Be sure writing is allowed in this directory."; $langPassChanged = "The password has been changed."; $langPassError = "The new passwords don't match !"; $langPassword = "Change Big Sam Password"; $langRetype = "Retype new Password :"; $langSubmit = "Kész"; $langSubmitModif = "Submit Modifications"; $langSystemError = "System Error"; $langSystemMessage = "System Message"; $langWrongPassword = "Wrong Admin Password"; /******************************************* * Configuration Step 2 : Carbon Copy Email * *******************************************/ // carbonCopy = 1 enables mail sending to mailRecipient. // mailRecipient receives a mail each times an entry is entered (if carbonCopy = 1) // mailSubject is the subject of the mail which is sent. $carbonCopy = 1; $mailRecipient = "otkenyer@otkenyer.hu, m.s@freemail.hu, birtalanb@mail.datanet.hu"; $mailSubject = "[BIG SAM] Új bejegyzés a vendégkönyvbe"; /******************************** * Configuration Step 3 : Colors * ********************************/ // Choosing colors (Remove the unwanted color-model) /* // Standard (Greys, bright background) $colorWhite = "\"#FFFFFF\""; $colorBlack = "\"#000000\""; $colorHeads = "\"#666666\""; $colorBody1 = "\"#EEEEEE\""; $colorBody2 = "\"#DDDDDD\""; */ // The Following is the BIG SAM standard $colorWhite = "\"#FFFFFF\""; $colorBlack = "\"#000000\""; $colorHeads = "\"#42426F\""; $colorBody1 = "\"#FFF8DC\""; $colorBody2 = "\"#EFE8CC\""; // Data submission form colors $formHeadColor = $colorHeads; $formBodyColor = $colorBody1; $formTailColor = $colorBody2; $formHeadText = $colorWhite; $formBodyText = $colorBlack; // Guestbook entries colors $entryHeadColor = $colorHeads; $entryBodyColor1 = $colorBody2; $entryBodyColor2 = $colorBody1; $entryHeadText = $colorWhite; $entryBodyText1 = $colorBlack; $entryBodyText2 = $colorHeads; // Messages colors $adminHeadColor = $colorHeads; $adminHeadText = $colorWhite; $adminBodyColor1 = $colorBody2; $adminBodyText1 = $colorBlack; $adminBodyColor2 = $colorBody1; $adminBodyText2 = $colorHeads; /******************************** * Configuration Step 4 : Header * ********************************/ function displayHeader() { global $version; header ("Expires: Sat, 01 Jan 2000 00:00:00 GMT"); echo ("\n"); include ("v-head1.php"); include ("v-head2.php"); include ('arch.php'); } /******************************** * Configuration Step 5 : Footer * ********************************/ function displayFooter() { echo (""); include ('../nyil0-r.php'); include ('../cim-r.php'); echo (""); } /****************************************************** * Configuration Step 6 : Number of messages displayed * ******************************************************/ // Number of fields to be displayed simultaneously. // To display everything, set $displayStep to 0. $displayStep = 0; /************************************************ * Configuration Step 7 : Allow AutoLink Suystem * ************************************************/ $allowAutoLink=1; /************************ * End of Configuration * ************************/ // $absoluteScriptPath is the name of the current script (this file) and which is going to // be modified by itself. This means that (theoretically) this file can be // placed anywhere on the system, with any fileName. $absoluteScriptPath = $SCRIPT_FILENAME; // $absoluteScriptPath = $PATH_TRANSLATED; $relativeScriptPath = $PHP_SELF; // when the php preprocessor is installed as an independant binary (as CGI). if ($PATH_INFO!="") { $relativeScriptPath = $PATH_INFO; } // to be used when $PHP_SELF contains virtual directory reference // (for multi-users servers, eg : free.fr, online.fr ...) if (($SERVER_NAME=="php.proxad.net")||(($SERVER_NAME=="php3.pro.proxad.net"))) { $relativeScriptPath = substr($relativeScriptPath, strpos(substr($relativeScriptPath, 1), "/")+1); } $theName=substr($absoluteScriptPath, 0, strrpos($absoluteScriptPath, ".")); $extension=substr($absoluteScriptPath, strrpos($absoluteScriptPath, ".")+1); // The dataFile contains all the guestbook entries, and $adminpassword . // $adminpassword is the password which will be asked for any administration // actions. This password could be changed only if in admin mode (old // $adminpassword matches $admin). // Defines the name of the database file where the entries are stored. $dataFile = "${theName}.dat.${extension}"; //****************************************************************************** // function displayForm : Display the form which enables the client to type a // message. function displayForm() { global $relativeScriptPath; $borderThickness = 3; global $formHeadColor; global $formBodyColor; global $formTailColor; global $formHeadText; global $formBodyText; global $langName; global $langEmail; global $langMessage; global $langSubmit; // Writing HTML Code echo ("\n"); echo ("\n"); } //****************************************************************************** // function displayMessage displays the $errorMessage error message. function displayMessage($errorMessage,$msgType) { global $adminHeadColor; global $adminHeadText; global $adminBodyColor1; global $adminBodyText1; global $adminBodyColor2; global $adminBodyText2; global $langAdminError; global $langSystemError; global $langSystemMessage; global $langBsGuestbook; displayHeader(); echo ("

"); echo ("

"); echo (" $langBsGuestbook
"); echo ("

"); if ($msgType=="1") // Admin Message echo (" $langAdminError"); if ($msgType=="2") // System Error echo (" $langSystemError"); if ($msgType=="3") // System Message echo (" $langSystemMessage"); echo (""); echo ("

"); echo (""); echo ("
$errorMessage

"); echo ("

\n"); echo ("

"); displayFooter(); exit; } //****************************************************************************** // function standardizeText filters ambiguous chains in $str function standardizeStoredText($str) { $str = str_replace("\\'", "'", $str); $str = str_replace("\\\"", "\"", $str); $str = htmlspecialchars($str); $str = str_replace("\n", "
", $str); $str = str_replace("$", "$", $str); return $str; } function standardizeDisplayedText($str) { return $str; } function standardizeAdminText($str) { return $str; } function seekHttp($rawText) { // Ádám rakta be a végét $pattern = array( "/http:\/\/((\w|\.|\?|\%|=|\/|-|~|#|&|,|;)*)/", "/mailto:((\w|\.|@|-)*)/"); $replacement = array( "http://\\1", "\\1"); $hyperLinkedText=preg_replace($pattern, $replacement, $rawText); return $hyperLinkedText; } //****************************************************************************** // function Xfopen : opens a file $fileName and locks it function Xfopen($fileName, $openMode, $sharing) { global $langOpenError; $fp=@fopen($fileName, $openMode); if (!$fp) { displayMessage($langOpenError,2); } if ($sharing==true) { $op=1; } else { $op=2; } if (!@flock($fp,$op)) { @flock($fp,3); displayMessage("flock timeout",2); } return $fp; } //****************************************************************************** // function Xfclose : unlocks the file $fp and closes it function Xfclose($fp) { @flock($fp,3); @fclose($fp); } //****************************************************************************** // function fullDisplay function fullDisplay() { global $displayStep,$displayBegin, $maxDisplay ; global $entryHeadColor,$entryHeadText, $entryBodyColor1,$entryBodyText1, $entryBodyColor2,$entryBodyText2 ; global $relativeScriptPath; global $index; global $archive_mail, $archive_name, $archive_text, $archive_date; global $allowAutoLink; // Ádám rakta be global $archivalt; // Checks if $displayBegin is not too large (Thanks to Ahmet Sabri ALPER ) if ($displayBegin>$maxDisplay) { $displayBegin=$maxDisplay-$displayStep+1; } displayHeader(); // Displays the entry form to enable the client to type a message. displayForm(); if ($index==0) { displayFooter(); return; } echo ("

\n"); // Message arrays are displayed here : echo "\n"; // Displaying all the entries. if ($displayStep==0) { $displayBegin=1; $displayStep=$index; } if ($displayBegin==1) { $startAt=$index % $displayStep; if ($startAt==0) $startAt=$displayStep; } else { $startAt=$displayBegin+$displayStep-1; } for ($msgNumber=$startAt ; $msgNumber>=$displayBegin ; $msgNumber--) { // Ádám rakta be: echo (""); echo ("

"); echo (" $archive_date[$msgNumber] "); echo ("

"); echo (""); if ($archive_mail[$msgNumber]!="") { // Ádám rakta be az archivalt-at echo ($msgNumber+$archivalt." : ".standardizeDisplayedText($archive_name[$msgNumber]).""); } else { // Ádám rakta be az archivalt-at echo ($msgNumber+$archivalt." : ".standardizeDisplayedText($archive_name[$msgNumber])); } echo (""); echo ("

"); echo (""); if ($allowAutoLink==1) echo ("".seekHttp(standardizeDisplayedText($archive_text[$msgNumber])).""); else echo ("".standardizeDisplayedText($archive_text[$msgNumber]).""); echo ("

\n"); } echo ("

\n"); // Ádám rakta be: echo (""); // Ádám rakta be: include ('arch.php'); for($i=1;$i<=$index;$i=$nextEnd+1) { $nextBegin = $i; if ($i==1) { $nextEnd=$index % $displayStep; if ($nextEnd==0) $nextEnd=$displayStep; } else $nextEnd = $i+$displayStep-1; if ($displayBegin==$nextBegin && $nextEnd!=$nextBegin) echo ("[".($nextBegin + $archivalt)."-".($nextEnd + $archivalt)."]\n"); else if ($displayBegin==$nextBegin && $nextEnd==$nextBegin) echo ("[".($nextBegin + $archivalt)."]\n"); else if ($nextEnd==$nextBegin) echo ("[".($nextBegin + $archivalt)."]\n"); else echo ("[".($nextBegin + $archivalt)."-".($nextEnd + $archivalt)."]\n"); } // Ádám rakta be: echo (""); echo "\n"; displayFooter(); } //****************************************************************************** function readData($resetBegin) { global $adminpassword; global $index; global $dataFile; global $archive_mail, $archive_name, $archive_text, $archive_date; global $displayBegin, $displayStep, $maxDisplay; // Includes automatically filled data arrays : $index = 0; $fout=Xfopen($dataFile, "r", true); include($dataFile); Xfclose($fout); // From now, $index will indicate the number of data entries. // Beginning of the data to be displayed, default = 1 if (!isset($displayBegin)) $displayBegin=""; if ($displayBegin=="" || $resetBegin==1) { $displayBegin = $index-$displayStep+1; if ($displayBegin<=0) $displayBegin=1; } // Sets the maximum that $displayBegin can reach $maxDisplay = $index; } //****************************************************************************** // If the Datafile does not exist, creates it. if (!file_exists(${dataFile})) { $fout = Xfopen($dataFile, "w+", false); fputs($fout, ""); Xfclose ($fout); } if (!isset($admin)) { if (!isset($name)) { $name=""; $message=""; } if ($name=="" || $message=="") { /**************************************************************************************** * Use Case no 1-A * * * * This case is encountered when a client simply wants to add a message to the * * guestbook. (Every variable is empty); * ************************************************************************************/ readData(0); fullDisplay(); exit; } else { /******************************************************************************** * Use Case no 1-B * * * * Case is encountered when a client has just filled in the appropriate fields * * (name, mail, message). * * $name = "Some Name" * * $email = "Some@Email" * * $message = "Some Message" * * Simply add message in the top of all previous messages. * ********************************************************************************/ $position = filesize($dataFile); $fout = Xfopen($dataFile, "r+", false); fseek($fout,$position-2); $insert_msgdate = date( "dS F Y - h:i:s A" ); $name=standardizeStoredText($name); $email=standardizeStoredText($email); $message=standardizeStoredText($message); // Ádám rakta be !!! $message=str_replace("õ", "ő", $message); $message=str_replace("ô", "ő", $message); $message=str_replace("û", "ű", $message); $message=str_replace("Û", "Ű", $message); $message=str_replace("Õ", "Ő", $message); $message=str_replace("Ô", "Ő", $message); $message=str_replace(" www.", " http://www.", $message); $message=str_replace("(www.", "(http://www.", $message); if (strpos($name,"Birtalan")!==false and strpos($name,"Balázs")!==false) {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if (strpos($name,"Sebestyén")!==false and strpos($name,"Fábián")!==false) {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if (strpos($name,"Öt")!==false and strpos($name,"Kenyér")!==false) {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if (strpos($name,"Ot")!==false and strpos($name,"Kenyer")!==false) {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if ((strpos($message,"szar szar szar")!==false) or (strpos($name,"Buziölő")!==false) or (strpos($name,"buziölő")!==false) or (strpos($message,"Rohadt buzik")!==false) or (strpos($message,"basszál")!==false) or (strpos($message,"Basszál")!==false) or (strpos($message,"fasszopó")!==false) or (strpos($message,"faszszopó")!==false) or (strpos($message,"spriccel")!==false) or (strpos($message,"szopott")!==false) or (strpos($message,"pina")!==false) or (strpos($message,"piná")!==false) or (strpos($message,"köcsög")!==false) or (strpos($message,"kúrj")!==false) or (strpos($message,"picsá")!==false) or (strpos($message,"picsa")!==false) or (strpos($message,"geci")!==false) or (strpos($message,"fasz")!==false) or (strpos($message,"baszott")!==false)) {$message = str_replace("
", "\n", $message);$mailBody = "From: $name <$email>\n$insert_msgdate\n\n$message";mail($mailRecipient,"[BIG SAM] A Vendégkönyvbe sikertelenül elküldeni próbált üzenet",$mailBody,"From: $email\nReply-to: $name <$email>"); $message = ""; exit;} $name = eregi_replace(" +"," ",$name); $email = eregi_replace(" +"," ",$email); $name = trim($name); $email = trim($email); if ($name=="Öt Kenyér Közösség") {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if ($email=="otkenyer@otkenyer.hu") {$name = "[Hamisítvány ismeretlen felhasználótól az Öt Kenyér Közösség nevével]"; $email="";} if (($name=="5K") or ($name=="5k")) {$name = "Öt Kenyér Közösség"; $email = "otkenyer@otkenyer.hu";} if (($name=="5KB") or ($name=="5kb") or ($name=="5Kb") or ($name=="5kB")) {$name = "Birtalan Balázs"; $email = "otkenyer@otkenyer.hu";} if (($name=="5KS") or ($name=="5ks")) {$name = "Sebestyén Fábián"; $email = "otkenyer@otkenyer.hu";} fputs ($fout,"\$archive_name[++\$index] = \"$name\";\n"); fputs ($fout,"\$archive_mail[ \$index] = \"$email\";\n"); fputs ($fout,"\$archive_date[ \$index] = \"$insert_msgdate\";\n"); fputs ($fout,"\$archive_text[ \$index] = \"$message\";\n"); fputs ($fout,"\n?>"); Xfclose($fout); // Sending a mail to $mailRecipient if $carbonCopy=1, with the subject $mailSubject. if ($carbonCopy==1) { $message = str_replace("
", "\n", $message); $mailBody = "From: $name <$email>\n$insert_msgdate\n\n$message"; mail($mailRecipient,$mailSubject,$mailBody,"From: $email\nReply-to: $name <$email>"); } if (strpos($HTTP_REFERER, "?")==false) $page=$HTTP_REFERER; else $page=substr($HTTP_REFERER, 0, strpos($HTTP_REFERER, "?")); header("Location: $page?"); exit; } } else { readData(0); if ($admin==$adminpassword) { if ($command=="") { displayHeader(); /************************************************************************ * Use Case no 2-A * * * * Admin mode (The administrator can modify password, fields, or remove * * messages). * * $admin = $adminpassword * * Shows a password modification form. * * Shows all messages and enables to modify/delete them. * ************************************************************************/ echo("

BIG SAM

$langGbAdmin

\n"); echo("
\n"); // Display the form which enables the admin to change his password echo ("\n"); echo("

\n"); // Message arrays are displayed here in forms in order to modify them : echo ("\n"); displayFooter(); exit; } else if ($command=="passwd") { // Use Case no 2-B // Admin mode (The administrator is modifying his password.). // $admin = $adminpassword // $newPassword1 = "New Password 1" // $newPassword2 = "New Password 2" // Check if $newPassword1 matches $newPassword2 // Set the $adminpassword line to : // $adminpassword = "$newPassword1" in the dataFile if($newPassword1!=$newPassword2) { // The passwords doesn't match displayMessage("$langPassError",1); } else { // Rewrites the whole Datafile with the new password, and all the entries. $fout = Xfopen($dataFile, "w", false); fputs ($fout,""); Xfclose($fout); displayMessage("$langPassChanged",3); exit; } } else if ($command=="modify") { /******************************************************************************** * Use Case no 2-C * * * * Admin mode (The administrator is updating entries). * * $admin = $adminpassword * * $nameXXX = "Modified name (no XXX)" * * $emailXXX = "Modified email (no XXX)" * * $messageXXX = "Modified message (no XXX)" * * $keep = "on" or "" * * Check if $admin matches $adminpassword. * * Rewrites ALL the fields except when $keepXXX = "" * * Rewrites the whole Datafile with the new password, and all the entries. * ********************************************************************************/ $fout = Xfopen($dataFile, "w", false); fputs ($fout,""); Xfclose($fout); if (strpos($HTTP_REFERER, "?")==false) $page=$HTTP_REFERER; else $page=substr($HTTP_REFERER, 0, strpos($HTTP_REFERER, "?")); header("Location: $page?"); exit; } } else { /************************************************ * Use Case no 2-Z * * * * If $admin does NOT match $adminpassword. * * $admin != $adminpassword * * Error message : "Wrong Admin Password" * ************************************************/ displayMessage("$langWrongPassword",1); } } ?>

\n"); echo (" $langPassword.
"); echo (" $langnewPassword	"); echo ("
"); echo (" $langRetype	"); echo ("
\n"); echo ("\n"); echo ("\n"); echo ("

\n"); echo (" "); echo ("$langEntry #$msgNumber.

".standardizeAdminText($str)); echo ("