*** *** Copyright 2014 by Kevin Johnson and the Laudanum Team *** ******************************************************************************** *** *** This file allows browsing of the file system. *** Written by Tim Medin *** 2013-12-28 Updated by Jason Gillam - fixed parent folder *** ******************************************************************************** *** This program is free software; you can redistribute it and/or *** modify it under the terms of the GNU General Public License *** as published by the Free Software Foundation; either version 2 *** of the License, or (at your option) any later version. *** *** This program is distributed in the hope that it will be useful, *** but WITHOUT ANY WARRANTY; without even the implied warranty of *** MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *** GNU General Public License for more details. *** *** You can get a copy of the GNU General Public License from this *** address: http://www.gnu.org/copyleft/gpl.html#SEC1 *** You can also write to the Free Software Foundation, Inc., 59 Temple *** Place - Suite 330, Boston, MA 02111-1307, USA. *** ***************************************************************************** */ // ***************** Config entries below *********************** // IPs are enterable as individual addresses TODO: add CIDR support $allowedIPs = array("192.168.1.1","127.0.0.1"); # *********** No editable content below this line ************** $allowed = 0; foreach ($allowedIPs as $IP) { if ($_SERVER["REMOTE_ADDR"] == $IP) $allowed = 1; } if ($allowed == 0) { header("HTTP/1.0 404 Not Found"); die(); } /* This error handler will turn all notices, warnings, and errors into fatal * errors, unless they have been suppressed with the @-operator. */ function error_handler($errno, $errstr, $errfile, $errline, $errcontext) { /* The @-opertor (used with chdir() below) temporarely makes * error_reporting() return zero, and we don't want to die in that case. * We do note the error in the output, though. */ if (error_reporting() == 0) { $_SESSION['output'] .= $errstr . "\n"; } else { die(' Laudanum PHP File Browser

Fatal Error!

' . $errstr . '

in ' . $errfile . ', line ' . $errline . '.

Copyright © 2014, Kevin Johnson and the Laudanum team.
Written by Tim Medin.
Get the latest version at laudanum.secureideas.net.
'); } } set_error_handler('error_handler'); /* Initialize some variables we need again and again. */ $dir = isset($_GET["dir"]) ? $_GET["dir"] : "."; $file = isset($_GET["file"]) ? $_GET["file"] : ""; if ($file != "") { if(file_exists($file)) { $s = split("/", $file); $filename = $s[count($s) - 1]; header("Content-type: application/x-download"); header("Content-Length: ".filesize($file)); header("Content-Disposition: attachment; filename=\"".$filename."\""); readfile($file); die(); } } ?> Laudanum File Browser

Laudanum File Browser 0.1

Home
Directory listing of / "; $breadcrumb = '/'; foreach ($dirs as $d) { if ($d != '') { $breadcrumb .= $d . "/"; echo "$d/ "; } } echo ""; // translate .. to a real dir $parentdir = ""; for ($i = 0; $i < count($dirs) - 2; $i++) { $parentdir .= $dirs[$i] . "/"; } echo ""; echo ""; echo ""; //get listing, separate into directories and files $listingfiles = array(); $listingdirs = array(); if ($handle = @opendir($curdir)) { while ($o = readdir($handle)) { if ($o == "." || $o == "..") continue; if (@filetype($curdir . $o) == "dir") { $listingdirs[] = $o . "/"; } else { $listingfiles[] = $o; } } @natcasesort($listingdirs); @natcasesort($listingfiles); //display directories foreach ($listingdirs as $f) { echo ""; } //display files foreach ($listingfiles as $f) { echo ""; } } else { echo ""; } ?>
NameDateSize
../
" . $f . "" . "
" . $f . "" . "" . number_format(@filesize($curdir . $f)) . "

Can't open directory

Copyright © 2014, Kevin Johnson and the Laudanum team.
Written by Tim Medin.
Get the latest version at laudanum.secureideas.net.