Jump to content

[Solved] Cpanel Login Script And Cookies


ablaty2
 Share

Recommended Posts

Has the cpanel login cookie format been changed recently? A script that I've been using for a daily backup of my MySQL database recently stopped working.

 

I originally made the script based on this post:

http://www.helionet....4737#entry64737

 

Currently this is what the script returns: http://10stoptours.c...ipt/buMySQL.php

 

I have included a copy of the source.

 

Thanks,

Alex

 

 

php

# Edit email info

$to = "Alex <myemal@gmail.com>";

$from = "Automated Backup <dailybackup@10stoptours.com>";

$subject = "Mysql Backup";

$message = "10StopTours.com Mysql GZIP Backup";

 

# Edit cpanel backup info

# login is cpanel login username and password

$user_name = "username";

$user_pass = "password";

$database = "username_tours";

$domain = "10stoptours.com";

$url = "http://$domain:2082/getsqlbackup/$database.sql.gz";

$agent = "Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)";

$cook_file = "curl_login_cookie.txt";

 

# get file extension

$extract = pathinfo($url);

$fname = ($extract['basename']);

 

$ch = curl_init();

curl_setopt($ch, CURLOPT_URL, $url);

curl_setopt($ch, CURLOPT_HEADER, false);

curl_setopt($ch, CURLOPT_REFERER, "http://$domain");

curl_setopt($ch, CURLOPT_USERAGENT, $agent);

curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);

curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);

curl_setopt($ch, CURLOPT_UNRESTRICTED_AUTH, true);

curl_setopt($ch, CURLOPT_USERPWD, "$user_name:$user_pass");

curl_setopt($ch, CURLOPT_COOKIEFILE, $cook_file);

curl_setopt($ch, CURLOPT_COOKIEJAR, $cook_file);

 

$result = curl_exec($ch);

$extract = curl_getinfo($ch);

$httpcode = $extract['http_code'];

curl_close($ch);

 

if ($httpcode >= 200 && $httpcode < 303) {

 

####### Email gzip attachment #######

$content = chunk_split(base64_encode($result));

$uid = md5(uniqid(time()));

$header = "From: $from\r\n";

$header .= "MIME-Version: 1.0\r\n";

$header .= "Content-Type: multipart/mixed; boundary=\"".$uid."\"\r\n\r\n";

$header .= "This is a multi-part message in MIME format.\r\n";

$header .= "--".$uid."\r\n";

$header .= "Content-type:text/plain; charset=iso-8859-1\r\n";

$header .= "Content-Transfer-Encoding: 7bit\r\n\r\n";

$header .= $message."\r\n\r\n";

$header .= "--".$uid."\r\n";

$header .= "Content-Type: application/x-gzip; name=\"".$fname."\"\r\n";

$header .= "Content-Transfer-Encoding: base64\r\n";

$header .= "Content-Disposition: attachment; filename=\"".$fname."\"\r\n\r\n";

$header .= $content."\r\n\r\n";

$header .= "--".$uid."--";

mail($to, $subject, $message, $header);

####### End email attachment ########

 

} else {

echo "cPanel Login Failed!";

}

 

# delete cookie file

if (file_exists($cook_file)) {

unlink($cook_file);

}

?>

Link to comment
Share on other sites

Thanks for the reply. I just double checked that my username and password were correct, but that didn't fix the problem. Is it possible that I have to configure the server to accept connections from itself (like in remote MySQL)?

 

Thanks again,

Alex

 

I think I figured out the problem. Is there anyway to fix it, other than changing my username? I played around with it and got this message (see bold):

 

 

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html xmlns="http://www.w3.org/1999/xhtml">

<head>

<link rel="shortcut icon" href="/cPanel_magic_revision_1255087532/unprotected/cpanel/favicon.ico" type="image/x-icon" />

<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />

<meta name="robots" content="noindex, nofollow" />

<title>cPanel® 11</title>

<link rel="stylesheet" href="/cPanel_magic_revision_1255087532/unprotected/cpanel/style_optimized.css" type="text/css" />

<!--[if IE]>

<style type="text/css">

#mid{

height:300px;

}

</style>

<![endif]-->

<meta name="robots" content="noindex, nofollow" />

</head>

<body>

<div id="wrap">

<div id="top"></div>

<div id="mid">

<div id="content-wrap" align="center">

 

<h1>Brute Force Protection</h1>

This account is currently locked out because a <a href='http://en.wikipedia.org/wiki/Brute_force_attack'>brute force attempt</a> was detected. Please wait a few minutes and try again. Attempting to login again will only increase this delay. If you frequently experience this problem, we recommend having your username changed to something less generic.

<form action="/login/" method="post" >

<input type="hidden" name="login_theme" value="cpanel" />

<table width="200px" class="login" cellpadding="0" cellspacing="0">

<tr>

<td align="left" colspan="2"><strong>Login</strong></td>

</tr>

<tr>

<td class="login_lines">Username </td>

<td class="login_lines"><input id="user" autofocus="autofocus" type="text" name="user" size="16" tabindex="1" /></td>

</tr>

<tr class="row2">

<td class="login_lines">Password </td>

<td class="login_lines"><input id="pass" type="password" name="pass" size="16" tabindex="2" /></td>

</tr>

<tr>

<td colspan="2" style="text-align: center"><input type="submit" value="Login" class="input-button" tabindex="3" /></td>

</tr>

</table>

<input type="hidden" name="goto_uri" value="/getsqlbackup/ablaty_tours.sql.gz" />

</form>

<script type="text/javascript">

//<![CDATA[

document.getElementById("user").focus();

/* Must not include external javascript -jnk 06.20.09 */

//]]>

</script>

</div>

</div>

<div id="bot">

</div>

© cPanel, Inc. 2011

</div>

</body>

</html>

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Similar Content

    • By jje
      A new European law is coming into force which means that websites must make their users aware of what cookies are and receive some form of consent. Although HelioNetworks (HelioHost and HelioNet) is based within the United States, I would like to clarify how we use cookies at HelioNetworks. By using our services and browsing our website, you are giving consent for us to place cookies on your computer.
       
      In case you are not already aware, cookies are little pieces of information that are placed on your computer. We use cookies for a variety of reasons, such as analytics, secure logins, etc.
       
      Below is a list of cookies which we have picked up on. Please be aware there may be more that we have not noticed. The below list my change at any time without notification
       
      Cookies from heliohost.org
      __utma
      __utmb
      __utmc
      __utmz
      _jsuid
      first_pv_51643
      A randomly generated session cookie
       
      Cookies from helionet.org
      helionetcoppa
      helionetmember_id
      helionetpass_hash
      helionetsession_id
       
      Cookies from cPanel (stevie.heliohost.org:2082, johnny.heliohost.org:2082, etc)
      cprelogin
      cpsession
      didgettingstarted
      lang
      langedit
      logintheme
      showdotfiles
       
      Cookies from doubleclick.net (Advertising - see the website for details if any)
      _drt_
      id
       
      Cookies from getclicky.com & in.getclicky.com & static.getclicky.com (Analytics - see the website for details if any)
      _cfduid
      cluid
       
      Cookies from invitemedia.com (Advertising - see the website for details if any)
      camp_freq_p1
      exchange_uid
      impressions_p1
      io_freq_p1
      subID
      uid
       
      Comments are welcome. Thank you very much.
       
      jje
      HelioNetworks Administrator
×
×
  • Create New...