Forbid non-CLI access to command-line scripts

2020-09-07 05:51:26 -04:00 · 2020-09-07 05:51:26 -04:00 · 06632536f3
parent 3bd8b81154
commit 06632536f3
6 changed files with 29 additions and 0 deletions
--- a/bin/auth_ejabberd.php
+++ b/bin/auth_ejabberd.php
@ -51,6 +51,11 @@
 *
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 use Dice\Dice;
 use Friendica\App\Mode;
 use Friendica\Util\ExAuth;
--- a/bin/console.php
+++ b/bin/console.php
@ -20,6 +20,11 @@
 *
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 use Dice\Dice;
 use Psr\Log\LoggerInterface;
--- a/bin/daemon.php
+++ b/bin/daemon.php
@ -23,6 +23,11 @@
 * This script was taken from http://php.net/manual/en/function.pcntl-fork.php
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 use Dice\Dice;
 use Friendica\Core\Logger;
 use Friendica\Core\Worker;
--- a/bin/testargs.php
+++ b/bin/testargs.php
@ -26,6 +26,10 @@
 *
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 if (($_SERVER["argc"] > 1) && isset($_SERVER["argv"][1])) {
 	echo $_SERVER["argv"][1];
--- a/bin/wait-for-connection
+++ b/bin/wait-for-connection
@ -24,6 +24,11 @@
 * Usage: php bin/wait-for-connection {HOST} {PORT} [{TIMEOUT}]
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 $timeout = 60;
 switch ($argc) {
 	case 4:
--- a/bin/worker.php
+++ b/bin/worker.php
@ -21,6 +21,11 @@
 * Starts the background processing
 */
 if (php_sapi_name() !== 'cli') {
 	header($_SERVER["SERVER_PROTOCOL"] . ' 403 Forbidden');
 	exit();
 }
 use Dice\Dice;
 use Friendica\App;
 use Friendica\Core\Update;