Initial YakPanel commit

class/safe_warning/sw_redis_pass.py

@@ -0,0 +1,48 @@
+#!/usr/bin/python
+#coding: utf-8
+# -------------------------------------------------------------------
+# YakPanel
+# -------------------------------------------------------------------
+# Copyright (c) 2015-2099 YakPanel(www.yakpanel.com) All rights reserved.
+# -------------------------------------------------------------------
+# Author: hwliang <hwl@yakpanel.com>
+# -------------------------------------------------------------------
+
+# -------------------------------------------------------------------
+# Redis 密码检测
+# -------------------------------------------------------------------
+
+import os,sys,re,public
+
+_title = 'Redis weak password'
+_version = 1.0                              # 版本
+_ps = "Check if the current Redis password is secure"                 # 描述
+_level = 3                                  # 风险级别： 1.提示(低)  2.警告(中)  3.危险(高)
+_date = '2022-08-10'                        # 最后更新时间
+_ignore = os.path.exists("data/warning/ignore/sw_redis_pass.pl")
+_tips = [
+    "1.Redis passwords are too simple"
+    "2.Please change your password in time"
+    ]
+_help = ''
+_remind = 'This solution reduces the risk of server intrusion by strengthening the database login password. '
+
+def check_run():
+    try:
+        p_file = '/www/server/redis/redis.conf'
+        p_body = public.readFile(p_file)
+        if not p_body: return True, 'Risk-free'
+
+        tmp = re.findall(r"^\s*requirepass\s+(.+)", p_body, re.M)
+        if not tmp: return True, 'Risk-free'
+
+        redis_pass = tmp[0].strip()
+        pass_info=public.ReadFile("/www/server/panel/config/weak_pass.txt")
+        if not pass_info: return True, 'Risk-free'
+        pass_list = pass_info.split('\n')
+        for i in pass_list:
+            if i==redis_pass:
+                return False, 'The Redis password [%s] is a weak password, please change the password'%redis_pass
+        return True, 'Risk-free'
+    except:
+        return True, 'Risk-free'