ChipMaster
/
Poor-Mans-IDS
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
The Poor Man's (or Woman's) Intrusion Detection System
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21 Commits
1 Branch
133 KiB
 
 
 
 
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Poor-Mans-IDS/controlpanel/trafficctrl.cpp

201 lines
5.8 KiB
Raw Permalink Blame History 

  1. //////////////////////////////////////////////////////////////////////

  2. // Traffic Montor Control HTTP server

  3. // Written by Jonathan A. Foster <jon@jfpossibilities.com>

  4. // Started August 13th, 2021

  5. // Copyright JF Possibilities, Inc. All rights reserved.

  6. //

  7. // Provide a control panel to manage which domains we want to watch,

  8. // ignore and block.

  9. //////////////////////////////////////////////////////////////////////

  10. // TODO: put the note fields to use (dns,dns_wild)

  11. // TODO: Any purpose in wild-card selection "accepted" host names?

  12. #include <stdlib.h>

  13. #include <string>

  14. #include <stdexcept>

  15. #include <iostream>

  16. 

  17. /// C++CMS/DB ///

  18. 

  19. #include <cppcms/service.h>

  20. #include <cppcms/applications_pool.h>

  21. #include <cppcms/mount_point.h>

  22. #include <cppcms/url_dispatcher.h>

  23. #include <cppcms/url_mapper.h>

  24. #include <cppcms/http_request.h>

  25. #include <cppcms/http_response.h>

  26. #include <cppdb/frontend.h>

  27. 

  28. /// Our app ///

  29. 

  30. #include "../strutil.h"

  31. #include "data.h"

  32. #include "nametools.h"

  33. 

  34. /// Build flags ///

  35. 

  36. // TODO: better application of C++CMS booster logging

  37. //#define DEBUGGIN

  38. 

  39. 

  40. 

  41. //////////////////////////////////////////////////////////////////////

  42. // C++CMS App to manage the state of all known domain names.

  43. //////////////////////////////////////////////////////////////////////

  44. 

  45. const std::string filter_titles[] = { "Undecided", "Accepted", "Blocked" };

  46. const std::string       actions[] = { "Reset",     "Accept",  "Block" };

  47.       std::string        root_uri = "";

  48. 

  49. struct app: public cppcms::application {

  50.   std::auto_ptr<cppdb::session> sql;

  51.   int items_per_page;

  52. 

  53. 

  54. 

  55.   std::string numlist(const std::string &field) {

  56.     std::string r;

  57.     const cppcms::http::request::form_type &POST = request().post();

  58.     for(

  59.       cppcms::http::request::form_type::const_iterator it = POST.find(field);

  60.       it!=POST.end() && it->first==field;

  61.       it++

  62.     ) {

  63.       if(it->second!="") {

  64.           if(r!="") r+=",";

  65.           r+="'"+sql->escape(it->second)+"'";

  66.       }

  67.     }

  68.     return r;

  69.   }

  70. 

  71. 

  72. 

  73.   void list(Domain::STATUS sid) {

  74.     int            i;

  75.     std::string    s;

  76.     DomainList     c;

  77.     cppdb::result  r;

  78. 

  79.     // TODO: put this someplace else?

  80. 

  81.     /// Form processing ///

  82. 

  83.     if(request().request_method()=="POST") {

  84.       c.op = request().post("op");

  85.       // nothing to do without a valid "op"

  86.       if(c.op=="0" || c.op=="1" || c.op=="2") {

  87.         // eliminate NOP busywork

  88.         if((s=numlist("id"))!="" && sid!=atoi(c.op.c_str())) {

  89.           *sql << "UPDATE dns SET status="+c.op+" WHERE name IN ("+s+")"

  90.                << cppdb::exec;

  91.         }

  92.         if(s=="*" || s=="*.") {

  93.           c.error = "'*' and '*.' are not acceptable.";

  94.         } else if((s=request().post("domain"))!="") {

  95.           // wild card handling

  96.           if(s.substr(0,2)=="*.") {

  97.             s = s.substr(2);

  98.             if(c.op=="0")

  99.               c.error = "Wild cards have no value with \"undecided\".";

  100.             else

  101.               *sql << "INSERT INTO dns_wild (name,status) VALUES (?,?)"

  102.                    << s << c.op

  103.                    << cppdb::exec;

  104.           }

  105.           // regardless move all existing matches to the specified status.

  106.           *sql << "UPDATE dns SET status=? "

  107.                   "WHERE status=? AND (name=? OR name LIKE ?)"

  108.                << c.op << sid << s << ("%."+s)

  109.                << cppdb::exec;

  110.         }

  111.       }

  112.     }

  113. 

  114.     /// Produce list of names of the desired STATUS ///

  115. 

  116.     c.filter = filter_titles[sid];

  117.     s = request().get("pg");

  118.     if(s=="")

  119.       c.page = 1;

  120.     else

  121.       c.page = atoi(s.c_str());

  122.     if(c.page < 1 || c.page > 999999) c.page = 1;

  123.     r = *sql << "SELECT name, decided, status FROM dns WHERE status=? "

  124.                 "LIMIT "+str((c.page-1)*items_per_page)+","+str(items_per_page)

  125.              << sid;

  126.     for(i = c.list.size(); r.next(); i++) {

  127.       c.list.resize(i+1);

  128.       r >> c.list[i].name >> c.list[i].decided >> c.list[i].status;

  129.     }

  130.     r = *sql << "SELECT count(*) FROM dns WHERE status=?" << sid << cppdb::row;

  131.     r >> c.count;

  132.     c.page_size = items_per_page;

  133.     c.pages     = (c.count+items_per_page-1)/items_per_page;

  134.     render("mainskin", "domain_list", c);

  135.   }

  136. 

  137. 

  138. 

  139.   void undecided() { list(Domain::undecided); }

  140.   void accepted()  { list(Domain::accepted ); }

  141.   void blocked()   { list(Domain::blocked  ); }

  142. 

  143. 

  144. 

  145.   app(cppcms::service &s): cppcms::application(s), items_per_page(50) {

  146. #ifdef DEBUGGIN

  147. std::cerr << "spawning app object" << std::endl;

  148. #endif

  149.     sql.reset(new cppdb::session());

  150.     sql->open(settings().get<std::string>("trafficctrl.db"));

  151. 

  152.         mapper().root(root_uri);

  153.         mapper().assign("blocked",     "/blocked");

  154.     dispatcher().assign("/blocked/?",  &app::blocked,   this);

  155.         mapper().assign("accepted",    "/accepted");

  156.     dispatcher().assign("/accepted/?", &app::accepted,  this);

  157.         mapper().assign("");

  158.     dispatcher().assign("/?",          &app::undecided, this);

  159. 

  160.   }

  161. 

  162.   // logging

  163.   void main(const std::string url) {

  164. #ifdef DEBUGGIN

  165. std::cerr << "request: " << url                     << '\n'

  166.           << "   INFO: " << request().path_info()   << '\n'

  167.           << " SCRIPT: " << request().script_name() << '\n'

  168.           << std::endl;

  169. #endif

  170.     cppcms::application::main(url);

  171.   }

  172. 

  173. };

  174. 

  175. 

  176. 

  177. //////////////////////////////////////////////////////////////////////

  178. // main() - Launch C++CMS with my test app on "/"

  179. //////////////////////////////////////////////////////////////////////

  180. 

  181. int main(int argc, char **args) {

  182.   // create server object

  183.   cppcms::service srv(argc, args);

  184.   // Get root URI from configuration file.

  185.   root_uri = srv.settings().get("trafficctrl.root_uri", "");

  186.   // Mount our app in the server

  187.   srv.applications_pool().mount(

  188.     cppcms::create_pool<app>(),

  189.     cppcms::mount_point(root_uri)

  190.   );

  191.   // Serve it!

  192.   // TODO: log crashes.

  193. #ifdef DEBUGGIN

  194. std::cerr << "Launching" << std::endl;

  195. #endif

  196.   srv.run();

  197. 

  198.   return 0;

  199. }