$value, 'token' => $token)); } /** * Update a single config value in the database. * * If the config token doesn't exists, it's created. * * @param string Config token to update. * @param string New value to set. * * @return bool True if success. False on failure. */ function config_update_value ($token, $value) { global $config; switch ($token) { case 'list_ACL_IPs_for_API': return (bool) config_create_value ($token, $value); break; default: if (!isset ($config[$token])) { $config[$token] = $value; return (bool) config_create_value ($token, $value); } /* If it has not changed */ if ($config[$token] == $value) return true; $config[$token] = $value; return (bool) db_process_sql_update ('tconfig', array ('value' => $value), array ('token' => $token)); break; } } /** * Updates all config values in case setup page was invoked */ function config_update_config () { global $config; /* If user is not even log it, don't try this */ if (! isset ($config['id_user'])) return false; if (! check_acl ($config['id_user'], 0, "PM") && ! is_user_admin ($config['id_user'])) return false; $update_config = (bool) get_parameter ('update_config'); if (! $update_config) return false; $style = (string) get_parameter ('style', $config["style"]); if ($style != $config['style']) $style = substr ($style, 0, strlen ($style) - 4); config_update_value ('language', (string) get_parameter ('language', $config["language"])); config_update_value ('remote_config', (string) get_parameter ('remote_config', $config["remote_config"])); config_update_value ('block_size', (int) get_parameter ('block_size', $config["block_size"])); config_update_value ('days_purge', (int) get_parameter ('days_purge', $config["days_purge"])); config_update_value ('days_delete_unknown', (int) get_parameter ('days_delete_unknown', $config["days_delete_unknown"])); config_update_value ('days_compact', (int) get_parameter ('days_compact', $config["days_compact"])); config_update_value ('graph_res', (int) get_parameter ('graph_res', $config["graph_res"])); config_update_value ('step_compact', (int) get_parameter ('step_compact', $config["step_compact"])); config_update_value ('style', $style); config_update_value ('graph_color1', (string) get_parameter ('graph_color1', $config["graph_color1"])); config_update_value ('graph_color2', (string) get_parameter ('graph_color2', $config["graph_color2"])); config_update_value ('graph_color3', (string) get_parameter ('graph_color3', $config["graph_color3"])); config_update_value ('sla_period', (int) get_parameter ('sla_period', $config["sla_period"])); config_update_value ('date_format', (string) get_parameter ('date_format', $config["date_format"])); config_update_value ('trap2agent', (string) get_parameter ('trap2agent', $config["trap2agent"])); config_update_value ('autoupdate', (bool) get_parameter ('autoupdate', $config["autoupdate"])); config_update_value ('prominent_time', (string) get_parameter ('prominent_time', $config["prominent_time"])); config_update_value ('timesource', (string) get_parameter ('timesource', $config["timesource"])); config_update_value ('event_view_hr', (int) get_parameter ('event_view_hr', $config["event_view_hr"])); if (isset($_POST['loginhash_pwd'])){ // Reinitialization of login hash pass if (empty($_POST['loginhash_pwd'])){ config_update_value ('loginhash_pwd', $_POST['loginhash_pwd']); } else{ config_update_value ('loginhash_pwd', (string) get_parameter ('loginhash_pwd', $config["loginhash_pwd"])); } } config_update_value ('https', (bool) get_parameter ('https', $config["https"])); config_update_value ('compact_header', (bool) get_parameter ('compact_header', $config["compact_header"])); config_update_value ('fontpath', (string) get_parameter ('fontpath', $config["fontpath"])); config_update_value ('round_corner', (bool) get_parameter ('round_corner', $config["round_corner"])); config_update_value ('status_images_set', (string) get_parameter ('status_images_set', $config["status_images_set"])); config_update_value ('agentaccess', (int) get_parameter ('agentaccess', $config['agentaccess'])); config_update_value ('flash_charts', (bool) get_parameter ('flash_charts', $config["flash_charts"])); config_update_value ('attachment_store', (string) get_parameter ('attachment_store', $config["attachment_store"])); config_update_value ('list_ACL_IPs_for_API', (string) get_parameter('list_ACL_IPs_for_API', implode("\n", $config['list_ACL_IPs_for_API']))); config_update_value ('custom_logo', (string) get_parameter ('custom_logo', $config["custom_logo"])); config_update_value ('history_db_enabled', (bool) get_parameter ('history_db_enabled', $config['history_db_enabled'])); config_update_value ('history_db_host', (string) get_parameter ('history_db_host', $config['history_db_host'])); config_update_value ('history_db_port', (int) get_parameter ('history_db_port', $config['history_db_port'])); config_update_value ('history_db_name', (string) get_parameter ('history_db_name', $config['history_db_name'])); config_update_value ('history_db_user', (string) get_parameter ('history_db_user', $config['history_db_user'])); config_update_value ('history_db_pass', (string) get_parameter ('history_db_pass', $config['history_db_pass'])); config_update_value ('history_db_days', (string) get_parameter ('history_db_days', $config['history_db_days'])); config_update_value ('history_db_step', (string) get_parameter ('history_db_step', $config['history_db_step'])); config_update_value ('history_db_delay', (string) get_parameter ('history_db_delay', $config['history_db_delay'])); config_update_value ('timezone', (string) get_parameter ('timezone', $config['timezone'])); config_update_value ('activate_gis', (bool) get_parameter ('activate_gis', $config['activate_gis'])); config_update_value ('activate_netflow', (bool) get_parameter ('activate_netflow', $config['activate_netflow'])); config_update_value ('netflow_path', get_parameter ('netflow_path', $config['netflow_path'])); config_update_value ('netflow_interval', get_parameter ('netflow_interval', $config['netflow_interval'])); config_update_value ('netflow_daemon', get_parameter ('netflow_daemon', $config['netflow_daemon'])); config_update_value ('stats_interval', get_parameter ('stats_interval', $config['stats_interval'])); config_update_value ('realtimestats', get_parameter ('realtimestats', $config['realtimestats'])); config_update_value ('event_purge', get_parameter ('event_purge', $config['event_purge'])); config_update_value ('trap_purge', get_parameter ('trap_purge', $config['trap_purge'])); config_update_value ('string_purge', get_parameter ('string_purge', $config['string_purge'])); config_update_value ('audit_purge', get_parameter ('audit_purge', $config['audit_purge'])); config_update_value ('acl_enterprise', get_parameter ('acl_enterprise', $config['acl_enterprise'])); config_update_value ('metaconsole', get_parameter ('metaconsole', $config['metaconsole'])); config_update_value ('gis_purge', get_parameter ('gis_purge', $config['gis_purge'])); config_update_value ('auth', get_parameter ('auth', $config['auth'])); config_update_value ('autocreate_remote_users', get_parameter ('autocreate_remote_users', $config['autocreate_remote_users'])); config_update_value ('autocreate_blacklist', get_parameter ('autocreate_blacklist', $config['autocreate_blacklist'])); config_update_value ('default_remote_profile', get_parameter ('default_remote_profile', $config['default_remote_profile'])); config_update_value ('default_remote_group', get_parameter ('default_remote_group', $config['default_remote_group'])); config_update_value ('ldap_server', get_parameter ('ldap_server', $config['ldap_server'])); config_update_value ('ldap_port', get_parameter ('ldap_port', $config['ldap_port'])); config_update_value ('ldap_version', get_parameter ('ldap_version', $config['ldap_version'])); config_update_value ('ldap_start_tls', get_parameter ('ldap_start_tls', $config['ldap_start_tls'])); config_update_value ('ldap_base_dn', get_parameter ('ldap_base_dn', $config['ldap_base_dn'])); config_update_value ('ldap_login_attr', get_parameter ('ldap_login_attr', $config['ldap_login_attr'])); config_update_value ('ad_server', get_parameter ('ad_server', $config['ad_server'])); config_update_value ('ad_port', get_parameter ('ad_port', $config['ad_port'])); config_update_value ('ad_start_tls', get_parameter ('ad_start_tls', $config['ad_start_tls'])); config_update_value ('ad_domain', get_parameter ('ad_domain', $config['ad_domain'])); config_update_value ('rpandora_server', get_parameter ('rpandora_server', $config['rpandora_server'])); config_update_value ('rpandora_port', get_parameter ('rpandora_port', $config['rpandora_port'])); config_update_value ('rpandora_dbname', get_parameter ('rpandora_dbname', $config['rpandora_dbname'])); config_update_value ('rpandora_user', get_parameter ('rpandora_user', $config['rpandora_user'])); config_update_value ('rpandora_pass', get_parameter ('rpandora_pass', $config['rpandora_pass'])); config_update_value ('rbabel_server', get_parameter ('rbabel_server', $config['rbabel_server'])); config_update_value ('rbabel_port', get_parameter ('rbabel_port', $config['rbabel_port'])); config_update_value ('rbabel_dbname', get_parameter ('rbabel_dbname', $config['rbabel_dbname'])); config_update_value ('rbabel_user', get_parameter ('rbabel_user', $config['rbabel_user'])); config_update_value ('rbabel_pass', get_parameter ('rbabel_pass', $config['rbabel_pass'])); config_update_value ('rintegria_server', get_parameter ('rintegria_server', $config['rintegria_server'])); config_update_value ('rintegria_port', get_parameter ('rintegria_port', $config['rintegria_port'])); config_update_value ('rintegria_dbname', get_parameter ('rintegria_dbname', $config['rintegria_dbname'])); config_update_value ('rintegria_user', get_parameter ('rintegria_user', $config['rintegria_user'])); config_update_value ('rintegria_pass', get_parameter ('rintegria_pass', $config['rintegria_pass'])); config_update_value ('integria_enabled', get_parameter ('integria_enabled', $config['integria_enabled'])); config_update_value ('integria_inventory', get_parameter ('integria_inventory', $config['integria_inventory'])); config_update_value ('integria_api_password', get_parameter ('integria_api_password', $config['integria_api_password'])); config_update_value ('integria_url', get_parameter ('integria_url', $config['integria_url'])); config_update_value ('sound_alert', get_parameter('sound_alert', $config['sound_alert'])); config_update_value ('sound_critical', get_parameter('sound_critical', $config['sound_critical'])); config_update_value ('sound_warning', get_parameter('sound_warning', $config['sound_warning'])); config_update_value ('api_password', get_parameter('api_password', $config['api_password'])); config_update_value ('collection_max_size', get_parameter('collection_max_size', $config['collection_max_size'])); config_update_value ('font_size', get_parameter('font_size', $config['font_size'])); config_update_value ('refr', get_parameter('refr', $config['refr'])); config_update_value ('vc_refr', get_parameter('vc_refr', $config['vc_refr'])); enterprise_include_once('include/functions_policies.php'); $enterprise = enterprise_include_once ('include/functions_skins.php'); if ($enterprise !== ENTERPRISE_NOT_HOOK) { $config['relative_path'] = get_parameter('relative_path', $config['relative_path']); } } /** * Process config variables */ function config_process_config () { global $config; $configs = db_get_all_rows_in_table ('tconfig'); if (empty ($configs)) { include ($config["homedir"]."/general/error_emptyconfig.php"); exit; } /* Compatibility fix */ foreach ($configs as $c) { $config[$c['token']] = $c['value']; } if (!isset ($config['language'])) { config_update_value ('language', 'en'); } if (isset ($config['homeurl']) && $config['homeurl'][0] != '/') { $config['homeurl'] = '/'.$config['homeurl']; } if (!isset ($config['date_format'])) { config_update_value ('date_format', 'F j, Y, g:i a'); } if (!isset ($config['event_view_hr'])) { config_update_value ('event_view_hr', 8); } if (!isset ($config['loginhash_pwd'])) { config_update_value ('loginhash_pwd', rand (0, 1000) * rand (0, 1000)."pandorahash"); } if (!isset ($config["trap2agent"])) { config_update_value ('trap2agent', 0); } if (!isset ($config["sla_period"]) || empty ($config["sla_period"])) { config_update_value ('sla_period', 604800); } if (!isset ($config["prominent_time"])) { // Prominent time tells us what to show prominently when a timestamp is // displayed. The comparation (... days ago) or the timestamp (full date) config_update_value ('prominent_time', 'comparation'); } if (!isset ($config["timesource"])) { // Timesource says where time comes from (system or mysql) config_update_value ('timesource', 'system'); } if (!isset ($config["https"])) { // Sets whether or not we want to enforce https. We don't want to go to a // potentially unexisting config by default config_update_value ('https', false); } if (!isset ($config["compact_header"])) { config_update_value ('compact_header', false); } if (!isset ($config['status_images_set'])) { config_update_value ('status_images_set', 'default'); } // Load user session if (isset ($_SESSION['id_usuario'])) $config["id_user"] = $_SESSION["id_usuario"]; if (!isset ($config["round_corner"])) { config_update_value ('round_corner', false); } if (!isset ($config["agentaccess"])) { config_update_value ('agentaccess', true); } if (!isset ($config["timezone"])) { config_update_value ('timezone', "Europe/Berlin"); } if (!isset ($config["stats_interval"])) { config_update_value ('stats_interval', 300); } if (!isset ($config["realtimestats"])) { config_update_value ('realtimestats', 1); } if (!isset ($config["event_purge"])) { config_update_value ('event_purge', 15); } if (!isset ($config["trap_purge"])) { config_update_value ('trap_purge', 7); } if (!isset ($config["string_purge"])) { config_update_value ('string_purge', 14); } if (!isset ($config["audit_purge"])) { config_update_value ('audit_purge', 30); } if (!isset ($config["acl_enterprise"])) { config_update_value ('acl_enterprise', 0); } if (!isset ($config["metaconsole"])) { config_update_value ('metaconsole', 0); } if (!isset ($config["gis_purge"])) { config_update_value ('gis_purge', 7); } if (!isset ($config["collection_max_size"])) { config_update_value ('collection_max_size', 1000000); } if (!isset ($config["font_size"])) { config_update_value ('font_size', 7); } /* *Parse the ACL IP list for access API */ $temp_list_ACL_IPs_for_API = array(); if (isset($config['list_ACL_IPs_for_API'])) { $temp_list_ACL_IPs_for_API = explode(';', $config['list_ACL_IPs_for_API']); } $config['list_ACL_IPs_for_API'] = $temp_list_ACL_IPs_for_API; $keysConfig = array_keys($config); // This is not set here. The first time, when no // setup is done, update_manager extension manage it // the first time make a conenction and disable itself // Not Managed here ! // if (!isset ($config["autoupdate"])){ // config_update_value ('autoupdate', true); // } require_once ($config["homedir"]."/include/auth/mysql.php"); // Next is the directory where "/attachment" directory is placed, to upload files stores. // This MUST be writtable by http server user, and should be in pandora root. // By default, Pandora adds /attachment to this, so by default is the pandora console home dir if (!isset ($config['attachment_store'])) { config_update_value ( 'attachment_store', $config['homedir'].'/attachment'); } if (!isset ($config['fontpath'])) { config_update_value ( 'fontpath', $config['homedir'].'/include/fonts/smallfont.ttf'); } if (!isset ($config['style'])) { config_update_value ( 'style', 'pandora'); } if (!isset ($config['flash_charts'])) { config_update_value ( 'flash_charts', true); } if (!isset ($config["custom_logo"])){ config_update_value ('custom_logo', 'none.png'); } if (!isset ($config['history_db_enabled'])) { config_update_value ( 'history_db_enabled', false); } if (!isset ($config['history_db_host'])) { config_update_value ( 'history_db_host', ''); } if (!isset ($config['history_db_port'])) { config_update_value ( 'history_db_port', 3306); } if (!isset ($config['history_db_name'])) { config_update_value ( 'history_db_name', 'pandora'); } if (!isset ($config['history_db_user'])) { config_update_value ( 'history_db_user', 'pandora'); } if (!isset ($config['history_db_pass'])) { config_update_value ( 'history_db_pass', ''); } if (!isset ($config['history_db_days'])) { config_update_value ( 'history_db_days', 0); } if (!isset ($config['history_db_step'])) { config_update_value ( 'history_db_step', 0); } if (!isset ($config['history_db_delay'])) { config_update_value ( 'history_db_delay', 0); } if (!isset ($config['activate_gis'])) { config_update_value ( 'activate_gis', 0); } if (!isset ($config['activate_netflow'])) { config_update_value ( 'activate_netflow', 0); } if (!isset ($config['netflow_path'])) { config_update_value ( 'netflow_path', '/var/spool/pandora/data_in/netflow'); } if (!isset ($config['netflow_interval'])) { config_update_value ( 'netflow_interval', 300); } if (!isset ($config['netflow_daemon'])) { config_update_value ( 'netflow_daemon', '/usr/bin/nfcapd'); } if (!isset ($config['auth'])) { config_update_value ( 'auth', 'mysql'); } if (!isset ($config['autocreate_remote_users'])) { config_update_value ('autocreate_remote_users', 0); } if (!isset ($config['autocreate_blacklist'])) { config_update_value ('autocreate_blacklist', ''); } if (!isset ($config['default_remote_profile'])) { config_update_value ('default_remote_profile', 0); } if (!isset ($config['default_remote_group'])) { config_update_value ('default_remote_group', 0); } if (!isset ($config['ldap_server'])) { config_update_value ( 'ldap_server', 'localhost'); } if (!isset ($config['ldap_port'])) { config_update_value ( 'ldap_port', 389); } if (!isset ($config['ldap_version'])) { config_update_value ( 'ldap_version', '3'); } if (!isset ($config['ldap_start_tls'])) { config_update_value ( 'ldap_start_tls', 0); } if (!isset ($config['ldap_base_dn'])) { config_update_value ( 'ldap_base_dn', 'ou=People,dc=edu,dc=example,dc=org'); } if (!isset ($config['ldap_login_attr'])) { config_update_value ( 'ldap_login_attr', 'uid'); } if (!isset ($config['ad_server'])) { config_update_value ( 'ad_server', 'localhost'); } if (!isset ($config['ad_port'])) { config_update_value ( 'ad_port', 389); } if (!isset ($config['ad_start_tls'])) { config_update_value ( 'ad_start_tls', 0); } if (!isset ($config['ad_domain'])) { config_update_value ( 'ad_domain', ''); } if (!isset ($config['rpandora_server'])) { config_update_value ( 'rpandora_server', 'localhost'); } if (!isset ($config['rpandora_port'])) { config_update_value ( 'rpandora_port', 3306); } if (!isset ($config['rpandora_dbname'])) { config_update_value ( 'rpandora_dbname', 'pandora'); } if (!isset ($config['rpandora_user'])) { config_update_value ( 'rpandora_user', 'pandora'); } if (!isset ($config['rpandora_pass'])) { config_update_value ( 'rpandora_pass', ''); } if (!isset ($config['rbabel_server'])) { config_update_value ( 'rbabel_server', 'localhost'); } if (!isset ($config['rbabel_port'])) { config_update_value ( 'rbabel_port', 3306); } if (!isset ($config['rbabel_dbname'])) { config_update_value ( 'rbabel_dbname', 'babel'); } if (!isset ($config['rbabel_user'])) { config_update_value ( 'rbabel_user', 'babel'); } if (!isset ($config['rbabel_pass'])) { config_update_value ( 'rbabel_pass', ''); } if (!isset ($config['rintegria_server'])) { config_update_value ( 'rintegria_server', 'localhost'); } if (!isset ($config['rintegria_port'])) { config_update_value ( 'rintegria_port', 3306); } if (!isset ($config['rintegria_dbname'])) { config_update_value ( 'rintegria_dbname', 'integria'); } if (!isset ($config['rintegria_user'])) { config_update_value ( 'rintegria_user', 'integria'); } if (!isset ($config['rintegria_pass'])) { config_update_value ( 'rintegria_pass', ''); } if (!isset ($config['integria_enabled'])) { config_update_value ( 'integria_enabled', '0'); } if (!isset ($config['integria_api_password'])) { config_update_value ( 'integria_api_password', ''); } if (!isset ($config['integria_inventory'])) { config_update_value ( 'integria_inventory', '0'); } if (!isset ($config['integria_url'])) { config_update_value ( 'integria_url', ''); } if (!isset ($config['autoupdate'])) { config_update_value ( 'autoupdate', 0); } if (!isset ($config['api_password'])) { config_update_value( 'api_password', ''); } if (!isset ($config['relative_path']) && (isset ($_POST['nick']) || isset ($config['id_user'])) && isset($config['enterprise_installed'])) { $isFunctionSkins = enterprise_include_once ('include/functions_skins.php'); if ($isFunctionSkins !== ENTERPRISE_NOT_HOOK) { if(isset($config['id_user'])) $relative_path = enterprise_hook('skins_set_image_skin_path',array($config['id_user'])); else $relative_path = enterprise_hook('skins_set_image_skin_path',array($_POST['nick'])); $config['relative_path'] = $relative_path; } } if (!isset ($config['dbtype'])) { config_update_value ('dbtype', 'mysql'); } if (!isset ($config['vc_refr'])) { config_update_value ('vc_refr', 60); } if (!isset ($config['refr'])) { config_update_value ('refr', ''); } /* Finally, check if any value was overwritten in a form */ config_update_config(); } function config_check (){ global $config; // At this first version I'm passing errors using session variables, because the error management // is done by an AJAX request. Better solutions could be implemented in the future :-) // Check default password for "admin" $hashpass = db_get_sql ("SELECT password FROM tusuario WHERE id_user = 'admin'"); if ($hashpass == "1da7ee7d45b96d0e1f45ee4ee23da560"){ $config["alert_cnt"]++; $_SESSION["alert_msg"] .= '
'.__('Please change the default password because is a common vulnerability reported.').'
'; } if (!is_writable ("attachment")){ $config["alert_cnt"]++; $_SESSION["alert_msg"] .= ''.__('Please check that the web server has write rights on the {HOMEDIR}/attachment directory').'
'; } // Get remote file dir. $remote_config = db_get_value_filter('value', 'tconfig', array('token' => 'remote_config')); if (defined ('PANDORA_ENTERPRISE')){ if (!is_writable ($remote_config)){ $config["alert_cnt"]++; $_SESSION["alert_msg"] .= '