]>
git.ipfire.org Git - thirdparty/sarg.git/blob - authfail.c
2 * SARG Squid Analysis Report Generator http://sarg.sourceforge.net
6 * please look at http://sarg.sourceforge.net/donations.php
8 * http://sourceforge.net/projects/sarg/forums/forum/363374
9 * ---------------------------------------------------------------------
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License as published by
13 * the Free Software Foundation; either version 2 of the License, or
14 * (at your option) any later version.
16 * This program is distributed in the hope that it will be useful,
17 * but WITHOUT ANY WARRANTY; without even the implied warranty of
18 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
19 * GNU General Public License for more details.
21 * You should have received a copy of the GNU General Public License
22 * along with this program; if not, write to the Free Software
23 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111, USA.
27 #include "include/conf.h"
28 #include "include/defs.h"
30 void authfail_report(void)
32 FILE *fp_in
= NULL
, *fp_ou
= NULL
;
36 char authfail_in
[MAXLEN
];
52 struct getwordstruct gwarea
;
54 struct userinfostruct
*uinfo
;
57 if(DataFile
[0] != '\0') return;
63 snprintf(tmp4
,sizeof(tmp4
),"%s/authfail.log.unsort",tmp
);
65 if(authfail_count
== 0) {
70 snprintf(authfail_in
,sizeof(authfail_in
),"%s/authfail.log",tmp
);
71 snprintf(report
,sizeof(report
),"%s/authfail.html",outdirname
);
73 snprintf(csort
,sizeof(csort
),"sort -b -T \"%s\" -k 3,3 -k 5,5 -o \"%s\" \"%s\"", tmp
, authfail_in
, tmp4
);
74 cstatus
=system(csort
);
75 if (!WIFEXITED(cstatus
) || WEXITSTATUS(cstatus
)) {
76 debuga(_("sort command return status %d\n"),WEXITSTATUS(cstatus
));
77 debuga(_("sort command: %s\n"),csort
);
80 if((fp_in
=MY_FOPEN(authfail_in
,"r"))==NULL
) {
81 debuga(_("(authfail) Cannot open file %s\n"),authfail_in
);
82 debuga(_("sort command: %s\n"),csort
);
86 debuga(_("Cannot delete %s - %s\n"),tmp4
,strerror(errno
));
90 if((fp_ou
=MY_FOPEN(report
,"w"))==NULL
) {
91 debuga(_("(authfail) Cannot open file %s\n"),report
);
95 write_html_header(fp_ou
,(IndexTree
== INDEX_TREE_DATE
) ? 3 : 1,_("Authentication Failures"),HTML_JS_NONE
);
96 fputs("<tr><td class=\"header_c\">",fp_ou
);
97 fprintf(fp_ou
,_("Period: %s"),period
.html
);
98 fputs("</td></tr>\n",fp_ou
);
99 fprintf(fp_ou
,"<tr><th class=\"header_c\">%s</th></tr>\n",_("Authentication Failures"));
100 close_html_header(fp_ou
);
102 fputs("<div class=\"report\"><table cellpadding=\"0\" cellspacing=\"2\">\n",fp_ou
);
103 fprintf(fp_ou
,"<tr><th class=\"header_l\">%s</th><th class=\"header_l\">%s</th><th class=\"header_l\">%s</th><th class=\"header_l\">%s</th></tr>\n",_("USERID"),_("IP/NAME"),_("DATE/TIME"),_("ACCESSED SITE"));
105 if ((line
=longline_create())==NULL
) {
106 debuga(_("Not enough memory to read file %s\n"),authfail_in
);
110 while((buf
=longline_read(fp_in
,line
))!=NULL
) {
111 getword_start(&gwarea
,buf
);
112 if (getword(data
,sizeof(data
),&gwarea
,'\t')<0) {
113 debuga(_("There is a broken date in file %s\n"),authfail_in
);
116 if (getword(hora
,sizeof(hora
),&gwarea
,'\t')<0) {
117 debuga(_("There is a broken time in file %s\n"),authfail_in
);
120 if (getword(user
,sizeof(user
),&gwarea
,'\t')<0) {
121 debuga(_("There is a broken user ID in file %s\n"),authfail_in
);
124 if (getword(ip
,sizeof(ip
),&gwarea
,'\t')<0) {
125 debuga(_("There is a broken IP address in file %s\n"),authfail_in
);
128 if (getword_ptr(buf
,&url
,&gwarea
,'\t')<0) {
129 debuga(_("There is a broken url in file %s\n"),authfail_in
);
132 if (sscanf(data
,"%d/%d/%d",&day
,&month
,&year
)!=3) continue;
133 computedate(year
,month
,day
,&t
);
134 strftime(data
,sizeof(data
),"%x",&t
);
136 uinfo
=userinfo_find_from_id(user
);
138 debuga(_("Unknown user ID %s in file %s\n"),user
,authfail_in
);
149 if(strcmp(ouser
,user
) != 0) {
153 if(strcmp(oip
,ip
) != 0) {
159 if(AuthfailReportLimit
>0) {
160 if(strcmp(ouser2
,uinfo
->label
) == 0) {
164 strcpy(ouser2
,uinfo
->label
);
166 if(count
>= AuthfailReportLimit
)
172 fprintf(fp_ou
,"<td class=\"data2\">%s</td><td class=\"data2\">%s</td>",uinfo
->label
,ip
);
174 fputs("<td class=\"data2\"></td><td class=\"data2\"></td>",fp_ou
);
175 fprintf(fp_ou
,"<td class=\"data2\">%s-%s</td><td class=\"data2\">",data
,hora
);
176 if(BlockIt
[0]!='\0') {
177 fprintf(fp_ou
,"<a href=\"%s%s?url=",wwwDocumentRoot
,BlockIt
);
178 output_html_url(fp_ou
,url
);
179 fputs("\"><img src=\"../images/sarg-squidguard-block.png\"></a> ",fp_ou
);
181 fputs("<a href=\"",fp_ou
);
182 output_html_url(fp_ou
,url
);
184 output_html_string(fp_ou
,url
,100);
185 fputs("</a></td></th>\n",fp_ou
);
188 longline_destroy(&line
);
190 fputs("</table></div>\n",fp_ou
);
191 if (write_html_trailer(fp_ou
)<0)
192 debuga(_("Write error in file %s\n"),report
);
193 if (fclose(fp_ou
)==EOF
)
194 debuga(_("Failed to close file %s - %s\n"),report
,strerror(errno
));
196 if (unlink(authfail_in
)) {
197 debuga(_("Cannot delete %s - %s\n"),authfail_in
,strerror(errno
));