/alcasar.sh |
---|
782,9 → 782,11 |
# Copy & adapt ACC files |
cp -rf $DIR_INSTALL/web/* $DIR_WEB/ |
$SED "s?99/99/9999?$DATE_SHORT?g" $DIR_ACC/menu.php |
$SED "s?\$DB_RADIUS = .*?\$DB_RADIUS = \"$DB_RADIUS\"\;?g" $DIR_ACC/welcome.php |
$SED "s?\$DB_USER = .*?\$DB_USER = \"$DB_USER\"\;?g" $DIR_ACC/welcome.php |
$SED "s?\$radiuspwd = .*?\$radiuspwd = \"$radiuspwd\"\;?g" $DIR_ACC/welcome.php |
# Waiting for new phpsysinfo special page |
#$SED "s?\$DB_RADIUS = .*?\$DB_RADIUS = \"$DB_RADIUS\"\;?g" $DIR_ACC/phpsysinfo/includes/xml/portail.php |
#$SED "s?\$DB_USER = .*?\$DB_USER = \"$DB_USER\"\;?g" $DIR_ACC/phpsysinfo/includes/xml/portail.php |
#$SED "s?\$radiuspwd = .*?\$radiuspwd = \"$radiuspwd\"\;?g" $DIR_ACC/phpsysinfo/includes/xml/portail.php |
#chmod 640 $DIR_ACC/phpsysinfo/includes/xml/portail.php |
chown -R apache:apache $DIR_WEB/* |
# copy & adapt "freeradius-web" files |
cp -rf $DIR_CONF/freeradius-web/ /etc/ |
/conf/fail2ban.sh |
---|
28,7 → 28,7 |
ignoreip = 127.0.0.1/8 |
# "bantime" is the number of seconds that a host is banned. |
bantime = 180 |
bantime = 300 |
# A host is banned if it has generated "maxretry" during the last "findtime" seconds. |
# Un client est banni s'il génere "maxretry" requêtes pendant "findtime" (en secondes) |
58,7 → 58,7 |
# but it will be logged as info. |
usedns = warn |
# Bannissement sur tous les ports après 3 refus du serveur WEB (tentative d'accès sur des pages inexistentes) |
# Bannissement sur tous les ports après 2 refus d'Apache (tentative d'accès sur des pages inexistentes) |
[alcasar_mod-evasive] |
#enabled = true |
67,7 → 67,7 |
filter = alcasar_mod-evasive |
action = iptables-allports[name=alcasar_mod-evasive] |
logpath = /var/log/lighttpd/access.log |
maxretry = 3 |
maxretry = 2 |
# Bannissement sur tout les ports après 3 refus de SSH (tentative d'accès par brute-force) |
[ssh-iptables] |
/scripts/alcasar-daemon.sh |
---|
62,7 → 62,7 |
echo "$nb_srv services needed by ALCASAR are started." |
fi |
if [ `lsmod|grep ^ipt_NETFLOW|wc -l` == 0 ] |
if [ `lsmod|grep ipt_NETFLOW|wc -l` == 0 ] |
then |
logger -t alcasar-daemon -i "ipt_netflow is inactive." |
echo "The Log system is disabled! try to know why (modprobe ipt_NETFLOW)" |
/CHANGELOG |
---|
8,9 → 8,9 |
- Add an additional BL : Malwares Command & Control servers (C&C) from "osint.bambenekconsulting.com/feeds/". Thanks to Sven RATH |
- Add IoT live capture (to detect private data leakage). Thanks to Dorian LEMOINE & Guillaume GELLUSSEAU |
ACC |
- "sysinfo" is displayed with "phpsysinfo 3.3.2" |
- sysinfo genrated by "phpsysinfo 3.3.2" |
- global flow statistics generated by "vnstat-dashboard" (instead of "vnstat-frontend") |
- Improve the process to import "official" and "Let's encrypt" certificates |
- choice between certificates (default / official / Let's encrypt) |
CHANGES |
- German translations have been updated. Thanks to Sven RATH |
- Improve RPMs controls at the installation stage |
/web/acc/welcome.php |
---|
File deleted |
/web/acc/menu.php |
---|
163,7 → 163,7 |
<div class="panel-row"> |
<div class="menu"> |
<ul> |
<li><div class="caret"></div><a href="welcome.php" target="REXY2"><?= $l_home ?></a></li> |
<li><div class="caret"></div><a href="phpsysinfo/" target="REXY2"><?= $l_home ?></a></li> |
<?php if ($right === 0): // admin ?> |
<li> |
<div class="caret"></div><a href="#"><?= $l_system ?></a> |
/web/acc/manager/vnstat.php |
---|
11,14 → 11,27 |
?> |
<!DOCTYPE html> |
<html> |
<head> |
<link rel="stylesheet" href="/css/style.css"> |
</head> |
<header> |
<link rel="stylesheet" href="htdocs/style.css"> |
</header> |
<body> |
<div class="panel"> |
<div class="panel-header"><?= $l_title ?></div> |
<iframe class="panel-iframe" src="vnstat/index.php"> |
</iframe> |
<table border=0 cellspacing=0 cellpadding=0 class="tableTopACC"> |
<tbody class="tbodyAcc" > |
<tr> |
<th class="thBasicACC"> |
<?php echo $l_title; ?> |
</th> |
</tr> |
</tbody> |
<tr bgcolor="#FFCC66" class="trSizeACC"> |
<td class="tdSizeACC"> |
<img src="/images/pix.gif" width="1" height="2"> |
</td> |
</tr> |
</table> |
<div > |
<iframe class="ACCiframe" src="vnstat/index.php"> |
</iframe> |
</div> |
</body> |
</html> |
/web/css/style.css |
---|
125,19 → 125,3 |
border: 1px solid black; |
overflow: auto; |
} |
.panel .panel-iframe |
{ |
height: 150vh; |
width: 100%; |
margin: 0px 0px 0px 0px ; |
padding: 0px 0px 0px 0px ; |
display: flex; |
border-left-style: solid; |
border-left-width: 1px; |
border-right-style: solid; |
border-top-style: solid; |
border-top-width: 1px; |
border-bottom-style: solid; |
border-bottom-width: 1px; |
border-right-width: 1px; |
} |
/web/password.php |
---|
1,8 → 1,9 |
<?php |
# $Id$ |
# |
# change user password on ALCASAR NAC |
# by ANGEL95 & Rexy |
# change user password on ALACASAR NAC |
# Copyright (C) 2003, 2004 Mondru AB. |
# Copyright (C) 2008-20017 ANGEL95 & REXY |
/**************************************************************** |
* GLOBAL FILE PATHS * |