Hi Mike,
Mike McCauley schrieb:
>
> Hi All,
>
> its a nice suggestion of Karl's, and we have now implemented it as an
> additional feature in radacct.cgi. A new version of radacct.cgi is available at
> http://www.open.com.au/radiator/downloads/patches-2.13.1/radacct.cgi
> that allows you to list sessions by Framed-IP-Address.
>
> Please let me know how it goes. I will fix any problems promptly.
> Cheers.
>
thanks you again for your prompt coding!
I'm still missing one important feature:
Remember my first posting, what I really need is a summary of all
used IP addresses and the possibility to drill down.
Because the complains about hacking deliver only time and Source
Ip address. If I have to start with the userlist, I have to probe
or guess what to click to find the IP address of the hack-attack.
Perhaps you can change a little bit this code snippet:
> if ($input{type} eq 'user')
> {
> # Show all sessions for a single user
> &show_user();
> }
> elsif ($input{type} eq 'session_id')
> {
> # Show details of a single session
> &show_session();
> }
> elsif ($input{type} eq 'framed_ip_address')
> {
> # Show details of a single session
> &show_framed_ip_address();
> }
> else
> {
> # Default: list all users
> &show_user_summaries();
> }
!
replace the else clause with something like this:
else
{
if ($IP_or_USER_summary eq 'ip_address'
{
# Default: list all used IP address summaries
&show_ip_summaries();
}
else
{
# Default: list all user summaries
&show_user_summaries();
}
}
of course, you have to code the sub show_ip_summaries()
and to implement one more global flag IP_or_USER_summary.
regards
Charly
P.S. As I can see, Radiator is one of the best supported products
I've ever bought! With this support from Mike on the mailinglist
you need nearly no support contract. Anyway, I decided now to buy
one, just to honour Mikes work!
> On Apr 29, 4:48pm, Karl Gaissmaier wrote:
> > Subject: (RADIATOR) Wishlist: radip-address.cgi
> > Hi Folks,
> >
> > I've sometimes the problem that from my Dialin Server some hack
> > attacks have been started. I get always back the time of the attack
> > and the source IP address of the hacks.
> >
> > It would be nice to have a slightly different radacct.cgi, call
> > it radip-address.cgi, where the primary key is not the Username but
> > the IP-Address. I had a quick look into radacct.cgi and I think
> > for a perl hacker, this is just a work of half an hour to
> > rewrite this to use the ip_address in the function calls
> > of read_file or read_sql and in get_data.
> > And some changes in the href section to replace user by ip_address.
> >
> > This would be quite useful, because then you get first the global
> > list with all used IP Addresses, if you click on one ip address, then
> > you get all sessions with this ip address, with username, session-id
> > and time, and then if you click on the session-id you get the
> > full detail records.
> >
> > Is someone out there who has done this already?
> >
> > regards
> > Charly
> > --
> > Karl Gaissmaier Computing Center,University of Ulm,Germany
> > Email:[EMAIL PROTECTED] Network Administration
> > Tel/Fax: ++49 731 50 22499/22471
> > pgp-key available: http://www.uni-ulm.de/urz/Netzwerk/uuca/keylist.html
> >
> > ===
> > To unsubscribe, email '[EMAIL PROTECTED]' with
> > 'unsubscribe radiator' in the body of the message.
> >-- End of excerpt from Karl Gaissmaier
>
> --
> Mike McCauley [EMAIL PROTECTED]
> Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
> 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
> Phone +61 3 9598-0985 Fax +61 3 9598-0955
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8,
> NT, Rhapsody
> ===
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
--
Karl Gaissmaier Computing Center,University of Ulm,Germany
Email:[EMAIL PROTECTED] Network Administration
Tel/Fax: ++49 731 50 22499/22471
pgp-key available: http://www.uni-ulm.de/urz/Netzwerk/uuca/keylist.html
===
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
