dennii/UltyScan
1
0
Fork 0
mirror of https://github.com/DeNNiiInc/UltyScan.git synced 2026-04-17 18:26:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add security warnings

Browse Source
This commit is contained in:
DeNNiiInc
2026-01-01 22:28:32 +11:00
parent ebfac8de92
commit 7ae9491feb
3 changed files with 69 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
README.md
View File

@@ -55,7 +55,17 @@ Open your browser and navigate to:
http://<SERVER_IP>/ultyscan/ http://<SERVER_IP>/ultyscan/
``` ```
### Features ### Security Warning ⚠️
> [!CAUTION]
> **THIS UTILITY RUNS WITH ROOT PRIVILEGES.**
>
> 1. **DO NOT** expose the Web Interface directly to the public internet.
> 2. **DO NOT** run this on a server running other critical services.
> 3. **ALWAYS** use a VPN or SSH Tunnel (e.g. `ssh -L 8888:localhost:8888 user@server`) to access the interface.
> 4. The default install creates a `www-data` sudoer entry allowing execution of critical commands.
## Features
| Tab | Description | | Tab | Description |
|-----|-------------| |-----|-------------|

4
install.sh
View File

@@ -548,6 +548,10 @@ echo ""
echo -e "$OKRED[>]$RESET Done! $RESET" echo -e "$OKRED[>]$RESET Done! $RESET"
echo -e "$OKRED[>]$RESET To run from command line, type 'sniper'! $RESET" echo -e "$OKRED[>]$RESET To run from command line, type 'sniper'! $RESET"
echo "" echo ""
echo -e "$OKRED[!] SECURITY WARNING: THIS UTILITY RUNS WITH ROOT PRIVILEGES$RESET"
echo -e "$OKRED[!] DO NOT EXPOSE THIS WEB INTERFACE DIRECTLY TO THE INTERNET$RESET"
echo -e "$OKRED[!] USE A VPN OR SSH TUNNEL FOR ACCESS$RESET"
echo ""
echo -e "$OKBLUE============================================$RESET" echo -e "$OKBLUE============================================$RESET"
echo -e "$OKGREEN ULTYSCAN WEB INTERFACE$RESET" echo -e "$OKGREEN ULTYSCAN WEB INTERFACE$RESET"
echo -e "$OKBLUE============================================$RESET" echo -e "$OKBLUE============================================$RESET"

7
webui/index.php
View File

@@ -390,8 +390,11 @@
Loot Directory: <code style="color: var(--accent-primary);">/usr/share/sniper/loot/workspace</code> Loot Directory: <code style="color: var(--accent-primary);">/usr/share/sniper/loot/workspace</code>
</p> </p>
</div> </div>
</div>
</div> <!-- Security Warning -->
<div style="text-align: center; margin-top: 2rem; padding: 1rem; border-top: 1px solid var(--border-color); color: var(--accent-danger);">
<p style="margin-bottom: 0.5rem; font-weight: 500;">⚠️ SECURITY WARNING</p>
<p style="font-size: 0.9rem; opacity: 0.8;">This utility runs with ROOT privileges. Do NOT expose this interface directly to the internet.<br>Use a VPN or SSH tunnel (e.g. localhost:8888) for access.</p>
</div> </div>
<script src="assets/script.js"></script> <script src="assets/script.js"></script>