Subversion Repositories ALCASAR

Compare Revisions

Ignore whitespace Rev 1508 → Rev 1542

File deleted
File deleted
68,10 → 68,8
$Language = strtolower(substr(chop($Langue[0]),0,2)); }
if($Language == 'fr'){
$l_bl="Liste noire";
$l_wl="Liste blanche";
$l_list_version="Version de la liste : ";
$l_bl_categories="Sélectionnez les catégories à filtrer";
$l_wl_categories="Sélectionnez les catégories à autoriser";
$l_download_bl="Télécharger la dernière version";
$l_fingerprint="L'empreinte numérique du fichier téléchargé est : ";
$l_fingerprint2="Vérifiez-là en suivant ce lien (ligne 'blacklists.tar.gz') : ";
80,17 → 78,13
$l_warning="Temps estimé : une minute.";
$l_specific_filtering="Filtrage special";
$l_forbidden_dns="Noms de domaine filtrés";
$l_forbidden_dns_explain="Entrez un nom de domaine par ligne (exemple :";
$l_allowed_dns="Noms de domaine autorisés";
$l_one_dns="Entrez un nom de domaine par ligne (exemple :";
$l_maj_rehabilitated="Noms de domaine ou IP réhabilités";
$l_rehabilitated_dns="Noms de domaine réhabilités";
$l_rehabilitated_dns_explain="Entrez ici des noms de domaine bloqués par la liste noire <BR> que vous souhaitez réhabiliter.";
$l_add_to_bl="Noms de domaine ou IP ajoutés à la liste noire";
$l_add_to_wl="Noms de domaine ou IP ajoutés à la liste blanche";
$l_forbidden_ip="IP filtrés";
$l_forbidden_ip_explain="Entrez une IP par ligne (exemple :<br/>ou une ADRESSE RESEAU (exemple :";
$l_allowed_ip="IP authorisées";
$l_rehabilitated_ip="IP réhabilitées";
$l_rehabilitated_ip_explain="Entrez ici des IP bloquées par la liste noire <BR> que vous souhaitez réhabiliter.";
$l_one_ip="Entrez une IP par ligne (exemple :";
117,10 → 111,8
else {
$l_list_version="List version : ";
$l_bl_categories="Select the categories to filter";
$l_wl_categories="Select the categories to allow";
$l_download_bl="Download the last version";
$l_fingerprint="The digital fingerprint of the downloaded blacklist is : ";
$l_fingerprint2="Verify it with this link (line 'blacklists.tar.gz') : ";
129,7 → 121,6
$l_warning="Estimated time : one minute.";
$l_specific_filtering="Specific filtering";
$l_forbidden_dns="Filtered domain names";
$l_forbidden_dns_explain="Enter one domain name per row (exemple :";
$l_allowed_dns="Allowed domain names";
$l_one_dns="Enter one domain name per row (example :";
$l_maj_rehabilitated="Domain names or IP rehabilitated";
136,10 → 127,8
$l_rehabilitated_dns="Rehabilitated domain names";
$l_rehabilitated_dns_explain="Enter here domain names that are blocked by the blacklist <BR> and you want to rehabilitate.";
$l_add_to_bl="Domain names or IP to add to blacklist";
$l_add_to_wl="Domain names or IP to add to whitelist";
$l_forbidden_ip="Filtered IP";
$l_forbidden_ip_explain="Enter one IP per row (example :<br/>or a NETWORK ADDRESS (example :";
$l_allowed_ip="Allowed IP";
$l_rehabilitated_ip="Rehabilitated IP";
$l_rehabilitated_ip_explain="Enter here IP that are blocked by the blacklist <BR> and you want to rehabilitate.";
$l_one_ip="Enter one IP per row (example :";
167,11 → 156,8
240,32 → 226,6
exec ("sudo /usr/local/sbin/ --reload");
case 'MAJ_cat_wl' :
if ($tab)
$pointeur=fopen($wl_categories_enabled, "w+");
foreach ($_POST as $key => $value)
if (strstr($key,'chk-'))
else {echo "$l_error_open_file $wl_categories_enabled";}
fputs($fichier, form_filter($_POST['OSSI_wl_domains']));
$fichier=fopen($file_wl_ip, "w+");
fputs($fichier, form_filter_ip($_POST['OSSI_wl_ip'], "white"));
exec ("sudo /usr/local/sbin/ --reload");
case 'Specific_filtering' :
$pureip="-pureip_off"; $safesearch="-safesearch_off"; ;
foreach ($_POST as $key => $value)
422,7 → 382,7
echo "<tr><td valign='middle' align='left' colspan=10>";
echo "<center><b>$l_add_to_bl</b></center></td></tr>";
echo "<tr><td width=50% colspan=5 align=center>";
echo "<H3>$l_forbidden_dns</H3>$l_forbidden_dns_explain<BR>";
echo "<H3>$l_forbidden_dns</H3>$l_one_dns<BR>";
echo "<textarea name='OSSI_bl_domains' rows=3 cols=40>";
echo_file ($dir_dg."blacklists/ossi/domains");
echo "</textarea></td>";
433,7 → 393,7
echo "</textarea></td></tr><tr><td colspan=10>";
echo "<input type='submit' value='$l_record'>";
echo "</form> ($l_wait)";
echo "</table></td><br/>";
echo "</td></tr></table><br/>";
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr><th><?php echo $l_personal_file_title; ?></th></tr>
461,65 → 421,6
echo "</table><br/>";
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr><th><?php echo $l_wl; ?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
<TABLE width="100%" border=1 cellspacing=0 cellpadding=1>
<tr><td valign="middle" align="left" colspan=10>
<FORM action='bl_filter.php' method=POST>
<input type='hidden' name='choix' value='MAJ_cat_wl'>
echo "<center>";
$nbDomainNames = exec ("wc -l /usr/local/share/dnsmasq-wl/* | tail -n 1 | awk '{print $1}'");
$nbUrl = 0;
$nbIp = 0;
echo "<b>$l_nbDomainNames</b> $nbDomainNames, <b>$l_nbUrl</b> $nbUrl, <b>$l_nbIp</b> $nbIp<br/>";
echo "$l_wl_categories</center></td></tr>";
//on lit et on interprete le fichier de catégories
if (file_exists($wl_categories))
while (!feof ($pointeur))
$ligne=fgets($pointeur, 4096);
if ($ligne)
if ($cols == 1) { echo "<tr>";}
echo "<td><a href='bl_categories_help.php?liste=wl&cat=$categorie' target='cat_help''bl_categories_help.php','cat_help','width=600,height=450,toolbar=no,scrollbars=yes,resizable=yes') title='categories help page'>$categorie</a><br>";
echo "<input type='checkbox' name='chk-$categorie'";
// si la ligne est commentée -> categorie non selectionnée
if (preg_match('/^#/',$ligne, $r)) { echo ">";}
else { echo "checked>"; }
echo "</td>";
if ($cols > 10) {
echo "</tr>";
$cols=1; }
else {
echo "$l_error_open_file $wl_categories";
echo "<tr><td valign='middle' align='left' colspan=10>";
echo "<center><b>$l_add_to_wl</b></center></td></tr>";
echo "<tr><td width=50% colspan=5 align=center>";
echo "<H3>$l_allowed_dns</H3>$l_forbidden_dns_explain<BR>";
echo "<textarea name='OSSI_wl_domains' rows=3 cols=40>";
echo_file ($dir_dg."blacklists/ossi/domains_wl");
echo "</textarea></td>";
echo "<td width=50% colspan=5 align=center>";
echo "<H3>$l_allowed_ip</H3>$l_forbidden_ip_explain<BR>";
echo "<textarea name='OSSI_wl_ip' rows=3 cols=40>";
echo_ip_file ($file_wl_ip);
echo "</textarea></td></tr><tr><td colspan=10>";
echo "<input type='submit' value='$l_record'></form></td></tr>";
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr><th><?php echo $l_specific_filtering; ?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
0,0 → 1,196
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><!-- written by Rexy -->
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<TITLE>Network Filter</TITLE>
<link rel="stylesheet" href="/css/style.css" type="text/css">
<TABLE width="100%" border=0 cellspacing=0 cellpadding=0>
# Choice of language
$Language = 'en';
$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);
$Language = strtolower(substr(chop($Langue[0]),0,2)); }
if($Language == 'fr'){
$l_remove="Retirer de la liste";
$l_title_proto = "Filtrage de protocoles r&eacute;seau";
$l_protocolsfilter_on="Le filtrage de protocoles r&eacute;seau est actuellement activ&eacute;";
$l_protocolsfilter_off="Le filtrage de protocoles réseau est actuellement désactiv&eacute";
$l_switch_on="Activer le filtrage";
$l_switch_off="D&eacute;sactiver le filtrage";
$l_comment_on="&Agrave; l'exclusion du WEB (port 80), les protocoles r&eacute;seaux sont interdits.<BR>Choisissez ci-dessous les protocoles que vous autorisez";
$l_comment_off="(tous les protocoles réseau sont autoris&eacute;s)";
$l_protocols="Protocoles autoris&eacute;s";
$l_error_open_file="Erreur d'ouverture du fichier";
$l_port="Numéro de port";
$l_proto="Nom du protocole";
$l_add_to_list="Ajouter &agrave; la liste";
$l_save="Enregistrer les modifications";
else {
$l_remove="Remove from list";
$l_title_proto = "Network protocols filter";
$l_protocolsfilter_on="Actually, the network protocols filter is enable";
$l_protocolsfilter_off="Actually, the network protocols filter is disable";
$l_switch_on="Switch the Filter on";
$l_switch_off="Switch the Filter off";
$l_comment_on="(choose the authorized network protocols)";
$l_comment_on="Except for the WEB (port 80), all protocols are blocked.<BR>Choose in the list below, the protocols you want authorize";
$l_comment_off="(all the network protocols are allowed for authenticated users)";
$l_protocols="Authorize protocols";
$l_error_open_file="Error opening the file";
$l_port="Port number";
$l_proto="protocol name";
$l_add_to_list="Add to the list";
$l_save="Save changes";
define ("SERVICES_LIST", "/usr/local/etc/alcasar-services");
define ("CONF_FILE", "/usr/local/etc/alcasar.conf");
foreach ($conf_files as $file){
if (!file_exists($file)){
exit("Requested file ".$file." isn't present");}
if (!is_readable($file)){
exit("Can't read the file ".$file);}
if ($ouvre){
while (!feof ($ouvre))
$tampon = fgets($ouvre, 4096);
if (strpos($tampon,"=")!==false){
$tmp = explode("=",$tampon);
$conf[$tmp[0]] = $tmp[1];
if (isset($_POST['choix'])){$choix=$_POST['choix'];} else {$choix="";}
switch ($choix)
case 'NF_On' :
exec ("sudo /usr/local/sbin/ -on");
case 'NF_Off' :
exec ("sudo /usr/local/sbin/ -off");
case 'new_port' :
if ((trim($_POST['add_port']) != "80") and ($_POST['add_port'] != "") and ($_POST['add_proto'] != "") and (is_numeric($_POST['add_port'])))
$_POST['add_proto'] = str_replace (CHR(32),"-",$_POST['add_proto']);
$insert = true;
if ($tab) // file isn't empty
foreach ($tab as $line) //test if port doesn't already exist
$proto_f=explode(" ", $line);
if (trim($_POST['add_port']) == trim($proto_f[1])) {$insert = false;}
if ($insert == true)
$line = "\n" . "#" . trim($_POST['add_proto']) . " " . trim($_POST['add_port']);
fwrite ($pointeur, $line);
fclose ($pointeur);
exec ("sudo /usr/local/bin/");
case 'change_port' :
if ($tab)
// authorize/block protocols
foreach ($tab as $ligne)
$proto_f=explode(" ", $ligne);
$actif = False; $remove_line = false;
foreach ($_POST as $key => $value)
if (strstr($key,'del-'))
$name_svc2 = str_replace('del-','',$key);
if ($name_svc1 == $name_svc2)
$remove_line = True;
if (strstr($key,'chk-'))
$name_svc2 = str_replace('chk-','',$key);
if ($name_svc1 == $name_svc2)
$actif = True;
if (! $remove_line)
if (! $actif) { $line="#$name_svc1 $proto_f[1]";}
else { $line="$name_svc1 $proto_f[1]";}
exec ("sudo /usr/local/bin/ -on");
# default values
if (is_file (CONF_FILE))
if ($tab)
foreach ($tab as $line)
$field=explode("=", $line);
if ($field[0] == "PROTOCOLS_FILTERING") {$PROTOCOLS_FILTERING=trim($field[1]);}
<TABLE width="100%" border=0 cellspacing=0 cellpadding=0>
<tr><th><?echo "$l_title_proto";?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
<TABLE width="100%" border=1 cellspacing=0 cellpadding=0>
echo "<td colspan=\"2\" valign=\"middle\" align=\"left\">";
echo "<CENTER><H3>$l_protocolsfilter_on</H3>$l_comment_on</CENTER>";
echo "<FORM action='$_SERVER[PHP_SELF]' method=POST>";
echo "<input type=hidden name='choix' value=\"NF_Off\">";
echo "<input type=submit value=\"$l_switch_off\">";
echo "</FORM></td></tr>";
require ('protocols_filter2.php');
echo "<td valign=\"middle\" align=\"left\">";
echo "<CENTER><H3>$l_protocolsfilter_off</H3>$l_comment_off</CENTER>";
echo "<FORM action='$_SERVER[PHP_SELF]' method=POST>";
echo "<input type=hidden name='choix' value=\"NF_On\">";
echo "<input type=submit value=\"$l_switch_on\">";
echo "</FORM></td></tr>";
echo "</table></body></html>";
0,0 → 1,49
<tr><td valign="middle" align="center">
<form action='protocols_filter.php' method='POST'>
<table cellspacing=2 cellpadding=3 border=1>
echo "<tr><th>$l_port<th>$l_proto<th>$l_enabled<th>$l_remove</tr>";
// Read and compute the protocols list
if ($tab) # the file isn't empty
foreach ($tab as $line)
if (trim($line) != '') # the line isn't empty
$proto=explode(" ", $line);
echo "<tr><td>$proto[1]<td>$name_svc";
echo "<td><input type='checkbox' name='chk-$name_svc'";
// if the line is commented -> protocol is not allowed
if (preg_match('/^#/',$line, $r)) {
echo ">";}
else {
echo "checked>";}
echo "<td>";
if ($name_svc != "icmp") {
echo "<input type='checkbox' name='del-$name_svc'>";}
else {
echo "&nbsp;";}
echo "</tr>";
<input type='hidden' name='choix' value='change_port'>
<input type='submit' value='<?echo"$l_save";?>'>
</form></td><td valign='middle' align='center'>
<form action='protocols_filter.php' method='POST'>
<table cellspacing=2 cellpadding=3 border=1>
<tr><td><input type='text' name='add_port' size='5'></td>
<td><input type='text' name='add_proto' size='10'></td>
<input type='hidden' name='choix' value='new_port'>
<td><input type='submit' value='<?echo"$l_add_to_list";?>'></td>
0,0 → 1,204
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><!-- written by Rexy -->
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<TITLE>ALCASAR Whitelist filtering</TITLE>
<link rel="stylesheet" href="/css/style.css" type="text/css">
function form_filter ($form_content)
// réencodage iso + format unix + rc fin de ligne (ouf...)
$list = str_replace("\r\n", "\n", utf8_decode($form_content));
if (strlen($list) != 0){
if ($list[strlen($list)-1] != "\n") { $list[strlen($list)]="\n";} ;} ;
return $list;
function form_filter_ip($form_content, $color)
//# reconstruction des ip
$list = explode("\n", form_filter($form_content));
$new_list = "";
foreach($list as &$value)
if(preg_match('/([0-9]{1,3}.){3}[0-9]{1,3}/', $value))
$new_list = $new_list.$value."\n";
if($color == "white")
return preg_replace("/(.*)\n/", "add whitelist_ip_allowed $1\n", $new_list);
return preg_replace("/(.*)\n/", "add blacklist_ip_blocked $1\n", $new_list);
function echo_file ($filename)
if (file_exists($filename))
if (filesize($filename) != 0)
$tampon = fread($pointeur, filesize($filename));
echo $tampon;
echo "$filename doesn't exist";
function echo_ip_file ($filename)
exec("cat $filename | cut -d ' ' -f3", $resultat);
for($i=0; $i<exec("wc -l $filename"); $i++)
echo $resultat[$i]."\n";
# Choice of language
$Language = 'en';
$Langue = explode(",",$_SERVER['HTTP_ACCEPT_LANGUAGE']);
$Language = strtolower(substr(chop($Langue[0]),0,2)); }
if($Language == 'fr'){
$l_wl="Liste blanche";
$l_list_version="Version de la liste : ";
$l_wl_categories="Sélectionnez les catégories à autoriser";
$l_allowed_dns="Noms de domaine autorisés";
$l_one_dns="Entrez un nom de domaine par ligne (exemple :";
$l_add_to_wl="Noms de domaine ou IP ajoutés à la liste blanche";
$l_forbidden_ip_explain="Entrez une IP par ligne (exemple :<br/>ou une adresse de réseau (exemple :";
$l_allowed_ip="IP authorisées";
$l_record="Enregistrer les modifications";
$l_wait="Une fois validées, 10 secondes sont nécessaires pour traiter vos modifications";
$l_error_open_file="Erreur d'ouverture du fichier";
$l_nb_ip="Nombre d'IP";
$l_nb_domain_names="Nombre de noms de domaine";
$l_nbDomainNames="Noms de domaine :";
$l_nbUrl="Url :";
$l_nbIp="Ip :";
else {
$l_list_version="List version : ";
$l_wl_categories="Select the categories to allow";
$l_allowed_dns="Allowed domain names";
$l_one_dns="Enter one domain name per row (example :";
$l_add_to_wl="Domain names or IP to add to whitelist";
$l_forbidden_ip_explain="Enter one IP per row (example :<br/>or a network address (example :";
$l_allowed_ip="Allowed IP";
$l_record="Save changes";
$l_wait="Once validated, 10 seconds are necessary to compute your modifications";
$l_error_open_file="Error opening file";
$l_nb_ip="Number of IP";
$l_nb_domain_names="Number of domain names";
$l_nbDomainNames="Domain names :";
$l_nbUrl="Url :";
$l_nbIp="Ip :";
if (isset($_POST['choix'])){ $choix=$_POST['choix']; } else { $choix=""; }
switch ($choix)
case 'MAJ_cat_wl' :
if ($tab)
$pointeur=fopen($wl_categories_enabled, "w+");
foreach ($_POST as $key => $value)
if (strstr($key,'chk-'))
else {echo "$l_error_open_file $wl_categories_enabled";}
fputs($fichier, form_filter($_POST['OSSI_wl_domains']));
$fichier=fopen($file_wl_ip, "w+");
fputs($fichier, form_filter_ip($_POST['OSSI_wl_ip'], "white"));
exec ("sudo /usr/local/sbin/ --reload");
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr><th><?php echo $l_wl; ?></th></tr>
<tr bgcolor="#FFCC66"><td><img src="/images/pix.gif" width="1" height="2"></td></tr>
<TABLE width="100%" border=1 cellspacing=0 cellpadding=1>
<tr><td valign="middle" align="left" colspan=10>
<FORM action='wl_filter.php' method=POST>
<input type='hidden' name='choix' value='MAJ_cat_wl'>
echo "<center>";
$nbDomainNames = exec ("wc -l /usr/local/share/dnsmasq-wl/* | tail -n 1 | awk '{print $1}'");
$nbUrl = 0;
$nbIp = 0;
echo "<b>$l_nbDomainNames</b> $nbDomainNames, <b>$l_nbUrl</b> $nbUrl, <b>$l_nbIp</b> $nbIp<br/>";
echo "$l_wl_categories</center></td></tr>";
//on lit et on interprete le fichier de catégories
if (file_exists($wl_categories))
while (!feof ($pointeur))
$ligne=fgets($pointeur, 4096);
if ($ligne)
if ($cols == 1) { echo "<tr>";}
echo "<td><a href='bl_categories_help.php?liste=wl&cat=$categorie' target='cat_help''bl_categories_help.php','cat_help','width=600,height=450,toolbar=no,scrollbars=yes,resizable=yes') title='categories help page'>$categorie</a><br>";
echo "<input type='checkbox' name='chk-$categorie'";
// si la ligne est commentée -> categorie non selectionnée
if (preg_match('/^#/',$ligne, $r)) { echo ">";}
else { echo "checked>"; }
echo "</td>";
if ($cols > 10) {
echo "</tr>";
$cols=1; }
else {
echo "$l_error_open_file $wl_categories";
echo "<tr><td valign='middle' align='left' colspan=10>";
echo "<center><b>$l_add_to_wl</b></center></td></tr>";
echo "<tr><td width=50% colspan=5 align=center>";
echo "<H3>$l_allowed_dns</H3>$l_one_dns<BR>";
echo "<textarea name='OSSI_wl_domains' rows=3 cols=40>";
echo_file ($dir_dg."blacklists/ossi/domains_wl");
echo "</textarea></td>";
echo "<td width=50% colspan=5 align=center>";
echo "<H3>$l_allowed_ip</H3>$l_forbidden_ip_explain<BR>";
echo "<textarea name='OSSI_wl_ip' rows=3 cols=40>";
echo_ip_file ($file_wl_ip);
echo "</textarea></td></tr><tr><td colspan=10>";
echo "<input type='submit' value='$l_record'></form></td></tr>";