Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | squark-0.5v0.5 | Timo Teräs | 2013-02-06 | 1 | -1/+1 |
| | |||||
* | auth-snmp: allow specifying management network prefix | Timo Teräs | 2013-02-06 | 5 | -16/+101 |
| | | | | | So we don't go and try querying untrusted LLDP capable devices in non-managed subnets. | ||||
* | squark-0.4.4v0.4.5 | Timo Teräs | 2012-11-16 | 1 | -1/+1 |
| | |||||
* | squark-filter: fix path component lookup | Timo Teräs | 2012-11-12 | 1 | -2/+2 |
| | | | | | | | Do not do string literal lookup unless the path parent matches. This avoids wrong string literal lookups when the path does not exist and refers actuall to an entry which is IPv4 encoded (parent == SQDB_PARENT_IPV4). | ||||
* | filterdb: check section limits for literal strings | Timo Teräs | 2012-11-12 | 1 | -1/+7 |
| | |||||
* | squark-0.4.4v0.4.4 | Timo Teräs | 2012-07-16 | 1 | -1/+1 |
| | |||||
* | authdb: fix authdb entry location | Kolar Uros | 2012-07-16 | 1 | -1/+1 |
| | | | | | Commit 5a28c352a2f6de525 forgot to update the byte used for hash offset index. Fix that. | ||||
* | squark-0.4.3v0.4.3 | Timo Teräs | 2012-04-12 | 1 | -1/+1 |
| | |||||
* | authdb: ipv4 is in network order; not host order | Timo Teräs | 2012-04-12 | 1 | -2/+2 |
| | |||||
* | squark-0.4.2v0.4.2 | Timo Teräs | 2012-02-14 | 1 | -2/+2 |
| | |||||
* | auth-snmp: fix a crash | Timo Teräs | 2012-02-14 | 1 | -9/+14 |
| | | | | | Can't call blob_push_formatted_username unless authentication is successfully completed. | ||||
* | filter: fix lookup of urls with path componentsv0.4.1 | Timo Teräs | 2012-01-25 | 1 | -1/+14 |
| | |||||
* | build: fix lua module building, and disable -Werror | Timo Teräs | 2012-01-25 | 2 | -3/+5 |
| | |||||
* | auth-snmp: commit login only if credentials are not valid | Timo Teräs | 2012-01-10 | 1 | -12/+19 |
| | | | | | | This makes sure the other session things are not reset when the squid helper cache needs revalidation. Fixes premature reset of override timestamp amongst other issues. | ||||
* | auth-ip, filter: refresh configuration | Timo Teräs | 2012-01-10 | 2 | -0/+2 |
| | |||||
* | authdb: fix config file modification detection | Timo Teräs | 2012-01-04 | 1 | -2/+2 |
| | |||||
* | lua, filter: fix 64-bit issuesv0.4 | Timo Teräs | 2011-10-07 | 2 | -2/+2 |
| | |||||
* | filter: fix previous commit | Luke Stuart | 2011-09-28 | 2 | -3/+2 |
| | | | | it was hard-blocking everything incorrectly. | ||||
* | filter: use different block page if category is forbidden | Duane Hughes | 2011-09-15 | 2 | -2/+32 |
| | | | | fixes #719 | ||||
* | auth-snmp: fix q-bridge-mib vlan queriesv0.3 | Timo Teräs | 2011-09-05 | 1 | -11/+35 |
| | | | | | | The queries use Q-BRIDGE-MIB's qVlanId which is switch specific mapping. Exception seems to be 1810G's which use the real VLAN index. | ||||
* | filter: option to allow automatic anonymous login | Timo Teräs | 2011-09-01 | 5 | -2/+33 |
| | | | | | | so no captive portal, snmp or squid authentication is required. fixes #737. | ||||
* | auth-snmp: implement Q-BRIDGE-MIB FIB queries | Timo Teräs | 2011-07-19 | 1 | -26/+49 |
| | | | | | | | | Certain switches seem to export FIB of tagged VLANs only in the Q-BRIDGE-MIB only. Detect if switch support Q-BRIDGE-MIB during information discovery, and prefer it over the older BRIDGE-MIB. Q-BRIDGE-MIB should be used anyway, since it's the only reliable way to trace MAC properly when it appears in multiple VLANs. | ||||
* | filter: honor squid authenticationv0.2 | Timo Teräs | 2011-06-14 | 1 | -0/+5 |
| | | | | | | Instead of having separate modes (which would likely need to be configurable on per-subnet or per-user, anyway), honour just the squid reported username. | ||||
* | Revert "filter: support filter-only and track-only modes" | Timo Teräs | 2011-06-14 | 1 | -61/+9 |
| | | | | This reverts commit a1277ab45a9d2bab9ca28baf05f978bf8066d928. | ||||
* | Revert "filter: rename modes to something that makes more sense" | Timo Teräs | 2011-06-14 | 1 | -29/+25 |
| | | | | This reverts commit a4180db79a80882f81bc8c880ec1e2db5ee9bf6d. | ||||
* | filter: rename modes to something that makes more sense | Timo Teräs | 2011-06-14 | 1 | -25/+29 |
| | | | | | Also, make sure the categorize mode is not touching authdb datastructures as they are invalid in that mode. | ||||
* | filter: support filter-only and track-only modes | Timo Teräs | 2011-06-14 | 1 | -9/+61 |
| | |||||
* | www: add a set of example pages for block info and captive portalv0.1 | Timo Teräs | 2010-11-24 | 13 | -2/+297 |
| | | | | Relatively simple set of pages done in haserl. Fixes #448. | ||||
* | filter: return categorization and blocked/overridden status | Timo Teräs | 2010-11-18 | 1 | -3/+11 |
| | | | | | return the analysis back to squid as urlgroup. it can be then used in squid config acl's and logging (with patch). ref #447. | ||||
* | auth-snmp: option to syslog authentication requests | Timo Teräs | 2010-11-09 | 1 | -3/+51 |
| | | | | Including some information where it fails. | ||||
* | blob, config.[ch]: add missing files and includes | Timo Teräs | 2010-11-08 | 3 | -0/+24 |
| | |||||
* | authdb, auth-ip: make logout_timeout configurable | Timo Teräs | 2010-11-07 | 4 | -15/+32 |
| | | | | | | | | * authdb: change to use squark.conf instead of filter.conf * authdb: config option logout_timeout added (defaults to 15mins) * auth-ip: add -r parameter to refresh login time fixes #452 | ||||
* | all: check error for sqdb_open and adb_open | Timo Teräs | 2010-11-07 | 5 | -16/+63 |
| | | | | | so we don't crash on startup if essential files are missing. fixes #454 | ||||
* | build: use build system from apk-tools/opennhrp | Timo Teräs | 2010-11-07 | 8 | -28/+374 |
| | |||||
* | squark: reorganize sources to src directory | Timo Teräs | 2010-11-07 | 15 | -0/+0 |
| | |||||
* | auth-ip: dump block categories | Timo Teräs | 2010-11-07 | 1 | -0/+4 |
| | |||||
* | auth-snmp: fix 1810 version test | Timo Teräs | 2010-11-06 | 1 | -1/+2 |
| | | | | It has dot. So it's P.1 series which is buggy. | ||||
* | auth-snmp: Procurve 1810G P2.1 has BRIDGE-MIB fixed | Timo Teräs | 2010-11-06 | 1 | -2/+7 |
| | | | | Don't enable the workaroudn if new enough firmware is detected. | ||||
* | auth-snmp: reset switch flags on rediscovery | Timo Teräs | 2010-10-19 | 1 | -0/+2 |
| | | | | | Otherwise we might attempt to access invalid or even unreceived data (e.g. if switch was swapped, is offline, or just did not respond to us). | ||||
* | authdb, blob: fix a casting error and a byte order issue | Timo Teräs | 2010-10-19 | 2 | -2/+2 |
| | |||||
* | authdb: fix memory corruption bugs | Timo Teräs | 2010-09-14 | 1 | -1/+3 |
| | | | | | properly calculate module of the hash bucket, and when cleaning up free the correct entry (instead of the next one). | ||||
* | authdb: use configuration file to decide blocked categories | Timo Teräs | 2010-09-14 | 6 | -63/+157 |
| | | | | and cache the information to authdb properly. | ||||
* | auth-ip: print information in shell compatible format | Timo Teräs | 2010-09-14 | 5 | -24/+62 |
| | | | | so we can dump information from http cgi-bin scripts. | ||||
* | authdb: use shared 'squark' group for shm areas | Timo Teräs | 2010-09-10 | 1 | -3/+11 |
| | | | | | | this way multiple users can access the shm areas (e.g. www-data for captive portal, and proxy for squid). all system users needing to use squark tools need to belong to this group. | ||||
* | auth-snmp: record logins to authdb | Timo Teräs | 2010-09-10 | 2 | -2/+23 |
| | | | | with additional info. | ||||
* | authdb: separate last access / login time | Timo Teräs | 2010-09-07 | 4 | -25/+28 |
| | | | | and tweak the authdb a bit. | ||||
* | filter: do not do auto-login, fix url parsing without hostname | Timo Teräs | 2010-09-07 | 1 | -7/+2 |
| | | | | | | | do not have filter process to do auto login. this is required since squid might have stale login info in cache, and we should not honor it. need to fix auth-snmp to record logins in authdb too (should do that anyway to store the additional snmp information in authdb). | ||||
* | auth-snmp: improve line parser | Timo Teräs | 2010-09-06 | 1 | -18/+41 |
| | | | | get rid of sscanf and use the blob api. | ||||
* | auth-ip: implement logout | Timo Teräs | 2010-09-03 | 4 | -7/+32 |
| | | | | Implement logout function and some minor fixes. | ||||
* | auth-ip: introduce helper tool for authdb management | Timo Teräs | 2010-09-01 | 6 | -16/+216 |
| | | | | fix also some authdb bugs, and make it actually usable. |