First!

Author: srett

.gitignore

@@ -0,0 +1,5 @@
+/rules.d/*.php
+/config.php
+/server.pem
+/nbproject
+/.idea

README.md

@@ -0,0 +1,32 @@
+# mail2file
+**mail2file** is a simple, quick and dirty "fake" SMTP (and POP3) server, intended to be used to create a file dump, or automate processing of those attachments. It was tested on PHP 7.3 and 7.4.
+
+## what.
+**mail2file** implements just enough SMTP to fool mail clients (and other SMTP servers) to deliver mail to it. You can write simple filter rules the will decide if and where to store any attachments received, or what process to execute that will process the received attachment further.
+
+Attachments are written to disk as they are received, so memory consumption should stay low even when receiving potentially huge files.
+
+### but why?
+Sometimes, mail is still the easiest way to get a file from A to B, even in 2021.
+
+## config + setup
+`config.php` needs to go into the root directory, a template can be found in `stuff/`. Here you can set the FQDN the SMTP and POP3 servers identify with, and the ports to listen on. To use TLS, put the certificate + chain + private key into a file called `server.pem` into the root directory. For implicit TLD add an `ssl://` socket to the config, STARTTLS is supported automatically if `server.pem` exists.
+The sample config contains the officially assigned ports + 10,000, since non-root users usually can't listen on ports < 1024, so you need to add some iptables rules to make this work, or similar.
+
+## filters
+Filters go into the `rules.d/` directory and are simple PHP snippets. See the `stuff/` directory for a set of examples. Note that processing doesn't end if a filter matches, so you can check the second parameter to your filter to see how many filters already matched.
+
+## POP3 server???
+There are basically two ways to use this. You can use whatever mail account is configured on your device and just send mail to your **mail2file** instance, given that port 25 is reachable and you have a DNS entry set up. But what if you don't want to relay your attachments through another mail server? What if you're sending mail from the same LAN the server is hosted on? It would be rather stupid to relay huge attachments to some mail server on the internet and then back home. To use the **mail2file** server directly, you need to configure a new mail account in you mail client, directly using your **mail2file** instance. But most mail clients want a way to *retrieve* mail too if you set up an account, and ask for a IMAP or POP3 server. So **mail2file** contains an even dumber POP3 server that is just good enough to satisfy your average mail client by pretending you have a mailbox that's completely empty. So you set up your mail client with your **mail2file** host name as SMTP and POP3 servers, using any credentials you want, and you're ready to go.
+I'm using it at home this way, with a Let's Encrypt cert and then a dnsmasq entry for the dyndns hostname that points to the server's LAN IP address, so I can reach it properly from within my home network.
+
+## open relay! danger! you're using PHP so you don't know what you're doing!
+No U! **mail2file** doesn't contain any code to *send* email, so I'd like to see how you can abuse this to send spam. I guess using the exec filter you can actually turn this into a *sending* SMTP server, as well as a dozen other security nightmares, but that's a whole different story. As it stands, the RCPT TO address is just metadata to **mail2file** which can be evaluated in filter rules.
+
+## but really, security
+Use this wisely. By using a scripting language a couple of bug classes have been ruled out from the start, but in general try to think first when using this, especially the exec filter. Don't run it as root on a system that hasn't been patched for three years.
+Add a new user for it, use the sample systemd service file from `stuff/` as a starting point.
+This has been cobbled together in a weekend; I actually spent two more weekends implementing the configurable filter system, as the first version had everything hard-coded, which got annoying fast.
+
+## TODO
+Too much to write down right now.

autoloader.inc.php

@@ -0,0 +1,6 @@
+<?php
+
+spl_autoload_register(function($class) {
+   $file = 'inc/' . strtolower(preg_replace('#^.*[/\\\\]#', '', $class)) . '.inc.php';
+   if (file_exists($file)) require_once $file;
+});

inc/abstractsocket.inc.php

@@ -0,0 +1,56 @@
+<?php
+
+abstract class AbstractSocket
+{
+   
+   private static $runningId = 0;
+   
+   /**
+    * @var int an ID for this very socket, which you can use as an array key
+    */
+   protected $tag;
+   /**
+    * @var SocketEvent callback
+    */
+   protected $callback;
+   
+   public function __construct(SocketEvent $callback)
+   {
+      $this->tag = ++self::$runningId;
+      $this->callback = $callback;
+   }
+   
+   public final function __clone()
+   {
+      trigger_error('Cannot clone a socket', E_USER_ERROR);
+      throw new ErrorException('Cannot clone socket');
+   }
+   
+   public function setCallback(SocketEvent $callback)
+   {
+      $this->callback = $callback;
+   }
+   
+   /**
+    * @return int this socket's unique tag/ID
+    */
+   public function tag() : int
+   {
+      return $this->tag;
+   }
+   
+   public abstract function sendData(string $data) : bool;
+   
+   public abstract function close(): void;
+   
+   public abstract function wantsWrite(): bool;
+   
+   public abstract function writeHandle();
+   
+   public abstract function readHandle();
+   
+   public abstract function isDead() : bool;
+   
+   public abstract function __socket_event(int $what): void;
+   
+}

inc/execfilter.inc.php

@@ -0,0 +1,72 @@
+<?php
+
+class ExecFilter extends StoreFilter implements SocketEvent
+{
+   
+   /** @var bool delete file after process exits? */
+   private $delete;
+   /** @var string[] command to execute */
+   private $cmd;
+   
+   public function __construct($action, \MailData $data)
+   {
+      $this->delete = $action['delete'] ?? true;
+      $this->cmd = $action['cmd'] ?? false;
+      if ($this->cmd === false)
+         return;
+      if (strpos(implode(' ', $action['cmd']), '%TEMPFILE%') !== false) {
+         $this->filePath = tempnam('/tmp', 'm2f-');
+         if ($this->filePath !== false) {
+            $this->fh = fopen($this->filePath, 'wb');
+         }
+         foreach ($this->cmd as &$item) {
+            $item = str_replace('%TEMPFILE%', $this->filePath, $item);
+         }
+      }
+      $rep = ['%DATE%' => date('Y-m-d')];
+      foreach (get_object_vars($data) as $k => $v) {
+         $rep['%' . strtoupper($k) . '%'] = $v;
+      }
+      foreach ($this->cmd as &$item) {
+         $item = str_replace(array_keys($rep), array_values($rep), $item);
+      }
+   }
+   
+   public function finished()
+   {
+      parent::finished();
+      if ($this->cmd !== false) {
+         new Process($this, $this->cmd);
+      }
+   }
+
+   public function connected(\AbstractSocket $sock) { }
+
+   public function dataArrival(\AbstractSocket $sock, string $data)
+   {
+      Log::info("EXEC({$this->tag()}): " . substr(str_replace(["\r", "\n"], ' ', $data), 0, 60));
+   }
+
+   public function incomingConnection(\Socket $sock, \Socket $new) { }
+
+   public function sendProgress(\AbstractSocket $sock, int $sent, int $remaining) { }
+
+   public function socketClosed(\AbstractSocket $sock)
+   {
+      Log::info("ExecFilter process finished successfully");
+      if ($this->delete && !empty($this->filePath)) {
+         unlink($this->filePath);
+         $this->filePath = false;
+      }
+   }
+
+   public function socketError(\AbstractSocket $sock, $error)
+   {
+      Log::info("ExecFilter process exited with error $error");
+      if ($this->delete && !empty($this->filePath)) {
+         unlink($this->filePath);
+         $this->filePath = false;
+      }
+   }
+
+}

inc/filter.inc.php

@@ -0,0 +1,52 @@
+<?php
+
+abstract class Filter
+{
+
+	private static $rules = [];
+
+	public static function load()
+	{
+		self::$rules = [];
+		foreach (glob('rules.d/*.inc.php') as $file) {
+			$rule = include($file);
+			if (!is_array($rule) || !isset($rule['action'])) {
+				Log::warn("Rule without action: $file");
+				continue;
+			}
+			if (isset($rule['filter']) && !is_callable($rule['filter'])) {
+				Log::warn("Rule filter not callable: $file");
+				continue;
+			}
+			self::$rules[basename($file)] = $rule;
+		}
+	}
+
+	public static function get(MailData $data)
+	{
+		$return = [];
+		foreach (self::$rules as $file => $rule) {
+			if (isset($rule['filter']) && !$rule['filter']($data, array_keys($return)))
+				continue;
+         $class = $rule['action'] . 'Filter';
+         if (class_exists($class)) {
+            $return[$file] = new $class($rule['options'], $data);
+         } else {
+            Log::warn("Filter Type $class not found");
+         }
+		}
+		return $return;
+	}
+
+	/*
+	 *
+	 */
+
+	public abstract function __construct($action, MailData $data);
+
+	public abstract function feed(string $chunk);
+
+	public abstract function finished();
+
+
+}

inc/log.inc.php

@@ -0,0 +1,65 @@
+<?php
+
+class Log
+{
+   
+   const DEBUG = 3;
+   const INFO = 2;
+   const WARNING = 1;
+   const ERROR = 0;
+	
+	private static $lastDay;
+   
+   private static $level = 0;
+	
+	public static function debug($text)
+	{
+      if (self::$level < self::DEBUG)
+         return;
+		self::output('[DEBUG] ', $text);
+	}
+   
+	public static function info($text)
+	{
+      if (self::$level < self::INFO)
+         return;
+		self::output('[INFO] ', $text);
+	}
+	
+	public static function warn($text)
+	{
+      if (self::$level < self::WARNING)
+         return;
+		self::output('[WARN] ', $text);
+	}
+	
+	public static function error($text)
+	{
+		self::output('[ERROR] ', $text);
+	}
+   
+   public static function setLogLevel($level)
+   {
+      self::$level = $level;
+   }
+
+	private static function output($prefix, $text)
+	{
+		if (LOG_WITH_TIME) {
+			if (date('d') !== self::$lastDay) { // New day?
+				echo '############################# ', date('d.m.Y'), " #############################\n";
+				self::$lastDay = date('d');
+			}
+			echo '[', date('H:i:s'), '] ', $prefix, $text, "\n";
+		} else {
+			echo $prefix, $text, "\n";
+		}
+	}
+
+}
+
+if (posix_isatty(STDOUT)) {
+	define('LOG_WITH_TIME', true);
+} else {
+	define('LOG_WITH_TIME', false);
+}

inc/maildata.inc.php

@@ -0,0 +1,25 @@
+<?php
+
+/**
+ * Information about incoming mail, or
+ * part of a multi-part mime mail.
+ */
+class MailData
+{
+   
+   public $from = '';
+   
+   public $to = '';
+   
+   public $subject = '';
+   
+   public $fileName = '';
+   
+   public $srcAddr = '';
+   
+   public function __construct(string $srcAddr)
+   {
+      $this->srcAddr = preg_replace(['/:\d+$/', '/\]\[/'], '', $srcAddr);
+   }
+
+}