first commit

Author: mysterier

Diff for: AUTHORS

@@ -0,0 +1,11 @@
+Monte Ohrt <[email protected]>
+	- main Snoopy work
+
+Andrei Zmievski <[email protected]>
+	- miscellaneous fixes
+	- read timeout support
+	- file submission capability
+
+Gene Wood <[email protected]>
+    - bug fixes
+    - security fixes

Diff for: COPYING.lib

@@ -0,0 +1,105 @@
+Version 1.2.4
+-------------
+
+    - fix command line escapement vulnerability with execution of curl binary on https fetches (mohrt)
+
+Version 1.2.3
+-----------
+    - updated the version variable in the code to reflect the new version number
+    - fixed a typo that I introduced in 1.2.2 (the first character of the file is a "z" (gene_wood, Marc Desrousseaux, Jan Pedersen)
+    - fixed BUG # 1328793 : fetch is case sensetive when it comes to the scheme (http / https) (gene_wood)
+
+Version 1.2.2
+-----------
+    - incorporated PATCH # 985470 : pass port information in http 1.1 Host header ( http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.23 ) (gene_wood)
+    - fixed BUG # 1110049 : redirect is case sensitive
+    - fixed bug in security bugfix from 1.2.1 (gene_wood, kellan, zaruba)
+
+Version 1.2.1
+-----------
+    - fixed potential security issue with unchecked variables being passed to exec (for https with curl) (gene_wood)
+    - fixed BUG # 1086830 : submitlinks,fetchlinks and submittext expandlinks with the URI of the original page not the refreshed page (gene_wood)
+    - fixed BUG # 1077870 : Snoopy can't deal with multiple spaces in a refresh tag (gene_wood)
+    - fixed BUG # 864047 : Root relative links are treated as relative (gene_wood)
+    - fixed BUG # 1097134 : Undefined URI_PARTS["path"] generates Notice (gene_wood)
+
+Version 1.2
+-----------
+    - fixed BUG # 1014823 : Meta redirect regex inaccurate (gene_wood)
+    - fixed BUG # 999079 : Trailing slashes not removed in uri passed to fetchlinks (gene_wood)
+    - fixed BUG # 642958 and 912060 : $URI_PARTS["query"] causing undefined variable notices (gene_wood)
+    - fixed BUG # 626849 : cURL security risk (Tajh Leitso, gene_wood)
+    - fixed BUG # 626849 : Corrects the redirect function under the submit functions (Tajh Leitso, gene_wood)
+    - fixed BUG # 912060 : Undefined variable: postdata (gene_wood)
+    - fixed BUG # 858526 : win32 tmp/$headerfile create error (gene_wood)
+    - fixed BUG # 929682 : Called undefined function is_executable() on line 194. (gene_wood)
+    - fixed BUG # 859711 : typo: http://snoopy.sourceforge.com (gene_wood)
+    - fixed BUG # 852993 : double urlencoding breaks redirect (gene_wood)
+    - added proxy user/pass support (Robert Zwink, Monte)
+	- fixed post data array problem (stefan, Monte)
+
+Version 1.01
+-----------
+	- fixed problem with PHP 4.3.2 and fread() (Monte)
+
+Version 1.0
+-----------
+	- added textarea to stripform functionality (Monte)
+    - fixed multiple cookie setting problem (Monte)
+    - fixed problem where extra text inside <frame src (Monte)
+    - fixed problem where extra text inside <a href (Monte)
+    - removed http request header from curl fetched
+      documents, not needed (Monte)
+    - added carriage return to newlines on headers (Monte)
+    - fixed bug with curl, removed single quotes
+	- fixed bug with curl and "&" in the URL
+	- added ability to post files. (Andrei)
+
+Version 0.94
+------------
+    - Added fetchform() function
+    - Fixed misc issues with frames
+    - Added SSL support via cURL
+    - fixed bug with posting arrays of data
+    - added status variable for http status
+
+Version 0.93
+------------
+    - fixed bug with hostname match in a redirect location header
+    - added $lastredirectaddr variable
+
+Version 0.92
+------------
+    - fixed redirect bug with MS web server
+    - added ability to pass set cookies through redirects
+    - added ability to traverse html frames
+
+Version 0.91
+------------
+    - fixed bug with return headers being overwritten.
+      Please read the NEWS file for important notes. (Monte)
+
+Version 0.9
+-----------
+    - added support for read timeouts (Andrei)
+    - standardized distribution (Andrei)
+
+Version 0.1e
+------------
+    - fixed bug in fetchlinks logic (Monte)
+
+Version 0.1d
+------------
+    - fixed redirect bug without fully qualified url (Monte)
+
+Version 0.1c
+------------
+    - fixed bug on submitting formvars after a redirect (Monte)
+
+Version 0.1b
+------------
+    - fixed bug to allow empty post vars on a submit (Monte)
+
+Version 0.1
+------------
+    - initial release (Monte)

Diff for: ChangeLog

@@ -0,0 +1,14 @@
+Q:	Why can't I fetch https pages?
+A:	Using Snoopy to fetch an https page requires curl. Check if curl is installed on your host. If curl is installed, it may be located in a different place than the default. By default Snoopy looks for curl in /usr/local/bin/curl. Run 'which curl' and find out your location. If it differs from the default, then you'll need to set the $snoopy->curl_path variable to the location of your curl installation. Here's an example of the code :
+		include "Snoopy.class.php";
+		$snoopy = new Snoopy;
+		$snoopy->curl_path="/usr/bin/curl";
+
+Q:	where does the function preg_match_all come from?
+A:	PCRE functions in PHP 3.0.9 and later
+
+Q:	I get the error: Warning: Wrong parameter count for fsockopen()
+A:	Upgrade your verion of PHP to 3.0.9 or later
+
+Q:	Snoopy cuts of my results every time. What's wrong?
+A:	Upgrade your verion of PHP to 3.0.9 or later

Diff for: FAQ

@@ -0,0 +1,2 @@
+Put Snoopy.class.php into one of the directories specified in your
+php.ini include_path directive.

Diff for: INSTALL

@@ -0,0 +1,61 @@
+RELEASE NOTE: v1.2.4
+October 22, 2008
+
+https fetches were not properly escaping shell args for curl binary execution. This is fixed.
+
+RELEASE NOTE: v1.2.3
+November 7, 2005
+
+A typo was introduced in 1.2.2 which broke the whole release. This has been fixed.
+A couple small fixes have been implemented also.
+
+RELEASE NOTE: v1.2.2
+October 30, 2005
+
+Fixed a bug with the bugfix for the security hole.
+
+RELEASE NOTE: v1.2.1
+October 24, 2005
+
+Fixed a few outstanding bugs and a potential security hole.
+
+RELEASE NOTE: v1.2
+November 17, 2004
+
+Fixed a number of outstanding bugs.
+
+RELEASE NOTE: v1.01
+
+PHP fixed a bug with fread() which consequently broke the way Snoopy called it. This has been fixed.
+Renamed Snoopy.class.inc to Snoopy.class.php for proper file extention.
+
+RELEASE NOTE: v1.0
+
+Added fetchform() function for fetching form elements from an html page.
+For SSL support, you must have cURL installed. see http://curl.haxx.se
+for details. Snoopy does not use the cURL library fuctions within PHP,
+as these are not stable as of this Snoopy release.
+Fixed bug with posting arrays of data.
+Added status variable to track http status.
+Several other bug fixes, see Changelog.
+RELEASE NOTE: v0.93
+
+A bug was fixed with redirection headers not containing the hostname, doubling up the redirection location URL.
+
+There is also a new variable, $lastredirectaddr that contains the last redirection URL.
+
+RELEASE NOTE: v0.92
+March 9, 2000
+
+A bug was fixed with redirection on MS web servers. Also, cookies are now passed through redirects.
+
+This release also adds the ability to traverse html framed pages. Just set $maxframes to the recursion depth you want to allow, and results are returned in $this->results as an array. See the README for an example.
+
+-Monte
+
+RELEASE NOTE: v0.91
+February 22, 2000
+
+In previous versions of Snoopy, $this->header was an array containing key/value pairs of headers returned from fetched content, not including HTTP and GET headers. If a key value was the same, the old value was overwritten (Two Set-Cookie: headers for example). This was overcome by making $this->header a simple array containing every header returned. Therefore, it will now be up to the programmer to split these headers into key/value pairs if so desired.
+
+-Monte