BlueGrey
calm
Elegant
Català-Valencià – Catalan
中文 – Chinese (Simplified)
中文 – Chinese (Traditional)
Česky – Czech
Dansk – Danish
Nederlands – Dutch
English – English
Suomi – Finnish
Français – French
Deutsch – German
עברית – Hebrew
हिंदी – Hindi
Magyar – Hungarian
Bahasa Indonesia – Indonesian
Italiano – Italian
日本語 – Japanese
한국어 – Korean
Македонски – Macedonian
मराठी – Marathi
Norsk – Norwegian
Polski – Polish
Português – Portuguese
Português – Portuguese (Brazil)
Русский – Russian
Slovenčina – Slovak
Slovenščina – Slovenian
Español – Spanish
Svenska – Swedish
Türkçe – Turkish
Українська – Ukrainian
Oëzbekcha – Uzbek
Subversion Repositories
ALCASAR
(root)
/
web
/
acc
/
stat.php
– Rev 2138
Rev
Go to most recent revision
|
Hide changed files
|
Details
|
Compare with Previous
|
Blame
Filtering Options
From rev
To rev
Max revs
Search history for
Show All
Rev
Age
Author
Path
Log message
Diff
Changes
2138
2599 d 15 h
richard
/repos/alcasar/trunk/
- le rapport d'activité hebdomadaire se situe maintenant dans "sauvegarde"
- mise à jour de la blacklist
/web/acc/manager/activity_report/index.php
/alcasar.sh
/blacklist/blacklist-MD5SUM.lst
/blacklist/blacklists.tar.gz
/scripts/alcasar-activity_report.sh
/web/acc/backup/sauvegarde.php
/web/acc/manager/activity_report/models/Chart.report.js
/web/acc/manager/auth_exceptions.php
/web/acc/stat.php
2009
2835 d 17 h
raphael.pion
/repos/alcasar/trunk/
GENERATION D UN RAPPORT D ACTIVITE ALCASAR (toutes les semaines)
la page /acc/manager/activity_report/index.php permet de consulter les rapports généré par le crontab suivant :
35 5 * * 0 root $DIR_DEST_BIN/alcasar-activity_report.sh (tous les dimanches a 5h35)
Algo pour trier les logs en fonction des dates :
-decompression de tous les logs ( si y a )
-convertir les dates des événements qui nous intéresse en timestamp
-trier + verifier la valeur du TS (si il se situe dans l'intervale d'une semaine)
-on traite pour la semaine suivante jusqu'a la derniere alerte (condition d'arret)
Les items présents sont :
[*] - TABLEAU DE BORD : info systeme/ALCASAR/derniere mise a jour
[*] - DNS-BL depuis l'installation + depuis la semaine : creation des logs dnsmasq-blacklist + logrotate appliqué pour dnsmasq-blacklist
[*] - MENACE VIRALE : graphe indiquant le nombre de menace par semaine
[*] - STATISTIQUES VOLUMETRIE DES CONNEXIONS : tableau de l'ACC ('STATISTIQUES' => 'usage journalier')
[*] - TENTATIVE DE CONNEXION : Autorisé/Interdite/fail2ban
---------------
oublie de subversionner :
-protocols_help : filtrage utilisateur / protocole
-still_connected : fil d'ariane (verifier si la fenetre status.php est toujours ouverte)
/conf/logrotate.d/dnsmasq-blacklist
/scripts/alcasar-activity_report.sh
/web/acc/manager/activity_report
/web/acc/manager/activity_report/index.php
/web/acc/manager/activity_report/models
/web/acc/manager/activity_report/models/Chart.report.js
/web/acc/manager/activity_report/models/tabinfo.html
/web/acc/manager/htdocs/help/protocols_help.html
/web/css/report.css
/web/js/Chart.bundle.js
/web/js/jquery.min.js
/web/still_connected.php
/alcasar.sh
/web/acc/menu.php
/web/acc/stat.php
1536
3417 d 10 h
richard
/repos/alcasar/trunk/
- Sécurisation apache
- ajout vnstat à l'ACC
/alcasar.sh
/web/acc/menu.php
/web/acc/stat.php
1233
3855 d 20 h
richard
/repos/alcasar/trunk/web/acc/
Fixe la taille des 3 tableaux de la rubrique "securité"
/web/acc/manager/htdocs/security.php
/web/acc/menu.php
/web/acc/stat.php
1221
3872 d 12 h
richard
/repos/alcasar/trunk/
- suppression firewalleyes
- suppression des log parefeu
/web/acc/admin/firewallEyes
/CHANGELOG
/alcasar.sh
/scripts/alcasar-iptables.sh
/web/acc/menu.php
/web/acc/stat.php
1163
3911 d 17 h
crox53
/repos/alcasar/trunk/
- Intégration de Fail2Ban
- Ajout d'une page "Security" contenant :
- Usurpation des @MAC
- Virus bloqués
- IP bloquées (Fail2Ban)
/scripts/alcasar-fail2ban.sh
/web/acc/manager/htdocs/security.php
/alcasar.sh
/web/acc/manager/lib/langues.php
/web/acc/menu.php
/web/acc/stat.php
1159
3940 d 0 h
crox53
/repos/alcasar/trunk/
Ajout de NETFLOW (problème pour le moment avec "depmod -a") --> faire une "depmod -a" au laucement d'ALCASAR et réappliquer les règles iptables "alcasar-iptables.sh"
/conf/nfsen
/conf/nfsen/PortTracker.pm
/conf/nfsen/nfsen-1.3.6p1.tar.gz
/conf/nfsen/nfsen-init
/conf/nfsen/nfsen.conf
/alcasar.sh
/scripts/alcasar-iptables.sh
/scripts/alcasar-urpmi.sh
/scripts/sbin/alcasar-uninstall.sh
/web/acc/menu.php
/web/acc/stat.php
1157
3940 d 22 h
stephane
/repos/alcasar/trunk/
retour à la version 1.7.1
/conf/nfsen
/CHANGELOG
/VERSION
/alcasar.sh
/readme.txt
/scripts/alcasar-archive.sh
/scripts/alcasar-conf.sh
/scripts/alcasar-iptables-bypass.sh
/scripts/alcasar-iptables.sh
/scripts/alcasar-urpmi.sh
/scripts/alcasar-watchdog.sh
/scripts/sbin/alcasar-dhcp.sh
/scripts/sbin/alcasar-uninstall.sh
/web/acc/about.htm
/web/acc/admin/services.php
/web/acc/manager/htdocs/ticket_user.php
/web/acc/manager/htdocs/voucher_new.php
/web/acc/manager/htdocs/vouchers_new.php
/web/acc/menu.php
/web/acc/stat.php
1154
3941 d 19 h
crox53
/repos/alcasar/trunk/
Ajout de Netflow à la version du trunk
/conf/nfsen
/conf/nfsen/PortTracker.pm
/conf/nfsen/nfsen-1.3.6p1.tar.gz
/conf/nfsen/nfsen-init
/conf/nfsen/nfsen-init~
/conf/nfsen/nfsen.conf
/conf/nfsen/nfsen.conf~
/CHANGELOG
/VERSION
/alcasar.sh
/readme.txt
/scripts/alcasar-archive.sh
/scripts/alcasar-conf.sh
/scripts/alcasar-iptables-bypass.sh
/scripts/alcasar-iptables.sh
/scripts/alcasar-urpmi.sh
/scripts/alcasar-watchdog.sh
/scripts/sbin/alcasar-dhcp.sh
/scripts/sbin/alcasar-uninstall.sh
/web/acc/about.htm
/web/acc/admin/services.php
/web/acc/manager/htdocs/ticket_user.php
/web/acc/manager/htdocs/voucher_new.php
/web/acc/manager/htdocs/vouchers_new.php
/web/acc/menu.php
/web/acc/stat.php
958
4303 d 0 h
franck
/repos/alcasar/trunk/
un peu de proprietes manquantes dans subversion sur les fichiers
/CHANGELOG
/TODO
/alcasar.sh
/conf/etc/alcasar-dns-name
/conf/logrotate.d/dansguardian
/conf/logrotate.d/dnsmasq
/conf/logrotate.d/httpd
/conf/logrotate.d/mysqld
/conf/logrotate.d/radiusd
/conf/logrotate.d/squid
/conf/logrotate.d/syslog
/conf/logrotate.d/ulogd
/conf/ulogd-init
/scripts/alcasar-CA.sh
/scripts/alcasar-archive.sh
/scripts/alcasar-conf.sh
/scripts/alcasar-conup.sh
/scripts/alcasar-daemon.sh
/scripts/alcasar-file-clean.sh
/scripts/alcasar-import-clean.sh
/scripts/alcasar-iptables-bypass.sh
/scripts/alcasar-iptables.sh
/scripts/alcasar-log.sh
/scripts/alcasar-urpmi.sh
/scripts/alcasar-watchdog.sh
/scripts/sbin/alcasar-bl.sh
/scripts/sbin/alcasar-bypass.sh
/scripts/sbin/alcasar-dateLog.sh
/scripts/sbin/alcasar-dhcp.sh
/scripts/sbin/alcasar-havp.sh
/scripts/sbin/alcasar-https.sh
/scripts/sbin/alcasar-load_balancing.sh
/scripts/sbin/alcasar-logout.sh
/scripts/sbin/alcasar-mysql.sh
/scripts/sbin/alcasar-nf.sh
/scripts/sbin/alcasar-profil.sh
/scripts/sbin/alcasar-qos.sh
/scripts/sbin/alcasar-rpm-download.sh
/scripts/sbin/alcasar-uninstall.sh
/scripts/sbin/alcasar-url_filter.sh
/scripts/sbin/alcasar-version.sh
/web/acc/auth.php
/web/acc/filtering.php
/web/acc/haut.php
/web/acc/menu.php
/web/acc/stat.php
/web/acc/system.php
/web/index.php
/web/intercept.php
/web/status.php
426
4860 d 23 h
franck
/repos/alcasar/trunk/
ajout des proprietés keywords (Id Date Author) manquantes sur les fichiers
/conf/alcasar-dns-name
/conf/alcasar-ethers
/conf/bannedurllist
/conf/freeradiusweb-config.php
/conf/logrotate.d/dansguardian
/conf/logrotate.d/httpd
/conf/logrotate.d/mysqld
/conf/logrotate.d/radiusd
/conf/logrotate.d/squid
/conf/logrotate.d/syslog
/conf/logrotate.d/ulogd
/conf/radiusd-db-vierge.sql
/conf/radiusd.conf-simple
/conf/rpms/rpm-build-howto
/conf/virus-en.html
/conf/virus-fr.html
/web/acc/index.html
/web/acc/menu.php
/web/acc/phpsysinfo/includes/xml/portail.php
/web/acc/phpsysinfo/templates/alcasar/alcasar.css
/web/acc/phpsysinfo/templates/alcasar/box.tpl
/web/acc/phpsysinfo/templates/alcasar/form.tpl
/web/acc/phpsysinfo/templates/alcasar/index.html
/web/acc/stat.php
/web/acc/system.php
/web/intercept.php
/web/pass/index.php
318
4915 d 10 h
richard
/repos/alcasar/trunk/web/
/web
/web/.directory
/web/acc
/web/acc/.directory
/web/acc/about.htm
/web/acc/admin
/web/acc/admin/.directory
/web/acc/admin/activity.php
/web/acc/admin/auth_exceptions.php
/web/acc/admin/bl_categories_help.php
/web/acc/admin/dns_filter.php
/web/acc/admin/dns_filter2.php
/web/acc/admin/filter_exceptions.php
/web/acc/admin/firewallEyes
/web/acc/admin/firewallEyes/.directory
/web/acc/admin/firewallEyes/configuration.php
/web/acc/admin/firewallEyes/gpl.txt
/web/acc/admin/firewallEyes/header.php
/web/acc/admin/firewallEyes/images
/web/acc/admin/firewallEyes/images/.directory
/web/acc/admin/firewallEyes/images/buttonBkg.jpg
/web/acc/admin/firewallEyes/images/commandHeaderBkg.jpg
/web/acc/admin/firewallEyes/images/destination.gif
/web/acc/admin/firewallEyes/images/dst-port.gif
/web/acc/admin/firewallEyes/images/firewallEyes.jpg
/web/acc/admin/firewallEyes/images/header-background.jpg
/web/acc/admin/firewallEyes/images/info.gif
/web/acc/admin/firewallEyes/images/logo-firewallEyes.gif
/web/acc/admin/firewallEyes/images/port-dst.gif
/web/acc/admin/firewallEyes/images/port-src.gif
/web/acc/admin/firewallEyes/images/source.gif
/web/acc/admin/firewallEyes/images/src-port.gif
/web/acc/admin/firewallEyes/include.php
/web/acc/admin/firewallEyes/index.html
/web/acc/admin/firewallEyes/info.php
/web/acc/admin/firewallEyes/log.css
/web/acc/admin/firewallEyes/logs.php
/web/acc/admin/firewallEyes/messages
/web/acc/admin/firewallEyes/readme.txt
/web/acc/admin/ldap.php
/web/acc/admin/logo.php
/web/acc/admin/net_filter.php
/web/acc/admin/net_filter2.php
/web/acc/admin/network.php
/web/acc/admin/update_ldap.php
/web/acc/alcasar-1.9-exploitation.pdf
/web/acc/alcasar-1.9-installation.pdf
/web/acc/alcasar-1.9-presentation.pdf
/web/acc/auth.php
/web/acc/bas.htm
/web/acc/haut.php
/web/acc/menu.php
/web/acc/phpsysinfo
/web/acc/stat.php
/web/alcasar-certificat.pdf
/web/css
/web/css/.directory
/web/css/ldap.css
/web/css/style.css
/web/favicon.ico
/web/images
/web/index-access-deny.php
/web/index-network-pb.php
/web/intercept.php