+ }
+
+ $body .= "Content-Transfer-Encoding: 8bit\r\n\r\n";
+ $body .= $passedBody . "\r\n\r\n";
+ fputs ($fp, $body);
+
+ $attachmentlength = attachFiles($fp, $session);
+
+ if (!isset($postbody)) {
+ $postbody = "";
+ }
+ $postbody .= "\r\n--".mimeBoundary()."--\r\n\r\n";
+ fputs ($fp, $postbody);
+ } else {
+ $body = $passedBody . "\r\n";
+ fputs ($fp, $body);
+ $postbody = "\r\n";
+ fputs ($fp, $postbody);
+ }
+
+ return (strlen($body) + strlen($postbody) + $attachmentlength);
+}
+
+/* Send mail using the sendmail command
+ */
+function sendSendmail($t, $c, $b, $subject, $body, $more_headers, $session) {
+ global $sendmail_path, $popuser, $username, $domain;
+
+ /* Build envelope sender address. Make sure it doesn't contain
+ * spaces or other "weird" chars that would allow a user to
+ * exploit the shell/pipe it is used in.
+ */
+ $envelopefrom = "$popuser@$domain";
+ $envelopefrom = ereg_replace("[[:blank:]]",'', $envelopefrom);
+ $envelopefrom = ereg_replace("[[:space:]]",'', $envelopefrom);
+ $envelopefrom = ereg_replace("[[:cntrl:]]",'', $envelopefrom);
+
+ /* open pipe to sendmail or qmail-inject (qmail-inject doesn't accept -t param) */
+ if (strstr($sendmail_path, "qmail-inject")) {
+ $fp = popen (escapeshellcmd("$sendmail_path -f$envelopefrom"), "w");
+ } else {
+ $fp = popen (escapeshellcmd("$sendmail_path -t -f$envelopefrom"), "w");
+ }
+
+ $headerlength = write822Header ($fp, $t, $c, $b, $subject, $more_headers, $session);
+ $bodylength = writeBody($fp, $body, $session);
+
+ pclose($fp);
+
+ return ($headerlength + $bodylength);
+}
+
+function smtpReadData($smtpConnection) {
+ $read = fgets($smtpConnection, 1024);
+ $counter = 0;
+ while ($read) {
+ echo $read . '<BR>';
+ $data[$counter] = $read;
+ $read = fgets($smtpConnection, 1024);
+ $counter++;
+ }
+}
+
+function sendSMTP($t, $c, $b, $subject, $body, $more_headers, $session) {
+ global $username, $popuser, $domain, $version, $smtpServerAddress,
+ $smtpPort, $data_dir, $color, $use_authenticated_smtp, $identity,
+ $key, $onetimepad;
+
+ $to = expandRcptAddrs(parseAddrs($t));
+ $cc = expandRcptAddrs(parseAddrs($c));
+ $bcc = expandRcptAddrs(parseAddrs($b));
+ if (isset($identity) && $identity != 'default') {
+ $from_addr = getPref($data_dir, $username, 'email_address' . $identity);
+ }
+ else {
+ $from_addr = getPref($data_dir, $username, 'email_address');
+ }
+
+ if (!$from_addr) {
+ $from_addr = "$popuser@$domain";
+ }
+
+ $smtpConnection = fsockopen($smtpServerAddress, $smtpPort, $errorNumber, $errorString);
+ if (!$smtpConnection) {
+ echo 'Error connecting to SMTP Server.<br>';
+ echo "$errorNumber : $errorString<br>";
+ exit;
+ }
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+
+ $to_list = getLineOfAddrs($to);
+ $cc_list = getLineOfAddrs($cc);
+
+ /* Lets introduce ourselves */
+ if (! isset ($use_authenticated_smtp) || $use_authenticated_smtp == false) {
+ fputs($smtpConnection, "HELO $domain\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) return(0);
+ } else {
+ fputs($smtpConnection, "EHLO $domain\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) return(0);
+
+ fputs($smtpConnection, "AUTH LOGIN\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+
+ fputs($smtpConnection, base64_encode ($username) . "\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+
+ fputs($smtpConnection, base64_encode (OneTimePadDecrypt($key, $onetimepad)) . "\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+ }
+
+ /* Ok, who is sending the message? */
+ fputs($smtpConnection, "MAIL FROM: <$from_addr>\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+
+ /* send who the recipients are */
+ for ($i = 0; $i < count($to); $i++) {
+ fputs($smtpConnection, "RCPT TO: $to[$i]\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+ }
+ for ($i = 0; $i < count($cc); $i++) {
+ fputs($smtpConnection, "RCPT TO: $cc[$i]\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+ }
+ for ($i = 0; $i < count($bcc); $i++) {
+ fputs($smtpConnection, "RCPT TO: $bcc[$i]\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+ }
+
+ /* Lets start sending the actual message */
+ fputs($smtpConnection, "DATA\r\n");
+ $tmp = fgets($smtpConnection, 1024);
+ if (errorCheck($tmp, $smtpConnection)!=5) {
+ return(0);
+ }
+
+ /* Send the message */
+ $headerlength = write822Header ($smtpConnection, $t, $c, $b, $subject, $more_headers, $session);
+ $bodylength = writeBody($smtpConnection, $body, $session);
+
+ fputs($smtpConnection, ".\r\n"); /* end the DATA part */
+ $tmp = fgets($smtpConnection, 1024);
+ $num = errorCheck($tmp, $smtpConnection, true);
+ if ($num != 250) {
+ return(0);
+ }
+
+ fputs($smtpConnection, "QUIT\r\n"); /* log off */
+
+ fclose($smtpConnection);
+
+ return ($headerlength + $bodylength);
+}
+
+
+function errorCheck($line, $smtpConnection, $verbose = false) {
+ global $color, $compose_new_win;
+
+ /* Read new lines on a multiline response */
+ $lines = $line;
+ while(ereg("^[0-9]+-", $line)) {
+ $line = fgets($smtpConnection, 1024);
+ $lines .= $line;
+ }
+
+ /* Status: 0 = fatal
+ * 5 = ok
+ */
+ $err_num = substr($line, 0, strpos($line, " "));
+ switch ($err_num) {
+ case 500: $message = 'Syntax error; command not recognized';
+ $status = 0;
+ break;
+ case 501: $message = 'Syntax error in parameters or arguments';
+ $status = 0;
+ break;
+ case 502: $message = 'Command not implemented';
+ $status = 0;
+ break;
+ case 503: $message = 'Bad sequence of commands';
+ $status = 0;
+ break;
+ case 504: $message = 'Command parameter not implemented';
+ $status = 0;
+ break;
+
+ case 211: $message = 'System status, or system help reply';
+ $status = 5;
+ break;
+ case 214: $message = 'Help message';
+ $status = 5;
+ break;
+
+ case 220: $message = 'Service ready';
+ $status = 5;
+ break;
+ case 221: $message = 'Service closing transmission channel';
+ $status = 5;
+ break;
+
+ case 421: $message = 'Service not available, closing chanel';
+ $status = 0;
+ break;
+
+ case 235: return(5);
+ break;
+ case 250: $message = 'Requested mail action okay, completed';
+ $status = 5;
+ break;
+ case 251: $message = 'User not local; will forward';
+ $status = 5;
+ break;
+ case 334: return(5); break;
+ case 450: $message = 'Requested mail action not taken: mailbox unavailable';
+ $status = 0;
+ break;
+ case 550: $message = 'Requested action not taken: mailbox unavailable';
+ $status = 0;
+ break;
+ case 451: $message = 'Requested action aborted: error in processing';
+ $status = 0;
+ break;
+ case 551: $message = 'User not local; please try forwarding';
+ $status = 0;
+ break;
+ case 452: $message = 'Requested action not taken: insufficient system storage';
+ $status = 0;
+ break;
+ case 552: $message = 'Requested mail action aborted: exceeding storage allocation';
+ $status = 0;
+ break;
+ case 553: $message = 'Requested action not taken: mailbox name not allowed';
+ $status = 0;
+ break;
+ case 354: $message = 'Start mail input; end with .';
+ $status = 5;
+ break;
+ case 554: $message = 'Transaction failed';
+ $status = 0;
+ break;
+ default: $message = 'Unknown response: '. nl2br(htmlspecialchars($lines));
+ $status = 0;
+ $error_num = '001';
+ break;
+ }
+
+ if ($status == 0) {
+ include_once('../functions/page_header.php');
+ if ($compose_new_win == '1') {
+ compose_Header($color, 'None');
+ }
+ else {
+ displayPageHeader($color, 'None');
+ }
+ include_once('../functions/display_messages.php');
+ $lines = nl2br(htmlspecialchars($lines));
+ $msg = $message . "<br>\nServer replied: $lines";
+ plain_error_message($msg, $color);
+ }
+ if (! $verbose) return $status;
+ return $err_num;
+}
+
+function sendMessage($t, $c, $b, $subject, $body, $reply_id, $MDN, $prio = 3, $session) {
+ global $useSendmail, $msg_id, $is_reply, $mailbox, $onetimepad,
+ $data_dir, $username, $domain, $key, $version, $sent_folder, $imapServerAddress,
+ $imapPort, $default_use_priority, $more_headers, $request_mdn, $request_dr;
+
+ $more_headers = Array();
+
+ do_hook('smtp_send');
+
+ $imap_stream = sqimap_login($username, $key, $imapServerAddress, $imapPort, 1);
+
+ if (isset($reply_id) && $reply_id) {
+ sqimap_mailbox_select ($imap_stream, $mailbox);
+ sqimap_messages_flag ($imap_stream, $reply_id, $reply_id, 'Answered');
+
+ /* Insert In-Reply-To and References headers if the
+ * message-id of the message we reply to is set (longer than "<>")
+ * The References header should really be the old Referenced header
+ * with the message ID appended, but it can be only the message ID too.
+ */
+ $hdr = sqimap_get_small_header ($imap_stream, $reply_id, false);
+ if(strlen($hdr->message_id) > 2) {
+ $more_headers['In-Reply-To'] = $hdr->message_id;
+ $more_headers['References'] = $hdr->message_id;
+ }
+ }
+ if ($default_use_priority) {
+ $more_headers = array_merge($more_headers, createPriorityHeaders($prio));
+ }
+
+ $requestRecipt = 0;
+ if (isset($request_dr)) {
+ $requestRecipt += 1;
+ }
+ if (isset($request_mdn)) {
+ $requestRecipt += 2;
+ }
+ if ( $requestRecipt > 0) {
+ $more_headers = array_merge($more_headers, createReceiptHeaders($requestRecipt));
+ }
+
+ /* In order to remove the problem of users not able to create
+ * messages with "." on a blank line, RFC821 has made provision
+ * in section 4.5.2 (Transparency).
+ */
+ $body = ereg_replace("\n\\.", "\n..", $body);
+ $body = ereg_replace("^\\.", "..", $body);
+
+ /* this is to catch all plain \n instances and
+ * replace them with \r\n. All newlines were converted
+ * into just \n inside the compose.php file.
+ */
+ $body = ereg_replace("\n", "\r\n", $body);
+
+ if ($MDN) {
+ $more_headers["Content-Type"] = "multipart/report; ".
+ "report-type=disposition-notification;";
+ }
+
+ if ($useSendmail) {
+ $length = sendSendmail($t, $c, $b, $subject, $body, $more_headers, $session);
+ } else {
+ $length = sendSMTP($t, $c, $b, $subject, $body, $more_headers, $session);
+ }
+ if (sqimap_mailbox_exists ($imap_stream, $sent_folder)) {
+ sqimap_append ($imap_stream, $sent_folder, $length);
+ write822Header ($imap_stream, $t, $c, $b, $subject, $more_headers, $session);
+ writeBody ($imap_stream, $body, $session);
+ sqimap_append_done ($imap_stream);
+ }
+ sqimap_logout($imap_stream);
+ /* Delete the files uploaded for attaching (if any).
+ * only if $length != 0 (if there was no error)
+ */
+ if ($length) {
+ ClearAttachments($session);
+ }
+
+ return $length;
+}
+
+function createPriorityHeaders($prio) {
+ $prio_headers = Array();
+ $prio_headers['X-Priority'] = $prio;
+
+ switch($prio) {
+ case 1: $prio_headers['Importance'] = 'High';
+ $prio_headers['X-MSMail-Priority'] = 'High';
+ break;
+
+ case 3: $prio_headers['Importance'] = 'Normal';
+ $prio_headers['X-MSMail-Priority'] = 'Normal';
+ break;
+
+ case 5:
+ $prio_headers['Importance'] = 'Low';
+ $prio_headers['X-MSMail-Priority'] = 'Low';
+ break;
+ }
+ return $prio_headers;
+}
+
+function createReceiptHeaders($receipt) {
+
+ GLOBAL $data_dir, $username;
+
+ $receipt_headers = Array();
+ $from_addr = getPref($data_dir, $username, 'email_address');
+ $from = getPref($data_dir, $username, 'full_name');
+
+ if ($from == '') {
+ $from = "<$from_addr>";
+ }
+ else {
+ $from = '"' . encodeHeader($from) . "\" <$from_addr>";
+ }
+
+ /* On Delivery */
+ if ( $receipt == 1
+ || $receipt == 3 ) {
+ $receipt_headers["Return-Receipt-To"] = $from;
+ }
+ /* On Read */
+ if ($receipt == 2
+ || $receipt == 3 ) {
+ /* Pegasus Mail */
+ $receipt_headers["X-Confirm-Reading-To"] = $from;
+ /* RFC 2298 */
+ $receipt_headers["Disposition-Notification-To"] = $from;
+ }
+ return $receipt_headers;
+}
+