X-Git-Url: http://git.ipfire.org/?a=blobdiff_plain;f=html%2Fcgi-bin%2Fids.cgi;h=035ee83ebdaaf4d280f40043eb33d6db23423047;hb=ac1cfefab236b73ed52909e14f43eaffc8d6914e;hp=56c9c77f65d4b2f1fb0e2ec5e4b3d0e97a07d521;hpb=7ac38dc92777a4a9f3b0d6151befe8f446e2a031;p=people%2Fteissler%2Fipfire-2.x.git diff --git a/html/cgi-bin/ids.cgi b/html/cgi-bin/ids.cgi index 56c9c77f6..035ee83eb 100644 --- a/html/cgi-bin/ids.cgi +++ b/html/cgi-bin/ids.cgi @@ -1,313 +1,313 @@ -#!/usr/bin/perl -# -# SmoothWall CGIs -# -# This code is distributed under the terms of the GPL -# -# (c) The SmoothWall Team -# -# $Id: ids.cgi,v 1.8.2.18 2005/07/27 21:35:22 franck78 Exp $ -# - -use LWP::UserAgent; -use File::Copy; -use File::Temp qw/ tempfile tempdir /; -use strict; - -# enable only the following on debugging purpose -#use warnings; -#use CGI::Carp 'fatalsToBrowser'; - -require 'CONFIG_ROOT/general-functions.pl'; -require "${General::swroot}/lang.pl"; -require "${General::swroot}/header.pl"; - -my %snortsettings=(); -my %checked=(); -my %netsettings=(); -our $errormessage = ''; -our $md5 = '0';# not '' to avoid displaying the wrong message when INSTALLMD5 not set -our $realmd5 = ''; -our $results = ''; -our $tempdir = ''; -our $url=''; -&General::readhash("${General::swroot}/ethernet/settings", \%netsettings); - -&Header::showhttpheaders(); - -$snortsettings{'ENABLE_SNORT'} = 'off'; -$snortsettings{'ENABLE_SNORT_GREEN'} = 'off'; -$snortsettings{'ENABLE_SNORT_BLUE'} = 'off'; -$snortsettings{'ENABLE_SNORT_ORANGE'} = 'off'; -$snortsettings{'ACTION'} = ''; -$snortsettings{'RULESTYPE'} = ''; -$snortsettings{'OINKCODE'} = ''; -$snortsettings{'INSTALLDATE'} = ''; -$snortsettings{'INSTALLMD5'} = ''; - -&Header::getcgihash(\%snortsettings, {'wantfile' => 1, 'filevar' => 'FH'}); - -if ($snortsettings{'RULESTYPE'} eq 'subscripted') { - $url="http://www.snort.org/pub-bin/oinkmaster.cgi/$snortsettings{'OINKCODE'}/snortrules-snapshot-2.3_s.tar.gz"; -} else { - $url="http://www.snort.org/pub-bin/oinkmaster.cgi/$snortsettings{'OINKCODE'}/snortrules-snapshot-2.3.tar.gz"; -} - -if ($snortsettings{'ACTION'} eq $Lang::tr{'save'}) -{ - $errormessage = $Lang::tr{'invalid input for oink code'} unless ( - ($snortsettings{'OINKCODE'} =~ /^[a-z0-9]+$/) || - ($snortsettings{'RULESTYPE'} eq 'nothing' ) ); - - &General::writehash("${General::swroot}/snort/settings", \%snortsettings); - if ($snortsettings{'ENABLE_SNORT'} eq 'on') - { - system ('/bin/touch', "${General::swroot}/snort/enable"); - } else { - unlink "${General::swroot}/snort/enable"; - } - if ($snortsettings{'ENABLE_SNORT_GREEN'} eq 'on') - { - system ('/bin/touch', "${General::swroot}/snort/enable_green"); - } else { - unlink "${General::swroot}/snort/enable_green"; - } - if ($snortsettings{'ENABLE_SNORT_BLUE'} eq 'on') - { - system ('/bin/touch', "${General::swroot}/snort/enable_blue"); - } else { - unlink "${General::swroot}/snort/enable_blue"; - } - if ($snortsettings{'ENABLE_SNORT_ORANGE'} eq 'on') - { - system ('/bin/touch', "${General::swroot}/snort/enable_orange"); - } else { - unlink "${General::swroot}/snort/enable_orange"; - } - - system('/usr/local/bin/restartsnort','red','orange','blue','green'); -} else { - # INSTALLMD5 is not in the form, so not retrieved by getcgihash - &General::readhash("${General::swroot}/snort/settings", \%snortsettings); -} - -if ($snortsettings{'ACTION'} eq $Lang::tr{'download new ruleset'}) { - $md5 = &getmd5; - if (($snortsettings{'INSTALLMD5'} ne $md5) && defined $md5 ) { - chomp($md5); - my $filename = &downloadrulesfile(); - if (defined $filename) { - # Check MD5sum - $realmd5 = `/usr/bin/md5sum $filename`; - chomp ($realmd5); - $realmd5 =~ s/^(\w+)\s.*$/$1/; - if ($md5 ne $realmd5) { - $errormessage = "$Lang::tr{'invalid md5sum'}"; - } else { - $results = "$Lang::tr{'installed updates'}\n
"; - $results .=`/usr/local/bin/oinkmaster.pl -s -u file://$filename -C /var/ipcop/snort/oinkmaster.conf -o /etc/snort 2>&1`; - $results .= ""; - } - unlink ($filename); - } - } -} - -$checked{'ENABLE_SNORT'}{'off'} = ''; -$checked{'ENABLE_SNORT'}{'on'} = ''; -$checked{'ENABLE_SNORT'}{$snortsettings{'ENABLE_SNORT'}} = "checked='checked'"; -$checked{'ENABLE_SNORT_GREEN'}{'off'} = ''; -$checked{'ENABLE_SNORT_GREEN'}{'on'} = ''; -$checked{'ENABLE_SNORT_GREEN'}{$snortsettings{'ENABLE_SNORT_GREEN'}} = "checked='checked'"; -$checked{'ENABLE_SNORT_BLUE'}{'off'} = ''; -$checked{'ENABLE_SNORT_BLUE'}{'on'} = ''; -$checked{'ENABLE_SNORT_BLUE'}{$snortsettings{'ENABLE_SNORT_BLUE'}} = "checked='checked'"; -$checked{'ENABLE_SNORT_ORANGE'}{'off'} = ''; -$checked{'ENABLE_SNORT_ORANGE'}{'on'} = ''; -$checked{'ENABLE_SNORT_ORANGE'}{$snortsettings{'ENABLE_SNORT_ORANGE'}} = "checked='checked'"; -$checked{'RULESTYPE'}{'nothing'} = ''; -$checked{'RULESTYPE'}{'registered'} = ''; -$checked{'RULESTYPE'}{'subscripted'} = ''; -$checked{'RULESTYPE'}{$snortsettings{'RULESTYPE'}} = "checked='checked'"; - -&Header::openpage($Lang::tr{'intrusion detection system'}, 1, ''); - -&Header::openbigbox('100%', 'left', '', $errormessage); - -if ($errormessage) { - &Header::openbox('100%', 'left', $Lang::tr{'error messages'}); - print "
- GREEN Snort | -- BLUE Snort | - -END -; -} -if ($netsettings{'ORANGE_DEV'} ne '') { -print <- ORANGE Snort | - -END -; -} -print <- RED Snort | - -
$Lang::tr{'ids rules update'} | -
- $Lang::tr{'no'} | -
- $Lang::tr{'registered user rules'} | -
- $Lang::tr{'subscripted user rules'} | -
- $Lang::tr{'ids rules license'} http://www.snort.org. - - $Lang::tr{'ids rules license2'} USER PREFERENCES, $Lang::tr{'ids rules license3'} - |
-
Oink Code: | -
-END -; - -if ($snortsettings{'INSTALLMD5'} eq $md5) { - print " $Lang::tr{'rules already up to date'} | "; -} else { - if ( $snortsettings{'ACTION'} eq $Lang::tr{'download new ruleset'} && $md5 eq $realmd5 ) { - $snortsettings{'INSTALLMD5'} = $realmd5; - $snortsettings{'INSTALLDATE'} = `/bin/date +'%Y-%m-%d'`; - &General::writehash("${General::swroot}/snort/settings", \%snortsettings); - } - print " $Lang::tr{'updates installed'}: $snortsettings{'INSTALLDATE'}"; -} -print <
- | - | - - | -
"; + $results .=`/usr/local/bin/oinkmaster.pl -s -u file://$filename -C /var/ipcop/snort/oinkmaster.conf -o /etc/snort 2>&1`; + $results .= ""; + } + unlink ($filename); + } + } +} + +$checked{'ENABLE_SNORT'}{'off'} = ''; +$checked{'ENABLE_SNORT'}{'on'} = ''; +$checked{'ENABLE_SNORT'}{$snortsettings{'ENABLE_SNORT'}} = "checked='checked'"; +$checked{'ENABLE_SNORT_GREEN'}{'off'} = ''; +$checked{'ENABLE_SNORT_GREEN'}{'on'} = ''; +$checked{'ENABLE_SNORT_GREEN'}{$snortsettings{'ENABLE_SNORT_GREEN'}} = "checked='checked'"; +$checked{'ENABLE_SNORT_BLUE'}{'off'} = ''; +$checked{'ENABLE_SNORT_BLUE'}{'on'} = ''; +$checked{'ENABLE_SNORT_BLUE'}{$snortsettings{'ENABLE_SNORT_BLUE'}} = "checked='checked'"; +$checked{'ENABLE_SNORT_ORANGE'}{'off'} = ''; +$checked{'ENABLE_SNORT_ORANGE'}{'on'} = ''; +$checked{'ENABLE_SNORT_ORANGE'}{$snortsettings{'ENABLE_SNORT_ORANGE'}} = "checked='checked'"; +$checked{'RULESTYPE'}{'nothing'} = ''; +$checked{'RULESTYPE'}{'registered'} = ''; +$checked{'RULESTYPE'}{'subscripted'} = ''; +$checked{'RULESTYPE'}{$snortsettings{'RULESTYPE'}} = "checked='checked'"; + +&Header::openpage($Lang::tr{'intrusion detection system'}, 1, ''); + +&Header::openbigbox('100%', 'left', '', $errormessage); + +if ($errormessage) { + &Header::openbox('100%', 'left', $Lang::tr{'error messages'}); + print "
+ GREEN Snort | ++ BLUE Snort | + +END +; +} +if ($netsettings{'ORANGE_DEV'} ne '') { +print <+ ORANGE Snort | + +END +; +} +print <+ RED Snort | + +
$Lang::tr{'ids rules update'} | +
+ $Lang::tr{'no'} | +
+ $Lang::tr{'registered user rules'} | +
+ $Lang::tr{'subscripted user rules'} | +
+ $Lang::tr{'ids rules license'} http://www.snort.org. + + $Lang::tr{'ids rules license2'} USER PREFERENCES, $Lang::tr{'ids rules license3'} + |
+
Oink Code: | +
+END +; + +if ($snortsettings{'INSTALLMD5'} eq $md5) { + print " $Lang::tr{'rules already up to date'} | "; +} else { + if ( $snortsettings{'ACTION'} eq $Lang::tr{'download new ruleset'} && $md5 eq $realmd5 ) { + $snortsettings{'INSTALLMD5'} = $realmd5; + $snortsettings{'INSTALLDATE'} = `/bin/date +'%Y-%m-%d'`; + &General::writehash("${General::swroot}/snort/settings", \%snortsettings); + } + print " $Lang::tr{'updates installed'}: $snortsettings{'INSTALLDATE'}"; +} +print <
+ | + | + + | +