Subversion Repositories cms

#!/usr/bin/perl

# ---------------------------------------------------------------------- #

# Copyright: (C) 2002 Leader.IT S.r.l. <http://leader.it>

# Authors: Guido Brugnara <gdo@leader.it>

#

# $Revision: 16 $

# ---------------------------------------------------------------------- #

#

# richiamata da samba ad ogni connessione della share 'netlogon'

# tipicamente viene chiamata ad ogni connessione o quando l'utente

# dovesse accedervi manualmente

#

require 5.002;

open STDERR, ">>/var/log/samba_netlogon.log" || die "Errore [$!] apertura file '/var/log/samba_netlogon.log'\n";

$Mode = shift;

$User = shift;

$Group = shift;

$Luser = shift;

$Machine = shift; 

$IPmachine = shift; 

$Server = shift;

$Platform = shift; ## O.S. platform: Win95 Win2k ...

# flag installazione poweroff (alpha stage)

$inst_poweroff=0;

$reboot_poweroff=0;

# flag lancio vnc su tutti gli utenti

$startVnc = 1;

$startVncAll = 1;

$startVncDelay = 0;

$startBrowseDelay = 0;

# TIMEOUT controllo stato di Logon in 1/10 di secondi

$CheckTimeoutStart=1200;

$CheckTimeoutContinue=400;

# orario per i log

my($sec,$min,$hour,$mday,$mon,$year,$wday,$yday,$isdst) = localtime(time);

my $time = sprintf("%04d/%02d/%02d %02d:%02d:%02d.%03d", 1900+$year, $mon+1, $mday, $hour, $min, $sec, $2);

my $DEBUG=1;

umask '0007';

use POSIX 'setsid';

use IO::Select;

use IO::Socket::INET;

my $samba_group = getgrnam('samba');

# =============================================================== SHARE

if($Machine eq $Server){

  # create share if not exist

  # usata per l'autenticazione di squid

  if( ! -d "/home/samba/machine/$IPmachine"){

    new_dir("/home/samba/machine/$IPmachine", 0750);

    symlink "/etc/samba/addons/proxyauth",  "/home/samba/machine/$IPmachine/proxyauth";

  }

  $DEBUG && warn "calling machine is server $Server\n";

  exit 0;

}

# create share if not exist

if( ! -d "/home/samba/machine/$IPmachine"){

  new_dir("/home/samba/machine/$IPmachine", 0750);

  new_dir("/home/samba/machine/$IPmachine/.system", 0750);

  symlink "/etc/samba/addons/config.reg", "/home/samba/machine/$IPmachine/.system/.config.reg";

  new_dir("/home/samba/machine/$IPmachine/.system/.logs", 0730);

}

# individuo indirizzo IP del Server

$NET=$IPmachine;

$NET=~s/\.(\d+)$/./;

open IFCONFIG, "ifconfig |";

while(<IFCONFIG>){

  ### inet addr:192.168.8.120  Bcast:192.168.8.255  Mask:255.255.255.0

  if(m/inet addr:(\d+\.\d+\.\d+\.\d+)\s+Bcast:$NET/){

    $IP_SERVER=$1;

    last;

  }  

}

close IFCONFIG;

($IP_SERVER) || die "No server IP on network $NET\n";

# individuo indirizzo IP del Server

#use Net::DNS;

#my $res = new Net::DNS::Resolver;

#my $query = $res->search($Server);

#if($query){

#  foreach my $rr ($query->answer) {

#    next unless $rr->type eq "A";

#    $IP_SERVER=$rr->address;

#    last;

#  }

#}else{

#  print STDERR "no dns\n";

#  die "query failed: ", $res->errorstring, "\n";

#}

# =============================================================== SQL CONNECTION

use DBI;

my $dbh = DBI->connect('dbi:Pg:dbname=cms;host=localhost', 'cms', 'cmsutil') || die "DBI Error open database: ".DBI::errstr."\n";

$dbh->{RaiseError} = 1;

$dbh->{InactiveDestroy} = 1;

$dbh->{AutoCommit} = 1;

$dbh->do('set DateStyle to SQL, EUROPEAN');

# =============================================================== LOAD DATA

my $sthloadip = $dbh->prepare("select pcname, pcstatus, usrid, id, osversion  from classlayout where pcip = ? and pcstatus != 'PCBLANK'");

my $sthloaduser = $dbh->prepare("select pcname, pcstatus, pcip from classlayout where usrid = ? and pcstatus != 'PCBLANK'");

my $sthuser = $dbh->prepare('select profile from usr where id=?');

my $sthipteacher = $dbh->prepare("select class.id as class,cl1.id as site,ipteacher from class,classlayout as cl1, classlayout as cl2 where ipteacher=cl1.pcip and cl1.id=cl2.id and cl2.pcip=?");

my $sthuserroom = $dbh->prepare("select class.id as class, classlayout.id as roomteacher, cl.id as room, classlayout.pcname as pcteacher, class.ipteacher as ipteacher from class,classlayout,usrclass,classlayout as cl where classlayout.pcip=class.ipteacher and class.id=usrclass.classid and usrclass.usrid=? and cl.pcip=? and (classlayout.id=cl.id or cl.id=class.classroompersistent)");

# =============================================================== UPDATE DATA

my $sthupdate = $dbh->prepare('update classlayout set pcname = ?, pcstatus = ?, usrid = ?, connect = ?  where pcip = ?');

my $sthstatus = $dbh->prepare('update classlayout set pcstatus = ? where pcip = ?');

my $sthosversion = $dbh->prepare('update classlayout set osversion = ? where pcip = ?');

sub copy_file($$$){

  my($source, $dest, $perm)=@_;

  # copio il file

  system 'cp', $source, $dest;

  chmod $perm, $dest;

  chown 0, $samba_group, $dest;

}

sub new_dir($$){

  my($name,$perm)=@_;

  mkdir $name;

  chmod $perm, $name;

  chown 0, $samba_group, $name;  

}

# delete previous file

my $LOG="/home/samba/machine/$IPmachine/.system/.logs/.$IPmachine.log";

if(-f $LOG){

  unlink $LOG;

}

my $STARTUP="/home/samba/machine/$IPmachine/.system/.startup.bat";

my $LOGON="/home/samba/machine/$IPmachine/.system/.logon.bat";

# if(-f $LOGON){

#    unlink $LOGON;

#  }

#  if(-f $STARTUP){

#    unlink $STARTUP;

#  }

my $OTU="/home/samba/machine/$IPmachine/.system/.otu.exe";

my $POWEROFF="/home/samba/machine/$IPmachine/.system/.poweroff.exe";

if( $Mode eq '-preexec'){

  $DEBUG && print STDERR "preexec $IPmachine $User $Machine $time $Platform\n";

  # link <group>.POL to CONFIG.POL

  my $configpol = "/home/samba/machine/$IPmachine/CONFIG.POL";

  unlink $configpol;

  if( -f "/etc/samba/addons/$User.pol"){

    symlink "/etc/samba/addons/$User.pol", $configpol; 

  }else{

    if( -f "/etc/samba/addons/$Group.pol"){

      symlink "/etc/samba/addons/$Group.pol", $configpol;

    }else{

      # standard CONFIG.POL

      symlink "/etc/samba/addons/config.pol", $configpol;

    }

  }

  # profilo utente

  $sthuser->execute($User);

  my($UserProfile) = $sthuser->fetchrow_array;

  $DEBUG && print STDERR "user '$User' with profile '$UserProfile'\n";

  # verifico se c'è già un utente connesso con lo stesso login

  $sthloadip->execute($IPmachine);

  my @rowip = $sthloadip->fetchrow_array;

  if(@rowip){

    my($pcname, $pcstatus, $usrid, $id, $osversion)=@rowip;

    # esiste il record

    if($usrid eq $User && $pcstatus eq 'PCLOGON' ){

      # utente gia connesso su quella stessa macchina

      $DEBUG && print STDERR "preexec: user $User already connected on same machine $pcname\n";

      exit;

    }else{

      if(lc $UserProfile eq 'student'){

        # verifico se l'utente è realmente connesso sul PC di indirizzo IP

        $sthloaduser->execute($User); # select pcname, pcstatus, pcip from classlayout where usrid = ?

        while(my @rowuser = $sthloaduser->fetchrow_array){

          my($pcname2, $pcstatus2, $pcip2)=@rowuser;

          if($pcip2 ne $IPmachine){

            # utente probabilmente gia allocato su altro PC

            # verifico se la connessione è ancora attiva

            my $newstatus = &status_machine($pcip2);

            # aggiorno il record relativo

            my $newuser = $User;

            if($newstatus ne 'PCLOGON' && $newstatus ne 'ERROR'){

              $sthupdate->execute($pcname2, $newstatus, '', undef, $pcip2);

            }

            if($newstatus eq 'PCLOGON'){

              $DEBUG && print STDERR "preexec: utente studente $User già connesso in $rowuser[0] ip:$pcip2\n";

              $sthupdate->execute($Machine, 'PCON', $User, $undef, $IPmachine);

              my $action='logoff';

              if($osversion =~ m/ 95| 98| Millennium/i){

                $action=undef;

              }

              &message_machine($IPmachine, $action, "utente studente $User già connesso su PC $pcname2");

              exit 1;

            }

          }

        }

      }  

      # aggiorno il record

      $sthupdate->execute($Machine, 'PCLOGIN', $User, $date.' '.$time, $IPmachine);

    }

  }else{

    # richiesta di connessione da host non riconosciuto

    if($Group ne 'admin'){

      # se la login è di un utente diverso da tecnico non accetto ...

      $DEBUG && print STDERR "preexec: richiesta connessione da host '$IPmachine' sconosciuto\n";

      $sthupdate->execute($Machine, 'PCON', $User, $undef, $IPmachine);

      exit 1;

    }

  }

  # verifico se l'utente studente connesso sta connettendosi nella stessa aula del docente oppure dall'aula permanente

  if(lc $UserProfile eq 'student'){

    # devo consultare le classi a cui appartiene l'utente e individuare la classe attiva di appartenenza

    # verifico che l'indirizzo IP sia nella stessa aula

    $sthuserroom->execute($User,$IPmachine);

    my @rowip = $sthuserroom->fetchrow_array;

    if(@rowip){

      my($class, $roomteacher, $room, $pcteacher, $ipteacher)=@rowip;

      $DEBUG && print STDERR "preexec: richiesta connessione utente $User da $IPmachine accettata ".

                             "(classe $class, aula $room; docente da pc $pcteacher:$ipteacher, aula $roomteacher)\n";

    }else{

      $DEBUG && print STDERR "preexec: richiesta connessione utente $User da $IPmachine rifiutata; nessuna classe attiva o persistente\n";

      exit 1;

    }

  }

  open LOG, ">$LOG" || die "Errore [$!] apertura file '$LOG'\n"; 

  close LOG;

  chmod 0660, $LOG;

  chown 0, $samba_group, $LOG;

  # creo file otu.exe per il controllo remoto e per avere un file aperto che occupi la share [netlogon]

  if( ! -f $OTU){

    # copio l'eseguibile otu.exe

    symlink "/opt/cms/lib/otu.exe", $OTU;

  }

  # creo/aggiorno il file di logon 

  # Windows XP non esegue lo startup indicato nelle policy; lo eseguo invece dallo script di logon

  open CMD, ">$LOGON" || die "Errore [$!] apertura file '$LOGON'\n";

#  print CMD "net use P: /HOME /YES\r\n";

  print CMD "net use H: \\\\$Server\\HOME /YES\r\n";

  print CMD "net use N: \\\\$Server\\NETLOGON /YES\r\n";

  if($Platform =~ m/Win2k/i ){

    print CMD "start N:\\.system\\.startup.bat\r\n";

    $startVnc=0; # disabilito il lancio di VNC dal Server

  }

  close CMD;

  # permessi file di logon

  chmod 0660, $LOGON;

  chown 0, $samba_group, $LOGON;

  # creo/aggiorno il file di startup che verrà eseguito dal PC client

  open CMD, ">$STARTUP" || die "Errore [$!] apertura file '$STARTUP'\n";;

  print CMD <<__CMD__;

\@ECHO OFF\r

REM net use N: \\\\$Server\\netlogon /YES\r

REM start N:\\.system\\.otu.exe -h 1 -p 50001 -a $IP_SERVER\r

REM net use P: /HOME /YES\r

REM net use S: \\\\$Server\\segreteria /YES\r

regedit /S N:\\.system\\.config.reg\r

ver >N:\\.system\\.logs\\.$IPmachine.log\r

__CMD__

  if($Platform !~ m/Win2k/i ){

    print CMD "net time \\\\$Server >>N:\\.system\\.logs\\.$IPmachine.log\r\n";

  }

  print CMD <<__CMD__;

if "\%OS\%" == "Windows_NT" goto NT\r

net config /Y >>N:\\.system\\.logs\\.$IPmachine.log\r

goto END\r

:NT\r

net config Workstation /Y >>N:\\.system\\.logs\\.$IPmachine.log\r

:END\r

REM echo logon $IPmachine $$ >>N:\\.system\\.logs\\.$IPmachine.log\r

__CMD__

  # riga che verrà intercettata nella fase finale del logon

  print CMD "echo logon $IPmachine $$ >>N:\\.system\\.logs\\.$IPmachine.log\r\n";

  if($inst_poweroff){

    # verifico se è attivo poweroff (utilizzato per controllare lo spegnimento o reboot del PC)

    # apertura connessione con il PC

    my $sock = IO::Socket::INET->new(PeerAddr => $IPmachine,

                                 PeerPort => 50000,   

                                 Proto    => 'tcp',  

                                 Timeout => 15 );

    if($sock){

      my $sel = new IO::Select($sock);

      # leggo il canale con un timeout di 5 secondi

      my @ready = $sel->can_read(5);

      if(@ready){

        my $sh = pop @ready;

        my $R = <$sh>;

        if($R =~ m/^201 Welcome to Poweroff 3\.0\.0\.12 created by Jorgen Bosman \(cms path\)$/i){

          print $sock "quit\n";

          my @ready = $sel->can_read(0.5);

        }

      }else{

        $DEBUG && print STDERR "Timeout error on poweroff port\n";

      }

      close($sock);

    }else{

      $DEBUG && print STDERR "no poweroff active\n";

      if( ! -f $POWEROFF){

        # copio l'eseguibile poweroff.exe

        symlink "/opt/cms/lib/poweroff.exe", $POWEROFF;

      }

      # provvedo all'installazione del servizio

      print CMD <<__CMD__;

echo install poweroff >>N:\\.system\\.logs\\.$IPmachine.log\r

REM start N:\\.system\\.poweroff.exe -allow_remote -notray -nocancel -force -remote_port 50000 -remote_pswd test -run -quiet -create_service >>N:\\.system\\.logs\\.$IPmachine.log\r

__CMD__

      if($reboot_poweroff){

        print CMD <<__CMD__;

start N:\\.system\\.poweroff.exe reboot -warn -msg "Reboot per installazione Controllo Classi" -force -warntime 10 -nocancel -scheduled -seconds 4 -quiet >>N:\\.system\\.logs\\.$IPmachine.log\r

__CMD__

      }

    }

  }

#

  $sthipteacher->execute($IPmachine);

  my @rowt = $sthipteacher->fetchrow_array;

  my($CLASSNAME, $SITE, $IP_TEACHER)=@rowt;

  $IP_TEACHER || ($IP_TEACHER='127.0.0.1');

  $listgroups = `/usr/bin/groups $User`;

  chomp $listgroups;

  $listgroups .= ' ';

  $listgroups =~ s/.*://;

  if(lc $UserProfile ne 'student'){

    # verifico che l'utente abbia il gruppo 'cupsadm'  

    if($listgroups !~ m/ cupsadm /){

      $listgroups =~ s/^\s+//;

      $listgroups=~s/ /,/g;

      $listgroups.='cupsadm';

      $DEBUG && warn "/usr/sbin/usermod -G '$listgroups' $User\n";

      `/usr/sbin/usermod -G '$listgroups' $User`;

    }

  }else{

    # verifico che lo studente non abbia il gruppo 'cupsadm'

    if($listgroups =~ m/ cupsadm /){

      $listgroups =~ s/ cupsadm //;

      $listgroups =~ s/^\s+//;

      $listgroups =~ s/\s+$//;

      $listgroups =~ s/ /,/g;

      $DEBUG && warn "/usr/sbin/usermod -G '$listgroups' $User\n";

      `/usr/sbin/usermod -G '$listgroups' $User`;

    }

  }

  # verifico se installare VNC e con quale autorizzazioni di accesso

  if($startVnc && ($startVncAll || lc $UserProfile eq 'student') ){

    $DEBUG && print STDERR "run VNC opened from $IP_TEACHER\n";

    # preparo la copia del file da lanciare

    my $VNC="/home/samba/machine/$IPmachine/.system/.vnc";

    if(! -d "$VNC"){

      symlink "/opt/cms/lib/vnc", "/home/samba/machine/$IPmachine/.system/.vnc";

    }

    # genero il file da caricare con regedit

    my $VNCFILE="/home/samba/machine/$IPmachine/.system/.vnc.reg";

    open VNC, ">$VNCFILE" || die "Errore [$!] apertura file '$VNCFILE'\n";;

    print VNC <<__VNC__;

REGEDIT4\r

\r

[HKEY_LOCAL_MACHINE\\SOFTWARE\\ORL]\r

\r

[HKEY_LOCAL_MACHINE\\SOFTWARE\\ORL\\VNC]\r

\r

[HKEY_LOCAL_MACHINE\\SOFTWARE\\ORL\\VNC\\3.3.3]\r

\r

[HKEY_LOCAL_MACHINE\\SOFTWARE\\ORL\\WinVNC3]\r

"AuthRequired"=dword:00000000\r

"AuthHosts"="-:+$IP_SERVER:+$IP_TEACHER"\r

\r

[HKEY_LOCAL_MACHINE\\SOFTWARE\\ORL\\WinVNC3\\Default]\r

"AllowProperties"=dword:00000001\r

"AllowShutdown"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks]\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs]\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\CALC.EXE]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000000\r

"use_LButtonUp"=dword:00000000\r

"use_Deferral"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\CLOCK.EXE]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000001\r

"use_KeyPress"=dword:00000000\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000000\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\explorer.exe]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000000\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\fpxpress.exe]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\Ide.exe]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\iexplore.exe]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\MSDEV.EXE]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000000\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\mspaint.exe]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

"use_Deferral"=dword:00000001\r

\r

[HKEY_CURRENT_USER\\Software\\ORL\\VNCHooks\\Application_Prefs\\NOTEPAD.EXE]\r

"use_GetUpdateRect"=dword:00000001\r

"use_Timer"=dword:00000000\r

"use_KeyPress"=dword:00000001\r

"use_Deferral"=dword:00000001\r

"use_LButtonUp"=dword:00000001\r

__VNC__

    close VNC;

    chmod 0640, "/home/samba/machine/$IPmachine/.system/.vnc.reg";

    chown 0, $samba_group, "/home/samba/machine/$IPmachine/.system/.vnc.reg";

    print CMD "regedit /S N:\\.system\\.vnc.reg\r\n";

    if(!$startVncDelay){

      print CMD "start N:\\.system\\.vnc\\winvnc.exe -run\r\n";

    }

  }

  # se l'utente è un docente apro il browser sulla pagina di login dell'applicazione

  # non apro la pagina se il PC è Win2k (problemi rilevati su WinXP)

  if(!$startBrowseDelay && lc $UserProfile eq 'teacher' && $Platform !~ m/Win2k/i){

    print CMD "start http://$Server/cms/\r\n";

  }

  print CMD <<__CMD__;

echo . >>N:\\.system\\.logs\\.$IPmachine.log\r

start N:\\.system\\.otu.exe -h 1 -p 50001 -a $IP_SERVER\r

EXIT\r

__CMD__

  close CMD;

  chmod 0660, $STARTUP;

  chown 0, $samba_group, $STARTUP;

  # sgancio il processo padre e attendo il completamento del logon sul PC client

  open STDIN, '/dev/null' or die "Can't read /dev/null: $!";

  open STDOUT, '>/dev/null' or die "Can't write to /dev/null: $!";

  defined(my $pid = fork) or die "Can't fork: $!";

  if($pid){

    # processo padre

    exit 0;

  }

  setsid or die "Can't start a new session: $!";

  $DEBUG && print STDERR "Fork\n";

  # mi preparo a monitorare il file di log

  open SYNC, "<$LOG";

  seek(SYNC, 0, 0);

  my $curpos;

  my $Count=$CheckTimeoutStart;

  my $os_ver;

  LOOP: while($Count--){

    for ($curpos = tell(SYNC); $_ = <SYNC>; $curpos = tell(SYNC)){

      chop;

      $Count=$CheckTimeoutContinue;

      $DEBUG && print STDERR "READ $_\n";

      # salto righe vuote

      next if(m/^\s*$/);

      if(!$os_ver){

        $os_ver=$_;

      }

      if(!$os_ver){

        $os_ver='';

      }

      if(m/^logon (.+) (\d+)/){

        my $IP=$1;

        my $PID=$2;

        $DEBUG && print STDERR "detect $IP $PID\n";

        # verifico che l'informazione registrata durante la fase 'reexec' corrisponda

        $sthloadip->execute($IPmachine);

        my @rowip = $sthloadip->fetchrow_array;

        if(@rowip && $rowip[1] eq 'PCLOGIN'){

          # il Client ha terminato l'esecuzione dello script di logon; posso aggiornare il database

          # cambiando lo stato  

          $sthstatus->execute('PCLOGON', $IPmachine);

          $sthosversion->execute($os_ver, $IPmachine);

        }else{

          # sequenza non corretta; non accetto la connessione

          $DEBUG && print STDERR "logon: sequenza non corretta, $rowip[1] != PCLOGIN\n";

          $sthstatus->execute('PCERR', $IPmachine);

        }

        # se l'utente è un docente apro il browser sulla pagina di login dell'applicazione

        if($startBrowseDelay && lc $UserProfile eq 'teacher'){

          select(undef, undef, undef, 4);

          $DEBUG && print STDERR "lancio http://$Server/cms/\n";

          my $err=&call_client($IPmachine, "start http://$Server/cms/");

          $DEBUG && print STDERR "start http://$Server/cms/ err=$err\n";

        }

        # lancio vnc in ritardo qualche secondo ...

        if($startVncDelay && $startVnc && ($startVncAll || lc $UserProfile eq 'student')){

          select(undef, undef, undef, 15);

          $DEBUG && print STDERR "lancio vnc\n";

          my $err=&call_client($IPmachine, "N:\\.system\\.vnc\\winvnc.exe -run"); 

          $DEBUG && print STDERR "winvnc.exe err=$err\n";

        }

#        unlink $STARTUP, $LOG, $OTU, $POWEROFF;

        exit;

      }

    }

    select(undef, undef, undef, 0.1);

    seek(SYNC, $curpos, 0);

  }

#  unlink $STARTUP, $LOG, $OTU, $POWEROFF; 

  $sthstatus->execute('PCTIMEOUT', $IPmachine);

  print STDERR "Timeout read logon for user=$User IP=$IPmachine\n";

  exit;

}elsif( $Mode eq '-postexec'){

  $DEBUG && print STDERR "postexec $IPmachine -1 $User $Machine $time $Platform\n";

  # il Client ha terminato l'uso della share [netlogon]; posso aggiornare il database

  $sthupdate->execute($Machine, 'PCON', $User, undef, $IPmachine);

}else{

  close LOG;

  exit 1; 

}

close LOG;

# esecuzione remota di comandi

sub call_client{

  my $host = shift;

  my $cmd = join(' ',@_);

  $cmd || ($cmd='-');

  $DEBUG && print STDERR  "call_client '$host' with [$cmd]\n";

  return 1 if(!$host);

  my $sock = IO::Socket::INET->new(PeerAddr => $host,

                                 PeerPort => 50001,   

                                 Proto    => 'tcp',  

                                 Timeout => 4 );     

  if(!$sock){

    $DEBUG && print STDERR "\topen sock ($!)";

    if($! eq 'Connection refused'){

      return 2;

    }elsif($! eq 'No route to host'){

      return 3;

    }elsif($! eq 'Operation now in progress'){

      return 4;

    }else{

      return 5;

    }

  }  

  my $sel = new IO::Select($sock);

  print $sock "$cmd\n";  

  # leggo il canale con un timeout di 2 secondi

  my @ready = $sel->can_read(4);

  if(!@ready){

    close($sock);

    return 6;    

  }

  my $sh = pop @ready;

  my $ret = <$sh>;

  chomp $ret;

  close($sock);

  return 7 if $ret !~ m/OK/;

  return 0;

}

# verifica lo stato della macchina

# PCOFF PCON PCLOGON

sub status_machine($){

  my $IP=shift;

  # per determinare lo stato della connessione mi affido alla risposta del programma otu.exe

  # installato sul PC client

  my $status = &call_client($IP);

  if($status == 4){

    # ritento una seconda volta

    $status = &call_client($IP);

  }

  if($status eq '0'){

    $status = 'PCLOGON';

  }elsif($status eq '2'){

    $status = 'PCON';

  }elsif($status eq '3'){

    $status = 'PCOFF';

  }elsif($status eq '4'){

    $status = 'PCOFF';

  }else{

    $status = 'ERROR';

  } 

  $DEBUG && print STDERR "status_machine($IP)=$status\n";

  return $status;

}   

# visualizza un messaggio sul PC remoto  

sub message_machine($$$){

  my($host, $action, $mess)=@_;

  my $simulate;

  if($action){

    $simulate='off';

  }else{

    $simulate='on';

    $action='logoff';

  }

  my $sock = IO::Socket::INET->new(PeerAddr => $host,

                                 PeerPort => 50000,   

                                 Proto    => 'tcp',

                                 Timeout => 10 );

  return if(!$sock);

  my @dialog = (

        '/^201 Welcome to Poweroff 3\.0\.0\.12 created by Jorgen Bosman \(cms path\)$/i',

        'password test',

        '/^250 OK$/i',

        "action $action",

        '/^250 OK$/i',

        "simulate $simulate",

        '/^250 OK$/i',

        'runprg off',

        '/^250 OK$/i',

        "message $mess",

        '/^250 OK$/i',

        'wait 0', 

        '/^250 OK$/i',

        'warning on',

        '/^250 OK$/i',

        'warntime 5',

        '/^250 OK$/i',

        'doit',

        '/^250 OK$/i',

        'quit','/.*/i',

  );

  my $sel = new IO::Select($sock);

  my $Count=0;

  for(;;){

    # leggo il canale con un timeout di 2 secondi

    my @ready = $sel->can_read(2);

    if(!@ready){

      die "Timeout read from host";

    }

    my $sh = pop @ready;

    my $ret = <$sh>;

    chomp $ret;

    $ret =~ s/\r$//;

    $DEBUG && print STDERR "GET[$ret]\n";

    my $test;

    eval '$test =( $ret =~ '.$dialog[$Count].')';

    if($@){

      die "Error eval[$Count]: $@";

    }

    if($test){

      $Count++;

      last if($Count >= @dialog);

      my $cmd;

      $cmd = $dialog[$Count];

      $DEBUG && print STDERR "PUT[".$cmd."]\n";

      print $sock $cmd."\n";

      $Count++;

    }else{

      die "\nError row $Count: '$ret' don't match '$dialog[$Count]'\n";

    }

    last if($Count >= @dialog);

  }

  close($sock); 

}