pure-ftpd/pureftpd-pgsql.conf', '/etc/pure-ftpd/pureftpd-mysql.conf', '/etc/pure-ftpd/pureftpd-ldap.conf', '/etc/dovecot/dovecot.conf', '/usr/local/lsws/conf/httpd_config.xml', '/usr/local/lsws/conf/modsec.conf', '/usr/local/lsws/conf/httpd.conf'] for items in files: command = 'chmod 644 %s' % (items) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) impFile = ['/etc/pure-ftpd/pure-ftpd.conf', '/etc/pure-ftpd/pureftpd-pgsql.conf', '/etc/pure-ftpd/pureftpd-mysql.conf', '/etc/pure-ftpd/pureftpd-ldap.conf', '/etc/dovecot/dovecot.conf', '/etc/pdns/pdns.conf', '/etc/pure-ftpd/db/mysql.conf', '/etc/powerdns/pdns.conf'] for items in impFile: command = 'chmod 600 %s' % (items) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 640 /etc/postfix/.cf' subprocess.call(command, shell=True) command = 'chmod 644 /etc/postfix/main.cf' subprocess.call(command, shell=True) command = 'chmod 640 /etc/dovecot/.conf' subprocess.call(command, shell=True) command = 'chmod 644 /etc/dovecot/dovecot.conf' subprocess.call(command, shell=True) command = 'chmod 640 /etc/dovecot/dovecot-sql.conf.ext' subprocess.call(command, shell=True) command = 'chmod 644 /etc/postfix/dynamicmaps.cf' subprocess.call(command, shell=True) fileM = ['/usr/local/lsws/FileManager/', '/usr/local/CyberCP/install/FileManager', '/usr/local/CyberCP/serverStatus/litespeed/FileManager', '/usr/local/lsws/Example/html/FileManager'] for items in fileM: try: shutil.rmtree(items) except: pass command = 'chmod 755 /etc/pure-ftpd/' subprocess.call(command, shell=True) command = 'chmod +x /usr/local/CyberCP/plogical/renew.py' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod +x /usr/local/CyberCP/CLManager/CLPackages.py' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) clScripts = ['/usr/local/CyberCP/CLScript/panel_info.py', '/usr/local/CyberCP/CLScript/CloudLinuxPackages.py', '/usr/local/CyberCP/CLScript/CloudLinuxUsers.py', '/usr/local/CyberCP/CLScript/CloudLinuxDomains.py', '/usr/local/CyberCP/CLScript/CloudLinuxResellers.py', '/usr/local/CyberCP/CLScript/CloudLinuxAdmins.py', '/usr/local/CyberCP/CLScript/CloudLinuxDB.py', '/usr/local/CyberCP/CLScript/UserInfo.py'] for items in clScripts: command = 'chmod +x %s' % (items) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 600 /usr/local/CyberCP/plogical/adminPass.py' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 600 /etc/cagefs/exclude/cyberpanelexclude' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "find /usr/local/CyberCP/ -name '.pyc' -delete" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == cent8 or self.distro == centos: command = 'chown root:pdns /etc/pdns/pdns.conf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 640 /etc/pdns/pdns.conf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 640 /usr/local/lscp/cyberpanel/logs/access.log' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'mkdir -p/usr/local/lscp/cyberpanel/rainloop/data/_data_/_default_/configs/' rainloopinipath = '/usr/local/lscp/cyberpanel/rainloop/data/_data_/_default_/configs/application.ini' command = 'chmod 600 /usr/local/CyberCP/public/rainloop.php' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ### WriteToFile = open('/etc/fstab', 'a') WriteToFile.write('proc /proc proc defaults,hidepid=2 0 0\n') WriteToFile.close() command = 'mount -o remount,rw,hidepid=2 /proc' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## symlink protection writeToFile = open('/usr/lib/sysctl.d/50-default.conf', 'a') writeToFile.writelines('fs.protected_hardlinks = 1\n') writeToFile.writelines('fs.protected_symlinks = 1\n') writeToFile.close() command = 'sysctl --system' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'chmod 700 %s' % ('/home/cyberpanel') preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) destPrivKey = "/usr/local/lscp/conf/key.pem" command = 'chmod 600 %s' % (destPrivKey) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ### def install_unzip(self): self.stdOut("Install unzip") try: if self.distro == centos or self.distro == cent8: command = 'yum -y install unzip' else: command = 'apt-get -y install unzip' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [install_unzip]") def install_zip(self): self.stdOut("Install zip") try: if self.distro == centos or self.distro == cent8: command = 'yum -y install zip' else: command = 'apt-get -y install zip' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [install_zip]") def download_install_phpmyadmin(self): try: if not os.path.exists("/usr/local/CyberCP/public"): os.mkdir("/usr/local/CyberCP/public") command = 'wget -O /usr/local/CyberCP/public/phpmyadmin.zip https://github.com/usmannasir/cyberpanel/raw/stable/phpmyadmin.zip' preFlightsChecks.call(command, self.distro, '[download_install_phpmyadmin]', command, 1, 0, os.EX_OSERR) command = 'unzip /usr/local/CyberCP/public/phpmyadmin.zip -d /usr/local/CyberCP/public/' preFlightsChecks.call(command, self.distro, '[download_install_phpmyadmin]', command, 1, 0, os.EX_OSERR) command = 'mv /usr/local/CyberCP/public/phpMyAdmin--all-languages /usr/local/CyberCP/public/phpmyadmin' subprocess.call(command, shell=True) command = 'rm -f /usr/local/CyberCP/public/phpmyadmin.zip' preFlightsChecks.call(command, self.distro, '[download_install_phpmyadmin]', command, 1, 0, os.EX_OSERR) ## Write secret phrase rString = ''.join([random.choice(string.ascii_letters + string.digits) for n in range(32)]) data = open('/usr/local/CyberCP/public/phpmyadmin/config.sample.inc.php', 'r').readlines() writeToFile = open('/usr/local/CyberCP/public/phpmyadmin/config.inc.php', 'w') writeE = 1 phpMyAdminContent = """ $cfg['Servers'][$i]['AllowNoPassword'] = false; $cfg['Servers'][$i]['auth_type'] = 'signon'; $cfg['Servers'][$i]['SignonSession'] = 'SignonSession'; $cfg['Servers'][$i]['SignonURL'] = 'phpmyadminsignin.php'; $cfg['Servers'][$i]['LogoutURL'] = 'phpmyadminsignin.php?logout'; """ for items in data: if items.find('blowfish_secret') > -1: writeToFile.writelines( "$cfg['blowfish_secret'] = '" + rString + "'; /* YOU MUST FILL IN THIS FOR COOKIE AUTH! /\n") elif items.find('/ Authentication type /') > -1: writeToFile.writelines(items) writeToFile.write(phpMyAdminContent) writeE = 0 elif items.find("$cfg['Servers'][$i]['AllowNoPassword']") > -1: writeE = 1 else: if writeE: writeToFile.writelines(items) writeToFile.writelines("$cfg['TempDir'] = '/usr/local/CyberCP/public/phpmyadmin/tmp';\n") writeToFile.close() os.mkdir('/usr/local/CyberCP/public/phpmyadmin/tmp') command = 'chown -R lscpd:lscpd /usr/local/CyberCP/public/phpmyadmin' preFlightsChecks.call(command, self.distro, '[chown -R lscpd:lscpd /usr/local/CyberCP/public/phpmyadmin]', 'chown -R lscpd:lscpd /usr/local/CyberCP/public/phpmyadmin', 1, 0, os.EX_OSERR) if self.remotemysql == 'ON': command = "sed -i 's\|'localhost'\|'%s'\|g' %s" % ( self.mysqlhost, '/usr/local/CyberCP/public/phpmyadmin/config.inc.php') preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'cp /usr/local/CyberCP/plogical/phpmyadminsignin.php /usr/local/CyberCP/public/phpmyadmin/phpmyadminsignin.php' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.remotemysql == 'ON': command = "sed -i 's\|localhost\|%s\|g' /usr/local/CyberCP/public/phpmyadmin/phpmyadminsignin.php" % ( self.mysqlhost) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [download_install_phpmyadmin]") return 0 ###################################################### Email setup def install_postfix_dovecot(self): self.stdOut("Install dovecot - first remove postfix") try: if self.distro == centos: command = 'yum remove postfix -y' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) elif self.distro == ubuntu: command = 'apt-get -y remove postfix' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) self.stdOut("Install dovecot - do the install") if self.distro == centos: command = 'yum install --enablerepo=gf-plus -y postfix3 postfix3-ldap postfix3-mysql postfix3-pcre' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) elif self.distro == cent8: command = 'dnf --nogpg install -y https://mirror.ghettoforge.org/distributions/gf/gf-release-latest.gf.el8.noarch.rpm' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'dnf install --enablerepo=gf-plus postfix3 postfix3-mysql -y' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) else: command = 'apt-get -y install debconf-utils' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) file_name = self.cwd + '/pf.unattend.text' pf = open(file_name, 'w') pf.write('postfix postfix/mailname string ' + str(socket.getfqdn() + '\n')) pf.write('postfix postfix/main_mailer_type string "Internet Site"\n') pf.close() command = 'debconf-set-selections ' + file_name preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'apt-get -y install postfix postfix-mysql' # os.remove(file_name) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ## if self.distro == centos: command = 'yum --enablerepo=gf-plus -y install dovecot23 dovecot23-mysql' elif self.distro == cent8: command = 'dnf install --enablerepo=gf-plus dovecot23 dovecot23-mysql -y' else: command = 'apt-get -y install dovecot-mysql dovecot-imapd dovecot-pop3d' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [install_postfix_dovecot]") return 0 return 1 def setup_email_Passwords(self, mysqlPassword, mysql): try: logging.InstallLog.writeToFile("Setting up authentication for Postfix and Dovecot...") os.chdir(self.cwd) mysql_virtual_domains = "email-configs-one/mysql-virtual_domains.cf" mysql_virtual_forwardings = "email-configs-one/mysql-virtual_forwardings.cf" mysql_virtual_mailboxes = "email-configs-one/mysql-virtual_mailboxes.cf" mysql_virtual_email2email = "email-configs-one/mysql-virtual_email2email.cf" dovecotmysql = "email-configs-one/dovecot-sql.conf.ext" ### update password: data = open(dovecotmysql, "r").readlines() writeDataToFile = open(dovecotmysql, "w") if mysql == 'Two': dataWritten = "connect = host=127.0.0.1 dbname=cyberpanel user=cyberpanel password=" + mysqlPassword + " port=3307\n" else: dataWritten = "connect = host=localhost dbname=cyberpanel user=cyberpanel password=" + mysqlPassword + " port=3306\n" for items in data: if items.find("connect") > -1: writeDataToFile.writelines(dataWritten) else: writeDataToFile.writelines(items) writeDataToFile.close() ### update password: data = open(mysql_virtual_domains, "r").readlines() writeDataToFile = open(mysql_virtual_domains, "w") dataWritten = "password = " + mysqlPassword + "\n" for items in data: if items.find("password") > -1: writeDataToFile.writelines(dataWritten) else: writeDataToFile.writelines(items) writeDataToFile.close() ### update password: data = open(mysql_virtual_forwardings, "r").readlines() writeDataToFile = open(mysql_virtual_forwardings, "w") dataWritten = "password = " + mysqlPassword + "\n" for items in data: if items.find("password") > -1: writeDataToFile.writelines(dataWritten) else: writeDataToFile.writelines(items) writeDataToFile.close() ### update password: data = open(mysql_virtual_mailboxes, "r").readlines() writeDataToFile = open(mysql_virtual_mailboxes, "w") dataWritten = "password = " + mysqlPassword + "\n" for items in data: if items.find("password") > -1: writeDataToFile.writelines(dataWritten) else: writeDataToFile.writelines(items) writeDataToFile.close() ### update password: data = open(mysql_virtual_email2email, "r").readlines() writeDataToFile = open(mysql_virtual_email2email, "w") dataWritten = "password = " + mysqlPassword + "\n" for items in data: if items.find("password") > -1: writeDataToFile.writelines(dataWritten) else: writeDataToFile.writelines(items) writeDataToFile.close() if self.remotemysql == 'ON': command = "sed -i 's\|host=localhost\|host=%s\|g' %s" % (self.mysqlhost, dovecotmysql) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i 's\|port=3306\|port=%s\|g' %s" % (self.mysqlport, dovecotmysql) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ## command = "sed -i 's\|localhost\|%s:%s\|g' %s" % (self.mysqlhost, self.mysqlport, mysql_virtual_domains) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i 's\|localhost\|%s:%s\|g' %s" % ( self.mysqlhost, self.mysqlport, mysql_virtual_forwardings) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i 's\|localhost\|%s:%s\|g' %s" % ( self.mysqlhost, self.mysqlport, mysql_virtual_mailboxes) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = "sed -i 's\|localhost\|%s:%s\|g' %s" % ( self.mysqlhost, self.mysqlport, mysql_virtual_email2email) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) logging.InstallLog.writeToFile("Authentication for Postfix and Dovecot set.") except BaseException as msg: logging.InstallLog.writeToFile('[ERROR]' + str(msg) + " [setup_email_Passwords]") return 0 return 1 def centos_lib_dir_to_ubuntu(self, filename, old, new): try: fd = open(filename, 'r') lines = fd.readlines() fd.close() fd = open(filename, 'w') centos_prefix = old ubuntu_prefix = new for line in lines: index = line.find(centos_prefix) if index != -1: line = line[:index] + ubuntu_prefix + line[index + len(centos_prefix):] fd.write(line) fd.close() except IOError as err: self.stdOut( "[ERROR] Error converting: " + filename + " from centos defaults to ubuntu defaults: " + str(err), 1, 1, os.EX_OSERR) def setup_postfix_dovecot_config(self, mysql): try: logging.InstallLog.writeToFile("Configuring postfix and dovecot...") os.chdir(self.cwd) mysql_virtual_domains = "/etc/postfix/mysql-virtual_domains.cf" mysql_virtual_forwardings = "/etc/postfix/mysql-virtual_forwardings.cf" mysql_virtual_mailboxes = "/etc/postfix/mysql-virtual_mailboxes.cf" mysql_virtual_email2email = "/etc/postfix/mysql-virtual_email2email.cf" main = "/etc/postfix/main.cf" master = "/etc/postfix/master.cf" dovecot = "/etc/dovecot/dovecot.conf" dovecotmysql = "/etc/dovecot/dovecot-sql.conf.ext" if os.path.exists(mysql_virtual_domains): os.remove(mysql_virtual_domains) if os.path.exists(mysql_virtual_forwardings): os.remove(mysql_virtual_forwardings) if os.path.exists(mysql_virtual_mailboxes): os.remove(mysql_virtual_mailboxes) if os.path.exists(mysql_virtual_email2email): os.remove(mysql_virtual_email2email) if os.path.exists(main): os.remove(main) if os.path.exists(master): os.remove(master) if os.path.exists(dovecot): os.remove(dovecot) if os.path.exists(dovecotmysql): os.remove(dovecotmysql) ###############Getting SSL command = 'openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=www.example.com" -keyout /etc/postfix/key.pem -out /etc/postfix/cert.pem' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'openssl req -newkey rsa:2048 -new -nodes -x509 -days 3650 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=www.example.com" -keyout /etc/dovecot/key.pem -out /etc/dovecot/cert.pem' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) # Cleanup config files for ubuntu if self.distro == ubuntu: preFlightsChecks.stdOut("Cleanup postfix/dovecot config files", 1) self.centos_lib_dir_to_ubuntu("email-configs-one/master.cf", "/usr/libexec/", "/usr/lib/") self.centos_lib_dir_to_ubuntu("email-configs-one/main.cf", "/usr/libexec/postfix", "/usr/lib/postfix/sbin") ########### Copy config files shutil.copy("email-configs-one/mysql-virtual_domains.cf", "/etc/postfix/mysql-virtual_domains.cf") shutil.copy("email-configs-one/mysql-virtual_forwardings.cf", "/etc/postfix/mysql-virtual_forwardings.cf") shutil.copy("email-configs-one/mysql-virtual_mailboxes.cf", "/etc/postfix/mysql-virtual_mailboxes.cf") shutil.copy("email-configs-one/mysql-virtual_email2email.cf", "/etc/postfix/mysql-virtual_email2email.cf") shutil.copy("email-configs-one/main.cf", main) shutil.copy("email-configs-one/master.cf", master) shutil.copy("email-configs-one/dovecot.conf", dovecot) shutil.copy("email-configs-one/dovecot-sql.conf.ext", dovecotmysql) ########### Set custom settings # We are going to leverage postconfig -e to edit the settings for hostname command = "postconf -e 'myhostname = %s'" % (str(socket.getfqdn())) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) # We are explicitly going to use sed to set the hostname default from "myhostname = server.example.com" # to the fqdn from socket if the default is still found command = "sed -i 's\|server.example.com\|%s\|g' %s" % (str(socket.getfqdn()), main) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ######################################## Permissions command = 'chmod o= /etc/postfix/mysql-virtual_domains.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= /etc/postfix/mysql-virtual_forwardings.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= /etc/postfix/mysql-virtual_mailboxes.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= /etc/postfix/mysql-virtual_email2email.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= ' + main preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= ' + master preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ####################################### command = 'chgrp postfix /etc/postfix/mysql-virtual_domains.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chgrp postfix /etc/postfix/mysql-virtual_forwardings.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chgrp postfix /etc/postfix/mysql-virtual_mailboxes.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chgrp postfix /etc/postfix/mysql-virtual_email2email.cf' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chgrp postfix ' + main preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chgrp postfix ' + master preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ######################################## users and groups command = 'groupadd -g 5000 vmail' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'useradd -g vmail -u 5000 vmail -d /home/vmail -m' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ######################################## Further configurations # hostname = socket.gethostname() ################################### Restart postix command = 'systemctl enable postfix.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'systemctl start postfix.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ######################################## Permissions command = 'chgrp dovecot /etc/dovecot/dovecot-sql.conf.ext' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'chmod o= /etc/dovecot/dovecot-sql.conf.ext' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ################################### Restart dovecot command = 'systemctl enable dovecot.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'systemctl start dovecot.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'systemctl restart postfix.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## chaging permissions for main.cf command = "chmod 755 " + main preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == ubuntu: command = "mkdir -p /etc/pki/dovecot/private/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "mkdir -p /etc/pki/dovecot/certs/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "mkdir -p /etc/opendkim/keys/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "sed -i 's/auth_mechanisms = plain/#auth_mechanisms = plain/g' /etc/dovecot/conf.d/10-auth.conf" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## Ubuntu 18.10 ssl_dh for dovecot 2.3.2.1 if get_Ubuntu_release() == 18.10: dovecotConf = '/etc/dovecot/dovecot.conf' data = open(dovecotConf, 'r').readlines() writeToFile = open(dovecotConf, 'w') for items in data: if items.find('ssl_key = <key.pem') > -1: writeToFile.writelines(items) writeToFile.writelines('ssl_dh = </usr/share/dovecot/dh.pem\n') else: writeToFile.writelines(items) writeToFile.close() command = "systemctl restart dovecot" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) logging.InstallLog.writeToFile("Postfix and Dovecot configured") except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [setup_postfix_dovecot_config]") return 0 return 1 def downoad_and_install_raindloop(self): try: ####### if not os.path.exists("/usr/local/CyberCP/public"): os.mkdir("/usr/local/CyberCP/public") if os.path.exists("/usr/local/CyberCP/public/rainloop"): return 0 os.chdir("/usr/local/CyberCP/public") command = 'wget https://www.rainloop.net/repository/webmail/rainloop-community-latest.zip' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ############# command = 'unzip rainloop-community-latest.zip -d /usr/local/CyberCP/public/rainloop' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) os.remove("rainloop-community-latest.zip") ####### os.chdir("/usr/local/CyberCP/public/rainloop") command = 'find . -type d -exec chmod 755 {} \;' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ############# command = 'find . -type f -exec chmod 644 {} \;' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ###### command = "mkdir -p /usr/local/lscp/cyberpanel/rainloop/data" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ### Enable sub-folders command = "mkdir -p /usr/local/lscp/cyberpanel/rainloop/data/_data_/_default_/configs/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) labsPath = '/usr/local/lscp/cyberpanel/rainloop/data/_data_/_default_/configs/application.ini' labsData = """[labs] imap_folder_list_limit = 0 """ writeToFile = open(labsPath, 'w') writeToFile.write(labsData) writeToFile.close() iPath = os.listdir('/usr/local/CyberCP/public/rainloop/rainloop/v/') path = "/usr/local/CyberCP/public/rainloop/rainloop/v/%s/include.php" % (iPath[0]) data = open(path, 'r').readlines() writeToFile = open(path, 'w') for items in data: if items.find("$sCustomDataPath = '';") > -1: writeToFile.writelines( " $sCustomDataPath = '/usr/local/lscp/cyberpanel/rainloop/data';\n") else: writeToFile.writelines(items) writeToFile.close() except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [downoad_and_install_rainloop]") return 0 return 1 ###################################################### Email setup ends! def reStartLiteSpeed(self): command = '%sbin/lswsctrl restart' % (self.server_root_path) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def removeUfw(self): try: preFlightsChecks.stdOut("Checking to see if ufw firewall is installed (will be removed)", 1) status = subprocess.check_output(shlex.split('ufw status')).decode("utf-8") preFlightsChecks.stdOut("ufw current status: " + status + "...will be removed") except BaseException as msg: preFlightsChecks.stdOut("[ERROR] Expected access to ufw not available, do not need to remove it", 1) return True try: preFlightsChecks.call('apt-get -y remove ufw', self.distro, '[remove_ufw]', 'Remove ufw firewall ' + '(using firewalld)', 1, 0, os.EX_OSERR) except: pass return True def installFirewalld(self): if self.distro == ubuntu: self.removeUfw() try: preFlightsChecks.stdOut("Enabling Firewall!") if self.distro == ubuntu: command = 'apt-get -y install firewalld' else: command = 'yum -y install firewalld' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ###### if self.distro == centos: # Not available in ubuntu command = 'systemctl restart dbus' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'systemctl restart systemd-logind' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'systemctl start firewalld' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ########## command = 'systemctl enable firewalld' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) FirewallUtilities.addRule("tcp", "8090") FirewallUtilities.addRule("tcp", "7080") FirewallUtilities.addRule("tcp", "80") FirewallUtilities.addRule("tcp", "443") FirewallUtilities.addRule("tcp", "21") FirewallUtilities.addRule("tcp", "25") FirewallUtilities.addRule("tcp", "587") FirewallUtilities.addRule("tcp", "465") FirewallUtilities.addRule("tcp", "110") FirewallUtilities.addRule("tcp", "143") FirewallUtilities.addRule("tcp", "993") FirewallUtilities.addRule("tcp", "995") FirewallUtilities.addRule("udp", "53") FirewallUtilities.addRule("tcp", "53") FirewallUtilities.addRule("udp", "443") FirewallUtilities.addRule("tcp", "40110-40210") logging.InstallLog.writeToFile("FirewallD installed and configured!") preFlightsChecks.stdOut("FirewallD installed and configured!") except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [installFirewalld]") return 0 except ValueError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [installFirewalld]") return 0 return 1 ## from here def installLSCPD(self): try: logging.InstallLog.writeToFile("Starting LSCPD installation..") os.chdir(self.cwd) if self.distro == ubuntu: command = "apt-get -y install gcc g++ make autoconf rcs" else: command = 'yum -y install gcc gcc-c++ make autoconf glibc' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == ubuntu: command = "apt-get -y install libpcre3 libpcre3-dev openssl libexpat1 libexpat1-dev libgeoip-dev" \ " zlib1g zlib1g-dev libudns-dev whichman curl" else: command = 'yum -y install pcre-devel openssl-devel expat-devel geoip-devel zlib-devel udns-devel' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'tar zxf lscp.tar.gz -C /usr/local/' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ### lscpdPath = '/usr/local/lscp/bin/lscpd' command = 'cp -f /usr/local/CyberCP/lscpd-0.3.1 /usr/local/lscp/bin/lscpd-0.3.1' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = 'rm -f /usr/local/lscp/bin/lscpd' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = 'mv /usr/local/lscp/bin/lscpd-0.3.1 /usr/local/lscp/bin/lscpd' preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) command = 'chmod 755 %s' % (lscpdPath) preFlightsChecks.call(command, self.distro, command, command, 1, 1, os.EX_OSERR) ## command = 'openssl req -newkey rsa:1024 -new -nodes -x509 -days 3650 -subj "/C=US/ST=Denial/L=Springfield/O=Dis/CN=www.example.com" -keyout /usr/local/lscp/conf/key.pem -out /usr/local/lscp/conf/cert.pem' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) try: os.remove("/usr/local/lscp/fcgi-bin/lsphp") shutil.copy("/usr/local/lsws/lsphp73/bin/lsphp", "/usr/local/lscp/fcgi-bin/lsphp") except: pass if self.distro == centos or self.distro == cent8: command = 'adduser lscpd -M -d /usr/local/lscp' else: command = 'useradd lscpd -M -d /usr/local/lscp' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == centos or self.distro == cent8: command = 'groupadd lscpd' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) # Added group in useradd for Ubuntu command = 'usermod -a -G lscpd lscpd' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'usermod -a -G lsadm lscpd' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) try: os.mkdir('/usr/local/lscp/cyberpanel') except: pass try: os.mkdir('/usr/local/lscp/cyberpanel/logs') except: pass # self.setupComodoRules() logging.InstallLog.writeToFile("LSCPD successfully installed!") except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [installLSCPD]") def setupComodoRules(self): try: os.chdir(self.cwd) extractLocation = "/usr/local/lscp/modsec" command = "mkdir -p /usr/local/lscp/modsec" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) try: if os.path.exists('comodo.tar.gz'): os.remove('comodo.tar.gz') except: pass command = "wget https://cyberpanel.net/modsec/comodo.tar.gz" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "tar -zxf comodo.tar.gz -C /usr/local/lscp/modsec" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ### modsecConfPath = "/usr/local/lscp/conf/modsec.conf" modsecConfig = """ module mod_security { ls_enabled 0 modsecurity on modsecurity_rules ` SecDebugLogLevel 0 SecDebugLog /usr/local/lscp/logs/modsec.log SecAuditEngine on SecAuditLogRelevantStatus "^(?:5\|4(?!04))" SecAuditLogParts AFH SecAuditLogType Serial SecAuditLog /usr/local/lscp/logs/auditmodsec.log SecRuleEngine Off ` modsecurity_rules_file /usr/local/lscp/modsec/comodo/modsecurity.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/00_Init_Initialization.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/01_Init_AppsInitialization.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/02_Global_Generic.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/03_Global_Agents.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/04_Global_Domains.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/05_Global_Backdoor.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/06_XSS_XSS.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/07_Global_Other.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/08_Bruteforce_Bruteforce.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/09_HTTP_HTTP.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/10_HTTP_HTTPDoS.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/11_HTTP_Protocol.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/12_HTTP_Request.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/13_Outgoing_FilterGen.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/14_Outgoing_FilterASP.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/15_Outgoing_FilterPHP.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/16_Outgoing_FilterSQL.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/17_Outgoing_FilterOther.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/18_Outgoing_FilterInFrame.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/19_Outgoing_FiltersEnd.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/20_PHP_PHPGen.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/21_SQL_SQLi.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/22_Apps_Joomla.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/23_Apps_JComponent.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/24_Apps_WordPress.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/25_Apps_WPPlugin.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/26_Apps_WHMCS.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/27_Apps_Drupal.conf modsecurity_rules_file /usr/local/lscp/modsec/comodo/28_Apps_OtherApps.conf } """ writeToFile = open(modsecConfPath, 'w') writeToFile.write(modsecConfig) writeToFile.close() ### command = "chown -R lscpd:lscpd /usr/local/lscp/modsec" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) return 1 except BaseException as msg: logging.InstallLog.writeToFile("[ERROR]" + str(msg)) return 0 def setupPort(self): try: ### bindConfPath = "/usr/local/lscp/conf/bind.conf" writeToFile = open(bindConfPath, 'w') writeToFile.write(":" + self.port) writeToFile.close() except: return 0 def setupPythonWSGI(self): try: command = "wget http://www.litespeedtech.com/packages/lsapi/wsgi-lsapi-1.6.tgz" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "tar xf wsgi-lsapi-1.6.tgz" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) os.chdir("wsgi-lsapi-1.6") command = "/usr/local/CyberPanel/bin/python ./configure.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "make" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if not os.path.exists('/usr/local/CyberCP/bin/'): os.mkdir('/usr/local/CyberCP/bin/') command = "cp lswsgi /usr/local/CyberCP/bin/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) os.chdir(self.cwd) except: return 0 def setupLSCPDDaemon(self): try: preFlightsChecks.stdOut("Trying to setup LSCPD Daemon!") logging.InstallLog.writeToFile("Trying to setup LSCPD Daemon!") os.chdir(self.cwd) shutil.copy("lscpd/lscpd.service", "/etc/systemd/system/lscpd.service") shutil.copy("lscpd/lscpdctrl", "/usr/local/lscp/bin/lscpdctrl") ## command = 'chmod +x /usr/local/lscp/bin/lscpdctrl' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## path = "/usr/local/lscpd/admin/" command = "mkdir -p " + path preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) path = "/usr/local/CyberCP/conf/" command = "mkdir -p " + path preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) path = "/usr/local/CyberCP/conf/token_env" writeToFile = open(path, "w") writeToFile.write("abc\n") writeToFile.close() command = "chmod 600 " + path preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'systemctl enable lscpd.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## count = 0 # In Ubuntu, the library that lscpd looks for is libpcre.so.1, but the one it installs is libpcre.so.3... if self.distro == ubuntu: command = 'ln -s /lib/x86_64-linux-gnu/libpcre.so.3 /lib/x86_64-linux-gnu/libpcre.so.1' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = 'systemctl start lscpd' # preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) preFlightsChecks.stdOut("LSCPD Daemon Set!") logging.InstallLog.writeToFile("LSCPD Daemon Set!") except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [setupLSCPDDaemon]") return 0 return 1 def setup_cron(self): try: ## first install crontab if self.distro == centos or self.distro == cent8: command = 'yum install cronie -y' else: command = 'apt-get -y install cron' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == centos or self.distro == cent8: command = 'systemctl enable crond' else: command = 'systemctl enable cron' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == centos or self.distro == cent8: command = 'systemctl start crond' else: command = 'systemctl start cron' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## CentOSPath = '/etc/redhat-release' if os.path.exists(CentOSPath): cronPath = '/var/spool/cron/root' else: cronPath = '/var/spool/cron/crontabs/root' cronFile = open(cronPath, "w") content = """ 0 * * * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/plogical/findBWUsage.py >/dev/null 2>&1 0 * * * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/postfixSenderPolicy/client.py hourlyCleanup >/dev/null 2>&1 0 0 1 * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/postfixSenderPolicy/client.py monthlyCleanup >/dev/null 2>&1 0 2 * * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/plogical/upgradeCritical.py >/dev/null 2>&1 0 2 * * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/plogical/renew.py >/dev/null 2>&1 7 0 * * * "/root/.acme.sh"/acme.sh --cron --home "/root/.acme.sh" > /dev/null 0 0 * * * /usr/local/CyberCP/bin/python /usr/local/CyberCP/IncBackups/IncScheduler.py Daily 0 0 * * 0 /usr/local/CyberCP/bin/python /usr/local/CyberCP/IncBackups/IncScheduler.py Weekly /3 * * * if ! find /home/*/public_html/ -maxdepth 2 -type f -newer /usr/local/lsws/cgid -name '.htaccess' -exec false {} +; then /usr/local/lsws/bin/lswsctrl restart; fi """ cronFile.write(content) cronFile.close() ### Check and remove OLS restart if lsws ent detected if not os.path.exists('/usr/local/lsws/bin/openlitespeed'): data = open(cronPath, 'r').readlines() writeToFile = open(cronPath, 'w') for items in data: if items.find('-maxdepth 2 -type f -newer') > -1: pass else: writeToFile.writelines(items) writeToFile.close() if not os.path.exists(CentOSPath): command = 'chmod 600 %s' % (cronPath) preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == centos or self.distro == cent8: command = 'systemctl restart crond.service' else: command = 'systemctl restart cron.service' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [setup_cron]") return 0 def install_default_keys(self): try: path = "/root/.ssh" if not os.path.exists(path): os.mkdir(path) command = "ssh-keygen -f /root/.ssh/cyberpanel -t rsa -N ''" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [install_default_keys]") return 0 def install_rsync(self): try: if self.distro == centos or self.distro == cent8: command = 'yum -y install rsync' else: command = 'apt-get -y install rsync' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [install_rsync]") return 0 def test_Requests(self): try: import requests getVersion = requests.get('https://cyberpanel.net/version.txt') latest = getVersion.json() except BaseException as msg: command = "pip uninstall --yes urllib3" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "pip uninstall --yes requests" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "pip install http://mirror.cyberpanel.net/urllib3-1.22.tar.gz" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "pip install http://mirror.cyberpanel.net/requests-2.18.4.tar.gz" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def installation_successfull(self): print("###################################################################") print(" CyberPanel Successfully Installed ") print(" ") print(" ") print(" ") print((" Visit: https://" + self.ipAddr + ":8090 ")) print(" Username: admin ") print(" Password: 1234567 ") print("###################################################################") def modSecPreReqs(self): try: pathToRemoveGarbageFile = os.path.join(self.server_root_path, "modules/mod_security.so") os.remove(pathToRemoveGarbageFile) except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [modSecPreReqs]") return 0 def installOpenDKIM(self): try: if self.distro == centos: command = 'yum -y install opendkim' elif self.distro == cent8: command = 'dnf install opendkim -y' else: command = 'apt-get -y install opendkim' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) if self.distro == ubuntu: command = 'apt install opendkim-tools -y' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'mkdir -p /etc/opendkim/keys/' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [installOpenDKIM]") return 0 return 1 def configureOpenDKIM(self): try: ## Configure OpenDKIM specific settings openDKIMConfigurePath = "/etc/opendkim.conf" configData = """ Mode sv Canonicalization relaxed/simple KeyTable refile:/etc/opendkim/KeyTable SigningTable refile:/etc/opendkim/SigningTable ExternalIgnoreList refile:/etc/opendkim/TrustedHosts InternalHosts refile:/etc/opendkim/TrustedHosts """ writeToFile = open(openDKIMConfigurePath, 'a') writeToFile.write(configData) writeToFile.close() ## Configure postfix specific settings postfixFilePath = "/etc/postfix/main.cf" configData = """ smtpd_milters = inet:127.0.0.1:8891 non_smtpd_milters = $smtpd_milters milter_default_action = accept """ writeToFile = open(postfixFilePath, 'a') writeToFile.write(configData) writeToFile.close() if self.distro == ubuntu: data = open(openDKIMConfigurePath, 'r').readlines() writeToFile = open(openDKIMConfigurePath, 'w') for items in data: if items.find('Socket') > -1 and items.find('local:') and items[0] != '#': writeToFile.writelines('Socket inet:8891@localhost\n') else: writeToFile.writelines(items) writeToFile.close() #### Restarting Postfix and OpenDKIM command = "systemctl start opendkim" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "systemctl enable opendkim" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## command = "systemctl start postfix" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except BaseException as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [configureOpenDKIM]") return 0 return 1 def setupCLI(self): command = "ln -s /usr/local/CyberCP/cli/cyberPanel.py /usr/bin/cyberpanel" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "chmod +x /usr/local/CyberCP/cli/cyberPanel.py" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def setupPHPAndComposer(self): try: if self.distro == ubuntu: if not os.access('/usr/local/lsws/lsphp70/bin/php', os.R_OK): if os.access('/usr/local/lsws/lsphp70/bin/php7.0', os.R_OK): os.symlink('/usr/local/lsws/lsphp70/bin/php7.0', '/usr/local/lsws/lsphp70/bin/php') if not os.access('/usr/local/lsws/lsphp71/bin/php', os.R_OK): if os.access('/usr/local/lsws/lsphp71/bin/php7.1', os.R_OK): os.symlink('/usr/local/lsws/lsphp71/bin/php7.1', '/usr/local/lsws/lsphp71/bin/php') if not os.access('/usr/local/lsws/lsphp72/bin/php', os.R_OK): if os.access('/usr/local/lsws/lsphp72/bin/php7.2', os.R_OK): os.symlink('/usr/local/lsws/lsphp72/bin/php7.2', '/usr/local/lsws/lsphp72/bin/php') command = "cp /usr/local/lsws/lsphp71/bin/php /usr/bin/" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) os.chdir(self.cwd) command = "chmod +x composer.sh" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = "./composer.sh" preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [setupPHPAndComposer]") return 0 @staticmethod def installOne(package): res = subprocess.call(shlex.split('apt-get -y install ' + package)) if res != 0: preFlightsChecks.stdOut("Error #" + str(res) + ' installing:' + package + '. This may not be an issue ' \ 'but may affect installation of something later', 1) return res # Though probably not used @staticmethod def enableDisableDNS(state): try: servicePath = '/home/cyberpanel/powerdns' if state == 'off': command = 'sudo systemctl stop pdns' subprocess.call(shlex.split(command)) command = 'sudo systemctl disable pdns' subprocess.call(shlex.split(command)) try: os.remove(servicePath) except: pass else: writeToFile = open(servicePath, 'w+') writeToFile.close() except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [enableDisableDNS]") return 0 @staticmethod def enableDisableEmail(state): try: servicePath = '/home/cyberpanel/postfix' if state == 'off': command = 'sudo systemctl stop postfix' subprocess.call(shlex.split(command)) command = 'sudo systemctl disable postfix' subprocess.call(shlex.split(command)) try: os.remove(servicePath) except: pass else: writeToFile = open(servicePath, 'w+') writeToFile.close() except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [enableDisableEmail]") return 0 @staticmethod def enableDisableFTP(state, distro): try: servicePath = '/home/cyberpanel/pureftpd' if state == 'off': command = 'sudo systemctl stop ' + preFlightsChecks.pureFTPDServiceName(distro) subprocess.call(shlex.split(command)) command = 'sudo systemctl disable ' + preFlightsChecks.pureFTPDServiceName(distro) subprocess.call(shlex.split(command)) try: os.remove(servicePath) except: pass else: writeToFile = open(servicePath, 'w+') writeToFile.close() except OSError as msg: logging.InstallLog.writeToFile('[ERROR] ' + str(msg) + " [enableDisableEmail]") return 0 @staticmethod def setUpFirstAccount(): try: command = 'python /usr/local/CyberCP/plogical/adminPass.py --password 1234567' subprocess.call(shlex.split(command)) except: pass def installRestic(self): try: CentOSPath = '/etc/redhat-release' if os.path.exists(CentOSPath): command = 'yum install -y yum-plugin-copr' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'yum copr enable -y copart/restic' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'yum install -y restic' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) else: command = 'apt-get update -y' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'apt-get install restic -y' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) except: pass def installCLScripts(self): try: CentOSPath = '/etc/redhat-release' if os.path.exists(CentOSPath): command = 'mkdir -p /opt/cpvendor/etc/' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) content = """[integration_scripts] panel_info = /usr/local/CyberCP/CLScript/panel_info.py packages = /usr/local/CyberCP/CLScript/CloudLinuxPackages.py users = /usr/local/CyberCP/CLScript/CloudLinuxUsers.py domains = /usr/local/CyberCP/CLScript/CloudLinuxDomains.py resellers = /usr/local/CyberCP/CLScript/CloudLinuxResellers.py admins = /usr/local/CyberCP/CLScript/CloudLinuxAdmins.py db_info = /usr/local/CyberCP/CLScript/CloudLinuxDB.py [lvemanager_config] ui_user_info =/usr/local/CyberCP/CLScript/UserInfo.py base_path = /usr/local/lvemanager run_service = 1 service_port = 9000 """ writeToFile = open('/opt/cpvendor/etc/integration.ini', 'w') writeToFile.write(content) writeToFile.close() command = 'mkdir -p /etc/cagefs/exclude' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) content = """cyberpanel docker ftpuser lscpd opendkim pdns vmail """ writeToFile = open('/etc/cagefs/exclude/cyberpanelexclude', 'w') writeToFile.write(content) writeToFile.close() except: pass def installAcme(self): command = 'wget -O - https://get.acme.sh \| sh' subprocess.call(command, shell=True) command = '/root/.acme.sh/acme.sh --upgrade --auto-upgrade' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def installRedis(self): if self.distro == ubuntu: command = 'apt install redis-server -y' elif self.distro == centos: command = 'yum install redis -y' else: command = 'dnf install redis -y' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) ## install redis conf redisConf = '/usr/local/lsws/conf/dvhost_redis.conf' writeToFile = open(redisConf, 'w') writeToFile.write('127.0.0.1,6379,<auth_password>\n') writeToFile.close() ## os.chdir(self.cwd) confPath = '/usr/local/lsws/conf/' if os.path.exists('%shttpd.conf' % (confPath)): os.remove('%shttpd.conf' % (confPath)) shutil.copy('litespeed/httpd-redis.conf', '%shttpd.conf' % (confPath)) ## start and enable command = 'systemctl start redis' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) command = 'systemctl enable redis' preFlightsChecks.call(command, self.distro, command, command, 1, 0, os.EX_OSERR) def disablePackegeUpdates(self): if self.distro == centos: mainConfFile = '/etc/yum.conf' content = 'exclude=MariaDB-client MariaDB-common MariaDB-devel MariaDB-server MariaDB-shared ' \ 'pdns pdns-backend-mysql dovecot dovecot-mysql postfix3 postfix3-ldap postfix3-mysql ' \ 'postfix3-pcre restic opendkim libopendkim pure-ftpd ftp\n' writeToFile = open(mainConfFile, 'a') writeToFile.write(content) writeToFile.close() def main(): parser = argparse.ArgumentParser(description='CyberPanel Installer') parser.add_argument('publicip', help='Please enter public IP for your VPS or dedicated server.') parser.add_argument('--mysql', help='Specify number of MySQL instances to be used.') parser.add_argument('--postfix', help='Enable or disable Email Service.') parser.add_argument('--powerdns', help='Enable or disable DNS Service.') parser.add_argument('--ftp', help='Enable or disable ftp Service.') parser.add_argument('--ent', help='Install LS Ent or OpenLiteSpeed') parser.add_argument('--serial', help='Install LS Ent or OpenLiteSpeed') parser.add_argument('--port', help='LSCPD Port') parser.add_argument('--redis', help='vHosts on Redis - Requires LiteSpeed Enterprise') parser.add_argument('--remotemysql', help='Opt to choose local or remote MySQL') parser.add_argument('--mysqlhost', help='MySQL host if remote is chosen.') parser.add_argument('--mysqldb', help='MySQL DB if remote is chosen.') parser.add_argument('--mysqluser', help='MySQL user if remote is chosen.') parser.add_argument('--mysqlpassword', help='MySQL password if remote is chosen.') parser.add_argument('--mysqlport', help='MySQL port if remote is chosen.') args = parser.parse_args() logging.InstallLog.ServerIP = args.publicip logging.InstallLog.writeToFile("Starting CyberPanel installation..,10") preFlightsChecks.stdOut("Starting CyberPanel installation..") if args.ent is None: ent = 0 preFlightsChecks.stdOut("OpenLiteSpeed web server will be installed.") else: if args.ent == 'ols': ent = 0 preFlightsChecks.stdOut("OpenLiteSpeed web server will be installed.") else: preFlightsChecks.stdOut("LiteSpeed Enterprise web server will be installed.") ent = 1 if args.serial is not None: serial = args.serial preFlightsChecks.stdOut("LiteSpeed Enterprise Serial detected: " + serial) else: preFlightsChecks.stdOut("Installation failed, please specify LiteSpeed Enterprise key using --serial") os._exit(0) ## Writing public IP try: os.mkdir("/etc/cyberpanel") except: pass machineIP = open("/etc/cyberpanel/machineIP", "w") machineIP.writelines(args.publicip) machineIP.close() cwd = os.getcwd() if args.remotemysql == 'ON': remotemysql = args.remotemysql mysqlhost = args.mysqlhost mysqluser = args.mysqluser mysqlpassword = args.mysqlpassword mysqlport = args.mysqlport mysqldb = args.mysqldb if preFlightsChecks.debug: print('mysqlhost: %s, mysqldb: %s, mysqluser: %s, mysqlpassword: %s, mysqlport: %s' % ( mysqlhost, mysqldb, mysqluser, mysqlpassword, mysqlport)) time.sleep(10) else: remotemysql = args.remotemysql mysqlhost = '' mysqluser = '' mysqlpassword = '' mysqlport = '' mysqldb = '' distro = get_distro() checks = preFlightsChecks("/usr/local/lsws/", args.publicip, "/usr/local", cwd, "/usr/local/CyberCP", distro, remotemysql, mysqlhost, mysqldb, mysqluser, mysqlpassword, mysqlport) checks.mountTemp() if args.port is None: port = "8090" else: port = args.port if args.mysql is None: mysql = 'One' preFlightsChecks.stdOut("Single MySQL instance version will be installed.") else: mysql = args.mysql preFlightsChecks.stdOut("Dobule MySQL instance version will be installed.") checks.checkPythonVersion() checks.setup_account_cyberpanel() checks.installCyberPanelRepo() import installCyberPanel if ent == 0: installCyberPanel.Main(cwd, mysql, distro, ent, None, port, args.ftp, args.powerdns, args.publicip, remotemysql, mysqlhost, mysqldb, mysqluser, mysqlpassword, mysqlport) else: installCyberPanel.Main(cwd, mysql, distro, ent, serial, port, args.ftp, args.powerdns, args.publicip, remotemysql, mysqlhost, mysqldb, mysqluser, mysqlpassword, mysqlport) checks.setupPHPAndComposer() checks.fix_selinux_issue() checks.install_psmisc() if args.postfix is None: checks.install_postfix_dovecot() checks.setup_email_Passwords(installCyberPanel.InstallCyberPanel.mysqlPassword, mysql) checks.setup_postfix_dovecot_config(mysql) else: if args.postfix == 'ON': checks.install_postfix_dovecot() checks.setup_email_Passwords(installCyberPanel.InstallCyberPanel.mysqlPassword, mysql) checks.setup_postfix_dovecot_config(mysql) checks.install_unzip() checks.install_zip() checks.install_rsync() checks.installFirewalld() checks.install_default_keys() checks.download_install_CyberPanel(installCyberPanel.InstallCyberPanel.mysqlPassword, mysql) checks.downoad_and_install_raindloop() checks.download_install_phpmyadmin() checks.setupCLI() checks.setup_cron() checks.installRestic() checks.installAcme() ## Install and Configure OpenDKIM. if args.postfix is None: checks.installOpenDKIM() checks.configureOpenDKIM() else: if args.postfix == 'ON': checks.installOpenDKIM() checks.configureOpenDKIM() checks.modSecPreReqs() checks.installLSCPD() checks.setupPort() checks.setupPythonWSGI() checks.setupLSCPDDaemon() if args.redis is not None: checks.installRedis() if args.postfix is not None: checks.enableDisableEmail(args.postfix.lower()) else: preFlightsChecks.stdOut("Postfix will be installed and enabled.") checks.enableDisableEmail('on') if args.powerdns is not None: checks.enableDisableDNS(args.powerdns.lower()) else: preFlightsChecks.stdOut("PowerDNS will be installed and enabled.") checks.enableDisableDNS('on') if args.ftp is not None: checks.enableDisableFTP(args.ftp.lower(), distro) else: preFlightsChecks.stdOut("Pure-FTPD will be installed and enabled.") checks.enableDisableFTP('on', distro) checks.installCLScripts() # checks.disablePackegeUpdates() try: # command = 'mkdir -p /usr/local/lscp/cyberpanel/rainloop/data/data/default/configs/' # subprocess.call(shlex.split(command)) writeToFile = open('/usr/local/lscp/cyberpanel/rainloop/data/_data_/_default_/configs/application.ini', 'a') writeToFile.write(""" [security] admin_login = "admin" admin_password = "12345" """) writeToFile.close() import randomPassword content = """<?php $_ENV['RAINLOOP_INCLUDE_AS_API'] = true; include '/usr/local/CyberCP/public/rainloop/index.php'; $oConfig = \RainLoop\Api::Config(); $oConfig->SetPassword('%s'); echo $oConfig->Save() ? 'Done' : 'Error'; ?>""" % (randomPassword.generate_pass()) writeToFile = open('/usr/local/CyberCP/public/rainloop.php', 'w') writeToFile.write(content) writeToFile.close() command = '/usr/local/lsws/lsphp72/bin/php /usr/local/CyberCP/public/rainloop.php' subprocess.call(shlex.split(command)) command = "chown -R lscpd:lscpd /usr/local/lscp/cyberpanel/rainloop/data" subprocess.call(shlex.split(command)) except: pass checks.fixCyberPanelPermissions() logging.InstallLog.writeToFile("CyberPanel installation successfully completed!,80") if __name__ == "__main__": main()

| ver. 1.4 | Github | . | PHP 8.2.28 | Generation time: 0.02 | proxy | phpinfo | Settings