| 1 | <?php |
|---|
| 2 | require 'dbinfo.phi'; |
|---|
| 3 | require("config.php"); |
|---|
| 4 | |
|---|
| 5 | $nl = "\n"; |
|---|
| 6 | $tab = "\t"; |
|---|
| 7 | $headers = apache_request_headers(); |
|---|
| 8 | |
|---|
| 9 | function print_record($data) |
|---|
| 10 | { |
|---|
| 11 | $nl = "\n"; |
|---|
| 12 | $tab = "\t"; |
|---|
| 13 | $len = sizeof($data); |
|---|
| 14 | |
|---|
| 15 | for ($i = 0; $i < $len; ++$i) |
|---|
| 16 | { |
|---|
| 17 | if ($i > 0) |
|---|
| 18 | echo $tab; |
|---|
| 19 | |
|---|
| 20 | echo $data[$i]; |
|---|
| 21 | } |
|---|
| 22 | echo $nl; |
|---|
| 23 | } |
|---|
| 24 | |
|---|
| 25 | function do_query($sql, $names) |
|---|
| 26 | { |
|---|
| 27 | $result= mysql_query($sql); |
|---|
| 28 | |
|---|
| 29 | print_record($names); |
|---|
| 30 | |
|---|
| 31 | if ($result) |
|---|
| 32 | { |
|---|
| 33 | while ($row = mysql_fetch_row($result)) |
|---|
| 34 | { |
|---|
| 35 | print_record($row); |
|---|
| 36 | } |
|---|
| 37 | } |
|---|
| 38 | } |
|---|
| 39 | |
|---|
| 40 | // escape string as SQL param |
|---|
| 41 | function escape1($param) |
|---|
| 42 | { |
|---|
| 43 | return mysql_real_escape_string($param); |
|---|
| 44 | } |
|---|
| 45 | |
|---|
| 46 | function execute_query($id, $param) |
|---|
| 47 | { |
|---|
| 48 | $sql = "unknown as yet"; |
|---|
| 49 | $names = array(); |
|---|
| 50 | |
|---|
| 51 | switch ($id) |
|---|
| 52 | { |
|---|
| 53 | case "0": |
|---|
| 54 | $sql = "SELECT DISTINCT host FROM site_info WHERE lasting_cookies <> 0"; |
|---|
| 55 | $names = array("host"); |
|---|
| 56 | break; |
|---|
| 57 | |
|---|
| 58 | case "1": |
|---|
| 59 | $sql = "SELECT DISTINCT host FROM site_info WHERE session_cookies <> 0"; |
|---|
| 60 | $names = array("host"); |
|---|
| 61 | break; |
|---|
| 62 | |
|---|
| 63 | case "2": |
|---|
| 64 | $sql = "SELECT host,flash_cookies,int_3rd_party_flash_cookies," . |
|---|
| 65 | "ext_3rd_party_flash_cookies FROM site_info WHERE flash_cookies <> 0" . |
|---|
| 66 | " OR int_3rd_party_flash_cookies <> 0 OR ext_3rd_party_flash_cookies <> 0"; |
|---|
| 67 | $names = array("host","direct","internal","external"); |
|---|
| 68 | break; |
|---|
| 69 | |
|---|
| 70 | case "3": |
|---|
| 71 | $sql = "SELECT DISTINCT host FROM site_info WHERE dom_storage <> 0"; |
|---|
| 72 | $names = array("host"); |
|---|
| 73 | break; |
|---|
| 74 | |
|---|
| 75 | case "4": |
|---|
| 76 | $sql = "SELECT host FROM site_info WHERE invisible_images <> 0"; |
|---|
| 77 | $names = array("host"); |
|---|
| 78 | break; |
|---|
| 79 | |
|---|
| 80 | case "5": |
|---|
| 81 | $sql = "SELECT host FROM site_info WHERE html5_pings <> 0"; |
|---|
| 82 | $names = array("host"); |
|---|
| 83 | break; |
|---|
| 84 | |
|---|
| 85 | case "6": |
|---|
| 86 | $sql = "SELECT host FROM site_info WHERE p3p <> 0"; |
|---|
| 87 | $names = array("host"); |
|---|
| 88 | break; |
|---|
| 89 | |
|---|
| 90 | case "7": |
|---|
| 91 | $sql = "SELECT DISTINCT third_party FROM parties WHERE offsite <> 0"; |
|---|
| 92 | $names = array("3rd party"); |
|---|
| 93 | break; |
|---|
| 94 | |
|---|
| 95 | case "8": |
|---|
| 96 | $sql = "SELECT DISTINCT page_host FROM parties WHERE offsite <> 0 " . |
|---|
| 97 | "AND third_party LIKE '%" . escape1($param) . "'"; |
|---|
| 98 | $names = array("host"); |
|---|
| 99 | break; |
|---|
| 100 | |
|---|
| 101 | case "9": |
|---|
| 102 | |
|---|
| 103 | $sql = "SELECT DISTINCT third_party FROM parties WHERE offsite = 1 " . |
|---|
| 104 | "AND page_host LIKE '%" . escape1($param) . "'"; |
|---|
| 105 | $names = array("3rd party"); |
|---|
| 106 | break; |
|---|
| 107 | |
|---|
| 108 | case "10": |
|---|
| 109 | $sql = "SELECT DISTINCT third_party FROM parties WHERE offsite = 2 " . |
|---|
| 110 | "AND page_host LIKE '%" . escape1($param) . "'"; |
|---|
| 111 | $names = array("3rd party"); |
|---|
| 112 | break; |
|---|
| 113 | |
|---|
| 114 | case "11": |
|---|
| 115 | $sql = "SELECT host,session_cookies,lasting_cookies,flash_cookies," . |
|---|
| 116 | "int_3rd_party_session_cookies,int_3rd_party_lasting_cookies," . |
|---|
| 117 | "int_3rd_party_flash_cookies,ext_3rd_party_session_cookies," . |
|---|
| 118 | "ext_3rd_party_lasting_cookies,ext_3rd_party_flash_cookies" . |
|---|
| 119 | " FROM site_info WHERE host LIKE '%" . escape1($param) . "'"; |
|---|
| 120 | $names = array("host","session","lasting","flash", |
|---|
| 121 | "int session", "int lasting", "int flash", |
|---|
| 122 | "ext session", "ext lasting", "ext flash"); |
|---|
| 123 | break; |
|---|
| 124 | |
|---|
| 125 | case "12": |
|---|
| 126 | $sql = "SELECT host FROM site_info WHERE geo_permission <> 0"; |
|---|
| 127 | $names = array("host"); |
|---|
| 128 | break; |
|---|
| 129 | |
|---|
| 130 | default: |
|---|
| 131 | break; |
|---|
| 132 | } |
|---|
| 133 | |
|---|
| 134 | do_query($sql, $names); |
|---|
| 135 | } |
|---|
| 136 | |
|---|
| 137 | header('Content-Type: text/plain'); |
|---|
| 138 | |
|---|
| 139 | // $database, $username and $password set in config.php |
|---|
| 140 | $db = mysql_connect($db_master, $username, $password); |
|---|
| 141 | |
|---|
| 142 | if (!$db) |
|---|
| 143 | { |
|---|
| 144 | header("HTTP/1.0 500 Internal Error"); |
|---|
| 145 | die("500 Internal Error - Couldn't open connection to MYSQL: ".mysql_error()); |
|---|
| 146 | } |
|---|
| 147 | |
|---|
| 148 | if (!mysql_select_db($database)) |
|---|
| 149 | { |
|---|
| 150 | header("HTTP/1.0 500 Internal Error"); |
|---|
| 151 | die( "500 Internal Error - Unable to select database"); |
|---|
| 152 | } |
|---|
| 153 | |
|---|
| 154 | // get query from param |
|---|
| 155 | $query_id = "0"; |
|---|
| 156 | $query_param = ""; |
|---|
| 157 | |
|---|
| 158 | if (array_key_exists("query", $_GET)) |
|---|
| 159 | $query_id = $_GET["query"]; |
|---|
| 160 | |
|---|
| 161 | if (array_key_exists("param", $_GET)) |
|---|
| 162 | $query_param = $_GET["param"]; |
|---|
| 163 | |
|---|
| 164 | execute_query($query_id, $query_param); |
|---|
| 165 | |
|---|
| 166 | mysql_close($db); |
|---|
| 167 | ?> |
|---|
| 168 | |
|---|
| 169 | |
|---|
