#!/bin/bash
echo Content-type: text/html
echo

echo "<H1>HTTP/HTTPS server variable dump</H1>"
echo "These are the variables specific for this connection to this HTTP server."

echo "<H3>Connection-relevant variables</H3><PRE>"
set|grep ^REMOTE_
set|grep ^SERVER_|grep -v SERVER_AD|grep -v SERVER_SIGNATURE
echo "</PRE>"
echo

echo "<H3>HTTP relevant variables</H3><PRE>"
set|grep ^HTTP_
set|grep ^QUERY_STRING
set|grep ^REQUEST_
set|grep ^SCRIPT_NAME
echo "</PRE>"
echo

#skip if there are no SSL variables
if [ "$SSL_CIPHER" != "" ]; then
echo "<H3>SSL relevant variables</H3>"
echo "<SMALL>See description here:"
echo "<A HREF=\"http://webauthv3.stanford.edu/manual/mod/mod_ssl.html\">http://webauthv3.stanford.edu/manual/mod/mod_ssl.html</A></SMALL><PRE>"
if [ "$SSL_CIPHER_EXPORT" == "true" ]; then
  echo "***************************** WARNING ********************************"
  echo "Your browser has a government-castrated export version of SSL engine."
  echo "Its maximum key length is drastically limited, and very easy to crack."
  echo "You may strongly consider upgrading your browser or its SSL engine."
  echo "***************************** WARNING ********************************"
fi
set|grep ^SSL_|grep -v ^SSL_SERVER_CERT=|grep -v ^SSL_SERVER_CERTIFICATE=|grep -v ^SSL_CLIENT_CERT=|grep -v ^SSL_CLIENT_CERTIFICATE=
if [ "$SSL_SERVER_CERT" != "" ]; then
  echo ""
  echo "<B>SSL_SERVER_CERT</B> (PEM-encoded)"
  echo "$SSL_SERVER_CERT"
fi
if [ "$SSL_CLIENT_CERT" != "" ]; then
  echo ""
  echo "<B>SSL_CLIENT_CERT</B> (PEM-encoded)"
  echo "$SSL_CLIENT_CERT"
fi
echo "</PRE>"
echo
fi