Korrekturen im IDS System

Division by 0 in den grafischen Firewallogs unterbunden Backup Loesung fuer IPFire angefangen fehlende Perl Module ins MPFire Paket eingebunden Writeipac auf neue Config Types angepasst git-svn-id: http://svn.ipfire.org/svn/ipfire/trunk@666 ea5c0bd1-69bd-2848-81d8-4f18e57aeed8
2026-04-27 19:23:24 +02:00 · 2007-07-09 16:51:43 +00:00
parent 01413a443f
commit cf29614f54
17 changed files with 390 additions and 159 deletions
--- a/html/cgi-bin/backup.cgi
+++ b/html/cgi-bin/backup.cgi
@@ -0,0 +1,82 @@
+#!/usr/bin/perl
+#
+# IPFire CGIs
+#
+# This code is distributed under the terms of the GPL
+#
+# (c) The IPFire Team
+
+use strict;
+# enable only the following on debugging purpose
+use warnings;
+use CGI::Carp 'fatalsToBrowser';
+
+require '/var/ipfire/general-functions.pl';
+require "${General::swroot}/lang.pl";
+require "${General::swroot}/header.pl";
+
+my %color = ();
+my %mainsettings = ();
+my %backupsettings = ();
+my %checked = ();
+my $message = "";
+my $errormessage = "";
+my @backups = `cd /var/ipfire/backup/ && ls *.ipf`;
+
+
+&General::readhash("${General::swroot}/main/settings", \%mainsettings);
+&General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color);
+
+&Header::showhttpheaders();
+&Header::getcgihash(\%backupsettings);
+
+&Header::openpage($Lang::tr{'backup'}, 1, "");
+&Header::openbigbox('100%', 'left', '', $errormessage);
+
+############################################################################################################################
+######################################## Scanne Verzeichnisse nach Mp3 Dateien #############################################
+
+if ( $backupsettings{'ACTION'} eq "backup" )
+{
+ if ( $backupsettings{'BACKUPLOGS'} eq "include" ){system("/usr/local/bin/backupctrl include");}
+ else {system("/usr/local/bin/backupctrl exclude");}
+}
+
+############################################################################################################################
+########################################### rekursiv nach neuen Mp3s Scannen ##############################################ä
+
+if ( $message ne "" )	{	print "<font color='red'>$message</font>"; }
+
+&Header::openbox('100%', 'center', $Lang::tr{'backup'});
+
+print <<END
+<form method='post' action='$ENV{'SCRIPT_NAME'}'>
+<table width='95%' cellspacing='0'>
+<tr><td align='left' width='40%'>$Lang::tr{'logs'}</td><td align='left'>include Logfiles <input type='radio' name='BACKUPLOGS' value='include' checked='checked'/>/
+																									                                       <input type='radio' name='BACKUPLOGS' value='exclude'/> exclude Logfiles</td></tr>
+<tr><td align='center' colspan='2'><input type='hidden' name='ACTION' value='backup' />
+                              <input type='image' alt='$Lang::tr{'Scan for Files'}' title='$Lang::tr{'Scan for Files'}' src='/images/edit-find.png' /></td></tr>																				
+</table>
+</form>
+END
+;
+&Header::closebox();
+
+&Header::openbox('100%', 'center', $Lang::tr{'backups'});
+
+print <<END
+<form method='post' action='$ENV{'SCRIPT_NAME'}'>
+<table width='95%' cellspacing='0'>
+END
+;
+foreach (@backups){
+print "<tr><td align='left' width='40%'>$Lang::tr{'backup from'}</td><td align='left'>$_</td></tr>";
+}
+print <<END													
+</table>
+</form>
+END
+;
+&Header::closebox();
+&Header::closebigbox();
+&Header::closepage();
--- a/html/cgi-bin/ids.cgi
+++ b/html/cgi-bin/ids.cgi
@@ -52,7 +52,7 @@ $snortsettings{'INSTALLMD5'} = '';
 &Header::getcgihash(\%snortsettings, {'wantfile' => 1, 'filevar' => 'FH'});

 ####################### Added for snort rules control #################################
-my $snortrulepath;
+my $snortrulepath; # change to "/etc/snort/rules" - maniac
 my @snortconfig;
 my $restartsnortrequired = 0;
 my %snortrules;
@@ -75,9 +75,14 @@ if (-e "/etc/snort/snort.conf") {

 	# Loop over each line
 	foreach my $line (@snortconfig) {
-		# Trim the line
+	# Trim the line
 		chomp $line;

+ #   my @rules = `ls $snortrulepath`;     With this loop the rule might be display with correct rulepath set
+ # 	foreach my $line (@rules) {
+ # 	# Trim the line
+ #		chomp $line;
+
 		# Check for a line with .rules
 		if ($line =~ /\.rules$/) {
 			# Parse out rule file name
@@ -448,155 +453,156 @@ if ($results ne '') {

 &Header::closebox();
 ####################### Added for snort rules control #################################
-if ( -e "${General::swroot}/snort/enable" || -e "${General::swroot}/snort/enable_green" || -e "${General::swroot}/snort/enable_blue" || -e "${General::swroot}/snort/enable_orange" ) {
-	&Header::openbox('100%', 'LEFT', $Lang::tr{'intrusion detection system rules'});
-		# Output display table for rule files
-		print "<TABLE width='100%'><TR><TD VALIGN='TOP'><TABLE>";
-		
-		print "<form method='post'>";
+#if ( -e "${General::swroot}/snort/enable" || -e "${General::swroot}/snort/enable_green" || -e "${General::swroot}/snort/enable_blue" || -e "${General::swroot}/snort/enable_orange" ) {
+#	&Header::openbox('100%', 'LEFT', $Lang::tr{'intrusion detection system rules'});
+#		# Output display table for rule files
+#		print "<TABLE width='100%'><TR><TD VALIGN='TOP'><TABLE>";
+#		
+#		print "<form method='post'>";
+#
+#		# Local vars
+#		my $ruledisplaycnt = 1;
+#		my $rulecnt = keys %snortrules;
+#		$rulecnt++;
+#		$rulecnt = $rulecnt / 2;
+#
+#		# Loop over each rule file
+#		foreach my $rulefile (sort keys(%snortrules)) {
+#			my $rulechecked = '';
+#
+#			# Check if reached half-way through rule file rules to start new column
+# 		if ($ruledisplaycnt > $rulecnt) {
+#				print "</TABLE></TD><TD VALIGN='TOP'><TABLE>";
+#				$ruledisplaycnt = 0;
+#			}
+#
+#			# Check if rule file is enabled
+#			if ($snortrules{$rulefile}{"State"} eq 'Enabled') {
+#				$rulechecked = 'CHECKED';
+#			}
+#
+#			# Create rule file link, vars array, and display flag
+#			my $rulefilelink = "?RULEFILE=$rulefile";
+#			my $rulefiletoclose = '';
+#			my @queryvars = ();
+#			my $displayrulefilerules = 0;
+#
+#			# Check for passed in query string
+#			if ($ENV{'QUERY_STRING'}) {
+#				# Split out vars
+#				@queryvars = split(/\&/, $ENV{'QUERY_STRING'});
+#
+#				# Loop over values
+#				foreach $value (@queryvars) {
+#					# Split out var pairs
+#					($var, $linkedrulefile) = split(/=/, $value);
+#
+#					# Check if var is 'RULEFILE'
+#					if ($var eq 'RULEFILE') {
+#						# Check if rulefile equals linkedrulefile
+#						if ($rulefile eq $linkedrulefile) {
+#							# Set display flag
+#							$displayrulefilerules = 1;
+#
+#							# Strip out rulefile from rulefilelink
+#							$rulefilelink =~ s/RULEFILE=$linkedrulefile//g;
+#						} else {
+#							# Add linked rule file to rulefilelink
+#							$rulefilelink .= "&RULEFILE=$linkedrulefile";
+#						}
+#					}
+#				}
+#			}
+#
+#			# Strip out extra & & ? from rulefilelink
+#			$rulefilelink =~ s/^\?\&/\?/i;
+#
+#			# Check for a single '?' and replace with page for proper link display
+#			if ($rulefilelink eq '?') {
+#				$rulefilelink = "ids.cgi";
+#			}
+#
+#			# Output rule file name and checkbox
+#			print "<TR><TD CLASS='base' VALIGN='TOP'><INPUT TYPE='checkbox' NAME='SNORT_RULE_$rulefile' $rulechecked> <A HREF='$rulefilelink'>$rulefile</A></TD></TR>";
+#			print "<TR><TD CLASS='base' VALIGN='TOP'>";
+#
+#			# Check for empty 'Description'
+#			if ($snortrules{$rulefile}{'Description'} eq '') {
+#				print "<TABLE WIDTH='100%'><TR><TD CLASS='base'>No description available</TD></TR>";
+#			} else {
+#				# Output rule file 'Description'
+#				print "<TABLE WIDTH='100%'><TR><TD CLASS='base'>$snortrules{$rulefile}{'Description'}</TD></TR>";
+#			}
+#
+#			# Check for display flag
+#			if ($displayrulefilerules) {
+#				# Rule file definition rule display
+#				print "<TR><TD CLASS='base' VALIGN='TOP'><TABLE border=1><TR>";
+#
+#				# Local vars
+#			 	my $ruledefdisplaycnt = 0;
+#				my $ruledefcnt = keys %{$snortrules{$rulefile}{"Definition"}};
+#				$ruledefcnt++;
+#				$ruledefcnt = $ruledefcnt / 2;
+#
+#				# Loop over rule file rules
+#				foreach my $ruledef (sort {$a <=> $b} keys(%{$snortrules{$rulefile}{"Definition"}})) {
+#					# Local vars
+#					my $ruledefchecked = '';
+#
+#					# If have display 2 rules, start new row
+#					if (($ruledefdisplaycnt % 2) == 0) {
+#						print "</TR><TR>";
+#						$ruledefdisplaycnt = 0;
+#					}
+#
+#					# Check for rules state
+#					if ($snortrules{$rulefile}{'Definition'}{$ruledef}{'State'} eq 'Enabled') {
+#						$ruledefchecked = 'CHECKED';
+#					}
+#
+#					# Create rule file rule's checkbox
+#					$checkboxname = "SNORT_RULE_$rulefile";
+#					$checkboxname .= "_$ruledef";
+#					print "<TD CLASS='base'><INPUT TYPE='checkbox' NAME='$checkboxname' $ruledefchecked> $snortrules{$rulefile}{'Definition'}{$ruledef}{'Description'}</TD>";
+#
+#					# Increment count
+#					$ruledefdisplaycnt++;
+#				}
+#	
+#				# If do not have second rule for row, create empty cell
+#				if (($ruledefdisplaycnt % 2) != 0) {
+#					print "<TD CLASS='base'></TD>";
+#				}
+#
+#				# Close display table
+#				print "</TR></TABLE></TD></TR>";
+#			}
+#
+#			# Close display table
+#			print "</TABLE>";
+#
+#			# Increment ruledisplaycnt
+#			$ruledisplaycnt++;
+#		}
+#
+#	print "</TD></TR></TABLE></TD></TR></TABLE>";
+#	print <<END
+#<table width='100%'>
+#<tr>
+#	<td width='33%'>&nbsp;</td>
+#	<td width='33%' align='center'><input type='submit' name='ACTION' value='$Lang::tr{'update'}' /></td>
+#	<td width='33%'>
+#		&nbsp; <!-- space for future online help link -->
+#	</td>
+#</tr>
+#</table>
+#</form>
+#END
+#;
+#	&Header::closebox();
+#}

-		# Local vars
-		my $ruledisplaycnt = 1;
-		my $rulecnt = keys %snortrules;
-		$rulecnt++;
-		$rulecnt = $rulecnt / 2;
-
-		# Loop over each rule file
-		foreach my $rulefile (sort keys(%snortrules)) {
-			my $rulechecked = '';
-
-			# Check if reached half-way through rule file rules to start new column
-			if ($ruledisplaycnt > $rulecnt) {
-				print "</TABLE></TD><TD VALIGN='TOP'><TABLE>";
-				$ruledisplaycnt = 0;
-			}
-
-			# Check if rule file is enabled
-			if ($snortrules{$rulefile}{"State"} eq 'Enabled') {
-				$rulechecked = 'CHECKED';
-			}
-
-			# Create rule file link, vars array, and display flag
-			my $rulefilelink = "?RULEFILE=$rulefile";
-			my $rulefiletoclose = '';
-			my @queryvars = ();
-			my $displayrulefilerules = 0;
-
-			# Check for passed in query string
-			if ($ENV{'QUERY_STRING'}) {
-				# Split out vars
-				@queryvars = split(/\&/, $ENV{'QUERY_STRING'});
-
-				# Loop over values
-				foreach $value (@queryvars) {
-					# Split out var pairs
-					($var, $linkedrulefile) = split(/=/, $value);
-
-					# Check if var is 'RULEFILE'
-					if ($var eq 'RULEFILE') {
-						# Check if rulefile equals linkedrulefile
-						if ($rulefile eq $linkedrulefile) {
-							# Set display flag
-							$displayrulefilerules = 1;
-
-							# Strip out rulefile from rulefilelink
-							$rulefilelink =~ s/RULEFILE=$linkedrulefile//g;
-						} else {
-							# Add linked rule file to rulefilelink
-							$rulefilelink .= "&RULEFILE=$linkedrulefile";
-						}
-					}
-				}
-			}
-
-			# Strip out extra & & ? from rulefilelink
-			$rulefilelink =~ s/^\?\&/\?/i;
-
-			# Check for a single '?' and replace with page for proper link display
-			if ($rulefilelink eq '?') {
-				$rulefilelink = "ids.cgi";
-			}
-
-			# Output rule file name and checkbox
-			print "<TR><TD CLASS='base' VALIGN='TOP'><INPUT TYPE='checkbox' NAME='SNORT_RULE_$rulefile' $rulechecked> <A HREF='$rulefilelink'>$rulefile</A></TD></TR>";
-			print "<TR><TD CLASS='base' VALIGN='TOP'>";
-
-			# Check for empty 'Description'
-			if ($snortrules{$rulefile}{'Description'} eq '') {
-				print "<TABLE WIDTH='100%'><TR><TD CLASS='base'>No description available</TD></TR>";
-			} else {
-				# Output rule file 'Description'
-				print "<TABLE WIDTH='100%'><TR><TD CLASS='base'>$snortrules{$rulefile}{'Description'}</TD></TR>";
-			}
-
-			# Check for display flag
-			if ($displayrulefilerules) {
-				# Rule file definition rule display
-				print "<TR><TD CLASS='base' VALIGN='TOP'><TABLE border=1><TR>";
-
-				# Local vars
-			 	my $ruledefdisplaycnt = 0;
-				my $ruledefcnt = keys %{$snortrules{$rulefile}{"Definition"}};
-				$ruledefcnt++;
-				$ruledefcnt = $ruledefcnt / 2;
-
-				# Loop over rule file rules
-				foreach my $ruledef (sort {$a <=> $b} keys(%{$snortrules{$rulefile}{"Definition"}})) {
-					# Local vars
-					my $ruledefchecked = '';
-
-					# If have display 2 rules, start new row
-					if (($ruledefdisplaycnt % 2) == 0) {
-						print "</TR><TR>";
-						$ruledefdisplaycnt = 0;
-					}
-
-					# Check for rules state
-					if ($snortrules{$rulefile}{'Definition'}{$ruledef}{'State'} eq 'Enabled') {
-						$ruledefchecked = 'CHECKED';
-					}
-
-					# Create rule file rule's checkbox
-					$checkboxname = "SNORT_RULE_$rulefile";
-					$checkboxname .= "_$ruledef";
-					print "<TD CLASS='base'><INPUT TYPE='checkbox' NAME='$checkboxname' $ruledefchecked> $snortrules{$rulefile}{'Definition'}{$ruledef}{'Description'}</TD>";
-
-					# Increment count
-					$ruledefdisplaycnt++;
-				}
-	
-				# If do not have second rule for row, create empty cell
-				if (($ruledefdisplaycnt % 2) != 0) {
-					print "<TD CLASS='base'></TD>";
-				}
-
-				# Close display table
-				print "</TR></TABLE></TD></TR>";
-			}
-
-			# Close display table
-			print "</TABLE>";
-
-			# Increment ruledisplaycnt
-			$ruledisplaycnt++;
-		}
-
-	print "</TD></TR></TABLE></TD></TR></TABLE>";
-	print <<END
-<table width='100%'>
-<tr>
-	<td width='33%'>&nbsp;</td>
-	<td width='33%' align='center'><input type='submit' name='ACTION' value='$Lang::tr{'update'}' /></td>
-	<td width='33%'>
-		&nbsp; <!-- space for future online help link -->
-	</td>
-</tr>
-</table>
-</form>
-END
-;
-	&Header::closebox();
-}
 #######################  End added for snort rules control  #################################
 &Header::closebigbox();
 &Header::closepage();
--- a/html/cgi-bin/logs.cgi/firewalllogip.dat
+++ b/html/cgi-bin/logs.cgi/firewalllogip.dat
@@ -423,6 +423,7 @@ my $show=0;

 my $s;
 my $percent;
+
 for($s=0;$s<$lines;$s++)
 {
  $show++;
@@ -466,6 +467,8 @@ if ( ($color % 10) == 8 ){print "<TR BGCOLOR='$color{'color8'}'>\n";}
 if ( ($color % 10) == 9 ){print "<TR BGCOLOR='$color{'color9'}'>\n";}
 if ( ($color % 10) == 0 ){print "<TR BGCOLOR='$color{'color10'}'>\n";}

+if ( $linesjc ne "0")
+{
 my $dif;
 $dif = $linesjc - $total;
 $percent = $dif * 100 / $linesjc;
@@ -480,6 +483,7 @@ print <<END
 END
 ;
 }
+}
 print <<END
 </TABLE>
 END
--- a/html/cgi-bin/logs.cgi/firewalllogport.dat
+++ b/html/cgi-bin/logs.cgi/firewalllogport.dat
@@ -459,6 +459,8 @@ if ( ($color % 10) == 8 ){print "<TR BGCOLOR='$color{'color8'}'>\n";}
 if ( ($color % 10) == 9 ){print "<TR BGCOLOR='$color{'color9'}'>\n";}
 if ( ($color % 10) == 0 ){print "<TR BGCOLOR='$color{'color10'}'>\n";}

+if ( $linesjc ne "0")
+{
 my $dif;
 $dif = $linesjc - $total;
 $percent = $dif * 100 / $linesjc;
@@ -472,6 +474,7 @@ print <<END
 END
 ;
 }
+}
 print <<END
 </TABLE>
 END