summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* squark-0.5v0.5Timo Teräs2013-02-061-1/+1
|
* auth-snmp: allow specifying management network prefixTimo Teräs2013-02-065-16/+101
| | | | | So we don't go and try querying untrusted LLDP capable devices in non-managed subnets.
* squark-0.4.4v0.4.5Timo Teräs2012-11-161-1/+1
|
* squark-filter: fix path component lookupTimo Teräs2012-11-121-2/+2
| | | | | | | Do not do string literal lookup unless the path parent matches. This avoids wrong string literal lookups when the path does not exist and refers actuall to an entry which is IPv4 encoded (parent == SQDB_PARENT_IPV4).
* filterdb: check section limits for literal stringsTimo Teräs2012-11-121-1/+7
|
* squark-0.4.4v0.4.4Timo Teräs2012-07-161-1/+1
|
* authdb: fix authdb entry locationKolar Uros2012-07-161-1/+1
| | | | | Commit 5a28c352a2f6de525 forgot to update the byte used for hash offset index. Fix that.
* squark-0.4.3v0.4.3Timo Teräs2012-04-121-1/+1
|
* authdb: ipv4 is in network order; not host orderTimo Teräs2012-04-121-2/+2
|
* squark-0.4.2v0.4.2Timo Teräs2012-02-141-2/+2
|
* auth-snmp: fix a crashTimo Teräs2012-02-141-9/+14
| | | | | Can't call blob_push_formatted_username unless authentication is successfully completed.
* filter: fix lookup of urls with path componentsv0.4.1Timo Teräs2012-01-251-1/+14
|
* build: fix lua module building, and disable -WerrorTimo Teräs2012-01-252-3/+5
|
* auth-snmp: commit login only if credentials are not validTimo Teräs2012-01-101-12/+19
| | | | | | This makes sure the other session things are not reset when the squid helper cache needs revalidation. Fixes premature reset of override timestamp amongst other issues.
* auth-ip, filter: refresh configurationTimo Teräs2012-01-102-0/+2
|
* authdb: fix config file modification detectionTimo Teräs2012-01-041-2/+2
|
* lua, filter: fix 64-bit issuesv0.4Timo Teräs2011-10-072-2/+2
|
* filter: fix previous commitLuke Stuart2011-09-282-3/+2
| | | | it was hard-blocking everything incorrectly.
* filter: use different block page if category is forbiddenDuane Hughes2011-09-152-2/+32
| | | | fixes #719
* auth-snmp: fix q-bridge-mib vlan queriesv0.3Timo Teräs2011-09-051-11/+35
| | | | | | The queries use Q-BRIDGE-MIB's qVlanId which is switch specific mapping. Exception seems to be 1810G's which use the real VLAN index.
* filter: option to allow automatic anonymous loginTimo Teräs2011-09-015-2/+33
| | | | | | so no captive portal, snmp or squid authentication is required. fixes #737.
* auth-snmp: implement Q-BRIDGE-MIB FIB queriesTimo Teräs2011-07-191-26/+49
| | | | | | | | Certain switches seem to export FIB of tagged VLANs only in the Q-BRIDGE-MIB only. Detect if switch support Q-BRIDGE-MIB during information discovery, and prefer it over the older BRIDGE-MIB. Q-BRIDGE-MIB should be used anyway, since it's the only reliable way to trace MAC properly when it appears in multiple VLANs.
* filter: honor squid authenticationv0.2Timo Teräs2011-06-141-0/+5
| | | | | | Instead of having separate modes (which would likely need to be configurable on per-subnet or per-user, anyway), honour just the squid reported username.
* Revert "filter: support filter-only and track-only modes"Timo Teräs2011-06-141-61/+9
| | | | This reverts commit a1277ab45a9d2bab9ca28baf05f978bf8066d928.
* Revert "filter: rename modes to something that makes more sense"Timo Teräs2011-06-141-29/+25
| | | | This reverts commit a4180db79a80882f81bc8c880ec1e2db5ee9bf6d.
* filter: rename modes to something that makes more senseTimo Teräs2011-06-141-25/+29
| | | | | Also, make sure the categorize mode is not touching authdb datastructures as they are invalid in that mode.
* filter: support filter-only and track-only modesTimo Teräs2011-06-141-9/+61
|
* www: add a set of example pages for block info and captive portalv0.1Timo Teräs2010-11-2413-2/+297
| | | | Relatively simple set of pages done in haserl. Fixes #448.
* filter: return categorization and blocked/overridden statusTimo Teräs2010-11-181-3/+11
| | | | | return the analysis back to squid as urlgroup. it can be then used in squid config acl's and logging (with patch). ref #447.
* auth-snmp: option to syslog authentication requestsTimo Teräs2010-11-091-3/+51
| | | | Including some information where it fails.
* blob, config.[ch]: add missing files and includesTimo Teräs2010-11-083-0/+24
|
* authdb, auth-ip: make logout_timeout configurableTimo Teräs2010-11-074-15/+32
| | | | | | | | * authdb: change to use squark.conf instead of filter.conf * authdb: config option logout_timeout added (defaults to 15mins) * auth-ip: add -r parameter to refresh login time fixes #452
* all: check error for sqdb_open and adb_openTimo Teräs2010-11-075-16/+63
| | | | | so we don't crash on startup if essential files are missing. fixes #454
* build: use build system from apk-tools/opennhrpTimo Teräs2010-11-078-28/+374
|
* squark: reorganize sources to src directoryTimo Teräs2010-11-0715-0/+0
|
* auth-ip: dump block categoriesTimo Teräs2010-11-071-0/+4
|
* auth-snmp: fix 1810 version testTimo Teräs2010-11-061-1/+2
| | | | It has dot. So it's P.1 series which is buggy.
* auth-snmp: Procurve 1810G P2.1 has BRIDGE-MIB fixedTimo Teräs2010-11-061-2/+7
| | | | Don't enable the workaroudn if new enough firmware is detected.
* auth-snmp: reset switch flags on rediscoveryTimo Teräs2010-10-191-0/+2
| | | | | Otherwise we might attempt to access invalid or even unreceived data (e.g. if switch was swapped, is offline, or just did not respond to us).
* authdb, blob: fix a casting error and a byte order issueTimo Teräs2010-10-192-2/+2
|
* authdb: fix memory corruption bugsTimo Teräs2010-09-141-1/+3
| | | | | properly calculate module of the hash bucket, and when cleaning up free the correct entry (instead of the next one).
* authdb: use configuration file to decide blocked categoriesTimo Teräs2010-09-146-63/+157
| | | | and cache the information to authdb properly.
* auth-ip: print information in shell compatible formatTimo Teräs2010-09-145-24/+62
| | | | so we can dump information from http cgi-bin scripts.
* authdb: use shared 'squark' group for shm areasTimo Teräs2010-09-101-3/+11
| | | | | | this way multiple users can access the shm areas (e.g. www-data for captive portal, and proxy for squid). all system users needing to use squark tools need to belong to this group.
* auth-snmp: record logins to authdbTimo Teräs2010-09-102-2/+23
| | | | with additional info.
* authdb: separate last access / login timeTimo Teräs2010-09-074-25/+28
| | | | and tweak the authdb a bit.
* filter: do not do auto-login, fix url parsing without hostnameTimo Teräs2010-09-071-7/+2
| | | | | | | do not have filter process to do auto login. this is required since squid might have stale login info in cache, and we should not honor it. need to fix auth-snmp to record logins in authdb too (should do that anyway to store the additional snmp information in authdb).
* auth-snmp: improve line parserTimo Teräs2010-09-061-18/+41
| | | | get rid of sscanf and use the blob api.
* auth-ip: implement logoutTimo Teräs2010-09-034-7/+32
| | | | Implement logout function and some minor fixes.
* auth-ip: introduce helper tool for authdb managementTimo Teräs2010-09-016-16/+216
| | | | fix also some authdb bugs, and make it actually usable.
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-20 01:36:52 +0000