| Server IP : 195.201.23.43 / Your IP : 3.15.0.42 Web Server : Apache System : Linux webserver2.vercom.be 5.4.0-192-generic #212-Ubuntu SMP Fri Jul 5 09:47:39 UTC 2024 x86_64 User : kdecoratie ( 1041) PHP Version : 7.1.33-63+ubuntu20.04.1+deb.sury.org+1 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /usr/share/webmin/mailboxes/ |
Upload File : |
#!/usr/bin/perl
# send_mail.cgi
# Send off an email message
require './mailboxes-lib.pl';
require '../html-editor-lib.pl';
&ReadParse(\%getin, "GET");
&ReadParseMime(undef, \&read_parse_mime_callback, [ $getin{'id'} ], 1);
foreach my $k (keys %in) {
$in{$k} = join("\0", @{$in{$k}}) if ($k !~ /^attach\d+/);
}
&can_user($in{'user'}) || &error($text{'mail_ecannot'});
@uinfo = &get_mail_user($in{'user'});
@uinfo || &error($text{'view_eugone'});
# Check inputs
@folders = &list_user_folders($in{'user'});
$folder = $folders[$in{'folder'}];
&error_setup($text{'send_err'});
$in{'to'} || &error($text{'send_eto'});
if ($access{'fmode'} == 0) {
# Any from address allowed
$in{'from'} || &error($text{'send_efrom'});
}
elsif ($access{'fmode'} == 1) {
# From address must be in an allowed domain, and match username
$validfrom = &get_user_from_address(\@uinfo);
foreach $f (split(/\s+/, $access{'from'})) {
$found++ if ("$in{'user'}\@$f" eq $in{'from'} ||
"$in{'ouser'}\@$f" eq $in{'from'} ||
$validfrom eq $in{'from'});
}
&error($text{'send_efrom'}) if (!$found);
}
elsif ($access{'fmode'} == 2) {
# From address must be in allowed list
foreach $f (split(/\s+/, $access{'from'})) {
$found++ if ($f eq $in{'from'});
}
&error($text{'send_efrom'}) if (!$found);
}
elsif ($access{'fmode'} == 3) {
$in{'from'} .= "\@$access{'from'}";
}
if ($in{'from'} =~ /^(\S+)\@(\S+)$/ && $access{'fromname'}) {
$in{'from'} = "$access{'fromname'} <$in{'from'}>";
}
@sub = split(/\0/, $in{'sub'});
$subs = join("", map { "&sub=$_" } @sub);
my @inline_images;
my %cidmap;
# Construct the email
$in{'from'} || &error($text{'send_efrom'});
$newmid = &generate_message_id($in{'from'});
%enc = ( 'Charset' => $in{'charset'} );
$mail->{'headers'} = [ [ 'From', &encode_mimewords($in{'from'}, %enc) ],
[ 'Subject', &encode_mimewords($in{'subject'}, %enc) ],
[ 'To', &encode_mimewords_address($in{'to'}, %enc) ],
[ 'Message-Id', $newmid ] ];
if ($in{'cc'}) {
push(@{$mail->{'headers'}},
[ 'Cc', &encode_mimewords_address($in{'cc'}, %enc) ]);
}
if ($in{'bcc'}) {
push(@{$mail->{'headers'}},
[ 'Bcc', &encode_mimewords_address($in{'bcc'}, %enc) ]);
}
&add_mailer_ip_headers($mail->{'headers'});
push(@{$mail->{'headers'}}, [ 'X-Priority', $in{'pri'} ]) if ($in{'pri'});
$in{'body'} =~ s/\r//g;
if ($in{'body'} =~ /\S/) {
if ($in{'html_edit'}) {
$in{'body'} = &html_editor_substitute_classes_with_styles($in{'body'});
}
my $preplainbody = $in{'body'};
my $prehtmlbody = $in{'body'};
# Extract inline images if any
@inline_images = ($in{'body'} =~ /(data:image\/.*?;base64,)(.*?)"/g);
if (@inline_images) {
my $iid = 1;
for (my $i = 0; $i < scalar(@inline_images) - 1; $i += 2) {
if ($inline_images[$i] =~ /data:image/) {
my ($type) = $inline_images[$i] =~ /data:image\/(.*?);base64,/;
my $cid = "ii_".(time() + $i).'@'."$type";
my $replace_html = "$inline_images[$i]$inline_images[$i+1]";
my @data = split('@', $cid);
$inline_images[$i] = \@data;
$inline_images[$i+1] = decode_base64($inline_images[$i+1]);
# $cid = "cid:$cid\" style=\"width: 60%";
$cid = "cid:$cid";
# Replace for HTML
$in{'body'} =~ s/\Q$replace_html/$cid/;
# Replace for plain text
$preplainbody =~ s/<img[^>]*>/[image: inline-image$iid.$type]/;
$iid++;
}
}
$prehtmlbody = $in{'body'};
}
# Perform spell check on body if requested
local $plainbody = $in{'html_edit'} ? &html_to_text($preplainbody)
: $prehtmlbody;
if ($in{'spell'}) {
@errs = &spell_check_text($plainbody);
if (@errs) {
# Spelling errors found!
&mail_page_header($text{'compose_title'}, undef, undef,
&folder_link($in{'user'}, $folder));
print "<b>$text{'send_espell'}</b><p>\n";
print map { $_."<p>\n" } @errs;
&mail_page_footer(
"javascript:back()", $text{'reply_return'},
"index.cgi?user=$in{'user'}&folder=$in{'folder'}".
"&dom=$in{'dom'}",
$text{'mail_return'});
exit;
}
}
# For a HTML body, replace images from detach.cgi on the original
# email with cid: references.
if ($in{'html_edit'}) {
$in{'body'} = &create_cids($in{'body'}, \%cidmap);
}
# Create the body attachment
local $mt = $in{'html_edit'} ? "text/html" : "text/plain";
if ($in{'charset'}) {
$mt .= "; charset=$in{'charset'}";
}
if ($in{'body'} =~ /[\177-\377]/) {
# Contains 8-bit characters .. need to make quoted-printable
$quoted_printable++;
@attach = ( { 'headers' => [ [ 'Content-Type', $mt ],
[ 'Content-Transfer-Encoding',
'quoted-printable' ] ],
'data' => quoted_encode($in{'body'}) } );
}
else {
# Plain 7-bit ascii text
@attach = ( { 'headers' => [ [ 'Content-Type', $mt ],
[ 'Content-Transfer-Encoding',
'7bit' ] ],
'data' => $in{'body'} } );
}
$bodyattach = $attach[0];
if ($in{'html_edit'}) {
# Create an attachment which contains both the HTML and plain
# bodies as alternatives
local @alts = ( $attach[0] );
local $mt = "text/plain; charset=$charset";
if ($plainbody =~ /[\177-\377]/) {
unshift(@alts,
{ 'headers' => [ [ 'Content-Type', $mt ],
[ 'Content-Transfer-Encoding',
'quoted-printable' ] ],
'data' => quoted_encode($plainbody) });
}
else {
unshift(@alts,
{ 'headers' => [ [ 'Content-Type', $mt ],
[ 'Content-Transfer-Encoding',
'7bit' ] ],
'data' => $plainbody });
}
# Set content type to multipart/alternative, to tell mail
# clients about the optional body
local $bound = "altsbound".time();
$attach[0] = {
'headers' => [ [ 'Content-Type',
'multipart/alternative; '.
'boundary="'.$bound.'"' ],
[ 'Content-Transfer-Encoding',
'7bit' ] ],
'data' => join("", &unparse_mail(\@alts, "\n", $bound))
};
}
}
# Add inline images
if (@inline_images) {
my $iid = 1;
for (my $i = 0; $i < scalar(@inline_images) - 1; $i += 2) {
my $cid = $inline_images[$i][0]."@".$inline_images[$i][1];
my $type = $inline_images[$i][1];
my $image_name = "inline-image$iid.$type";
my $data = $inline_images[$i + 1];
push(@attach,
{ 'data' => $data,
'headers' => [['Content-type', "image/$type; name=\"$image_name\""],
['Content-Disposition', "inline; filename=\"$image_name\""],
['Content-ID', "<$cid>"],
['Content-Transfer-Encoding', 'base64']
]
});
$iid++;
}
}
# Add uploaded attachment
$attachsize = 0;
for($i=0; defined($in{"attach$i"}); $i++) {
next if (!$in{"attach$i"});
for($j=0; $j<@{$in{"attach$i"}}; $j++) {
next if (!$in{"attach${i}"}->[$j]);
&test_max_attach(length($in{"attach${i}"}->[$j]));
local $filename = $in{"attach${i}_filename"}->[$j];
$filename =~ s/^.*(\\|\/)//;
local $type = $in{"attach${i}_content_type"}->[$j].
"; name=\"".$filename."\"";
local $disp = "attachment; filename=\"".$filename."\"";
push(@attach, { 'data' => $in{"attach${i}"}->[$j],
'headers' => [ [ 'Content-type', $type ],
[ 'Content-Disposition', $disp ],
[ 'Content-Transfer-Encoding',
'base64' ] ] });
$atotal += length($in{"attach${i}"}->[$j]);
}
}
# Add server-side attachment
for($i=0; defined($in{"file$i"}); $i++) {
next if (!$in{"file$i"} || !$access{'canattach'});
@uinfo = &get_mail_user($in{'user'});
@uinfo || &error($text{'view_eugone'});
if ($in{"file$i"} !~ /^\//) {
$in{"file$i"} = $uinfo[7]."/".$in{"file$i"};
}
local @st = stat($in{"file$i"});
&test_max_attach($st[7]);
local $data;
&switch_to_user($in{'user'});
$data = &read_file_contents($in{"file$i"});
$data || &error(&text('send_efile', $in{"file$i"}, $!));
&switch_user_back();
$in{"file$i"} =~ s/^.*\///;
local $type = &guess_mime_type($in{"file$i"}).
"; name=\"".$in{"file$i"}."\"";
local $disp = "inline; filename=\"".$in{"file$i"}."\"";
push(@attach, { 'data' => $data,
'headers' => [ [ 'Content-type', $type ],
[ 'Content-Disposition', $disp ],
[ 'Content-Transfer-Encoding',
'base64' ] ] });
$atotal += length($data);
}
# Add forwarded attachments
@fwd = split(/\0/, $in{'forward'});
if (@fwd) {
@mail = &mailbox_list_mails($in{'idx'}, $in{'idx'}, $folder);
$fwdmail = $mail[$in{'idx'}];
&parse_mail($fwdmail);
foreach $s (@sub) {
# We are looking at a mail within a mail ..
local $amail = &extract_mail($fwdmail->{'attach'}->[$s]->{'data'});
&parse_mail($amail);
$fwdmail = $amail;
}
foreach my $f (@fwd) {
&test_max_attach(length($fwdmail->{'attach'}->[$f]->{'data'}));
$a = $fwdmail->{'attach'}->[$f];
if ($cidmap{$f}) {
# This attachment has been inlined .. set a content-id
$a->{'headers'} = [
grep { lc($_->[0]) ne 'content-id' &&
lc($_->[0]) ne 'content-location' }
@{$a->{'headers'}} ];
push(@{$a->{'headers'}},
[ 'Content-Id', "<$cidmap{$f}>" ]);
}
push(@attach, $a);
$atotal += length($fwdmail->{'attach'}->[$f]->{'data'});
}
}
@mailfwd = split(/\0/, $in{'mailforward'});
# Add forwarded emails
if (@mailfwd) {
@mail = &mailbox_list_mails($mailfwd[0], $mailfwd[@mailfwd-1], $folder);
foreach $f (@mailfwd) {
$fwdmail = $mail[$f];
local $headertext;
foreach $h (@{$fwdmail->{'headers'}}) {
$headertext .= $h->[0].": ".$h->[1]."\n";
}
push(@attach, { 'data' => $headertext."\n".$fwdmail->{'body'},
'headers' => [ [ 'Content-type', 'message/rfc822' ],
[ 'Content-Description',
$fwdmail->{'header'}->{'subject'} ] ]
});
}
}
$mail->{'attach'} = \@attach;
if ($access{'attach'} >= 0 && $atotal > $access{'attach'}*1024) {
&error(&text('send_eattach', $access{'attach'}));
}
# Check for text-only email
$textonly = $config{'no_mime'} && !$quoted_printable &&
@{$mail->{'attach'}} == 1 &&
$mail->{'attach'}->[0] eq $bodyattach &&
!$in{'html_edit'};
# Send it off
&send_mail($mail, undef, $textonly, $config{'no_crlf'});
&webmin_log("send", undef, undef, { 'from' => $in{'from'}, 'to' => $in{'to'} });
# Tell the user that email as sent
&mail_page_header($text{'send_title'}, undef, undef,
&folder_link($in{'user'}, $folder));
@tos = ( split(/,/, $in{'to'}), split(/,/, $in{'cc'}), split(/,/, $in{'bcc'}) );
$tos = join(" , ", map { "<tt>".&html_escape($_)."</tt>" } @tos);
print "<p>",&text($in{'draft'} ? 'send_draft' : 'send_ok', $tos),"<p>\n";
if ($in{'idx'} ne '') {
&mail_page_footer("view_mail.cgi?idx=$in{'idx'}&folder=$in{'folder'}".
"&user=$in{'user'}&dom=$in{'dom'}$subs",
$text{'view_return'},
"list_mail.cgi?folder=$in{'folder'}&user=$in{'user'}".
"&dom=$in{'dom'}",
$text{'mail_return'},
&user_list_link(), $text{'index_return'});
}
else {
&mail_page_footer("list_mail.cgi?folder=$in{'folder'}&user=$in{'user'}".
"&dom=$in{'dom'}",
$text{'mail_return'},
&user_list_link(), $text{'index_return'});
}
# write_attachment(&attach)
sub write_attachment
{
local ($a) = @_;
local ($enc, $rv);
foreach $h (@{$a->{'headers'}}) {
$rv .= $h->[0].": ".$h->[1]."\r\n";
$enc = $h->[1]
if (lc($h->[0]) eq 'content-transfer-encoding');
}
$rv .= "\r\n";
if (lc($enc) eq 'base64') {
local $encoded = &encode_base64($a->{'data'});
$encoded =~ s/\r//g;
$encoded =~ s/\n/\r\n/g;
$rv .= $encoded;
}
else {
$a->{'data'} =~ s/\r//g;
$a->{'data'} =~ s/\n/\r\n/g;
$rv .= $a->{'data'};
if ($a->{'data'} !~ /\n$/) {
$rv .= "\r\n";
}
}
return $rv;
}
sub test_max_attach
{
$attachsize += $_[0];
if ($access{'attach'} >= 0 && $attachsize > $access{'attach'}) {
&error(&text('send_eattachsize', $access{'attach'}));
}
}
Private