Info | Register | Login | List of hosted sites | FAQ
'; if($_SERVER['REQUEST_METHOD']==='POST'){ $ok=true; $onion=''; $public=0; $php=0; $autoindex=0; $hash=''; $priv_key=''; if($error=check_captcha_error()){ echo "$error
"; $ok=false; }elseif(empty($_POST['pass'])){ echo 'Error: password empty.
'; $ok=false; }elseif(empty($_POST['passconfirm']) || $_POST['pass']!==$_POST['passconfirm']){ echo 'Error: password confirmation does not match.
'; $ok=false; }elseif(empty($_POST['username'])){ echo 'Error: username empty.
'; $ok=false; }elseif(preg_match('/[^a-z0-9\-_\.]/', $_POST['username'])){ echo 'Error: username may only contain characters that are in the rage of a-z (lower case) - . _ and 0-9.
'; $ok=false; }elseif(strlen($_POST['username'])>50){ echo 'Error: username may not be longer than 50 characters.
'; $ok=false; }else{ $stmt=$db->prepare('SELECT null FROM users WHERE username=?;'); $stmt->execute([$_POST['username']]); if($stmt->fetch(PDO::FETCH_NUM)){ echo 'Error: this username is already registered.
'; $ok=false; } } if($ok){ if(isset($_REQUEST['private_key']) && !empty(trim($_REQUEST['private_key']))){ $priv_key = trim($_REQUEST['private_key']); $data = private_key_to_onion($priv_key); $onion = $data['onion']; if(!$data['ok']){ echo "$data[message]
"; $ok = false; } else { $check=$db->prepare('SELECT null FROM onions WHERE onion=?;'); $check->execute([$onion]); if($check->fetch(PDO::FETCH_NUM)){ echo 'Error onion already exists.
'; $ok = false; } } }else{ $check=$db->prepare('SELECT null FROM onions WHERE onion=?;'); do{ $data = generate_new_onion(2); $priv_key = $data['priv_key']; $onion = $data['onion']; $check->execute([$onion]); }while($check->fetch(PDO::FETCH_NUM)); } if(isset($_POST['public']) && $_POST['public']==1){ $public=1; } if(isset($_POST['php'])){ foreach(PHP_VERSIONS as $key=>$version){ if($_POST['php']===$version){ $php=$key; break; } } } if(isset($_POST['autoindex']) && $_POST['autoindex']==1){ $autoindex=1; } $priv_key=trim(str_replace("\r", '', $priv_key)); $hash=password_hash($_POST['pass'], PASSWORD_DEFAULT); } $check=$db->prepare('SELECT null FROM users WHERE dateadded>?;'); $check->execute([time()-60]); if($ok && $check->fetch(PDO::FETCH_NUM)){ echo 'To prevent abuse a site can only be registered every 60 seconds, but one has already been registered within the last 60 seconds. Please try again.
'; $ok=false; }elseif($ok){ $stmt=$db->prepare('INSERT INTO users (username, system_account, password, dateadded, public, php, autoindex, mysql_user) VALUES (?, ?, ?, ?, ?, ?, ?, ?);'); $stmt->execute([$_POST['username'], "$onion.onion", $hash, time(), $public, $php, $autoindex, "$onion.onion"]); $user_id = $db->lastInsertId(); $stmt=$db->prepare('INSERT INTO mysql_databases (user_id, mysql_database) VALUES (?, ?);'); $stmt->execute([$user_id, $onion]); $stmt=$db->prepare('INSERT INTO onions (user_id, onion, private_key, version) VALUES (?, ?, ?, ?);'); $stmt->execute([$user_id, $onion, $priv_key, 2]); $create_user=$db->prepare("CREATE USER ?@'%' IDENTIFIED BY ?;"); $create_user->execute(["$onion.onion", $_POST['pass']]); $db->exec("CREATE DATABASE IF NOT EXISTS `$onion`;"); $stmt=$db->prepare("GRANT ALL PRIVILEGES ON `$onion`.* TO ?@'%';"); $stmt->execute(["$onion.onion"]); $db->exec('FLUSH PRIVILEGES;'); $stmt=$db->prepare('INSERT INTO new_account (user_id, password) VALUES (?, ?);'); $stmt->execute([$user_id, get_system_hash($_POST['pass'])]); if(EMAIL_TO!==''){ $title="A new hidden service $onion has been created"; $msg="A new hidden service http://$onion.onion has been created"; $headers="From: www-dataYour onion domain $onion.onion has successfully been created. Please wait up to one minute until the changes have been processed. You can then login here.
"; } } echo ''; echo '';