Exemplo n.º 1
0
    def generate_schedule(self, policy_dir, policy):

        # generate schedule array
        s = []
        for schedule in policy.schedule_set.all():
            s.append({
                "days": {
                    "mon": schedule.on_mon,
                    "tue": schedule.on_tue,
                    "wed": schedule.on_wed,
                    "thu": schedule.on_thu,
                    "fri": schedule.on_fri,
                    "sat": schedule.on_sat,
                    "sun": schedule.on_sun
                },
                "from": {
                    "hours": schedule.from_hours,
                    "minutes": schedule.from_mins
                },
                "to": {
                    "hours": schedule.to_hours,
                    "minutes": schedule.to_mins
                }
            })

        # create writer and dumper
        w = FileWriter(policy_dir)
        d = JsonDumper()

        # write and dump
        w.write('schedule.json', d.dumps(s))
Exemplo n.º 2
0
    def generate_members(self, policy_dir, policy):

        # construct the dir name
        dir = os.path.join(policy_dir, "members")

        # recreate it
        self.recreate_dir(dir)

        # create writer and dumper
        w = FileWriter(dir)
        j = JsonDumper()

        # write and dump
        for (n, v) in [('user_ip.json', policy.memberip_set),
                       ('user_name.json', policy.membername_set),
                       ('user_ip_range.json', policy.memberrange_set),
                       ('user_ip_subnet.json', policy.membersubnet_set)]:
            w.write(n, j.dumps(self.to_array(v.all())))

        # construct ldap groups out of single ldap server and group dns
        groups = []
        for group in policy.memberldap_set.all():
            groups.append({
                "name": group.name,
                "dn": group.dn,
                "recursive": group.recursive,
                "comment": group.comment
            })

        w.write('user_ldap.json', j.dumps(groups))
Exemplo n.º 3
0
    def post(self, request, *args, **kwargs):

        form  = ClusterClientForm(request.POST)
        if form.is_valid():

            # ok form is valid, fill the data
            data = {
                "enabled"       : form.cleaned_data['enabled'], 
                "server_port"   : form.cleaned_data['server_port'], 
                "server_address": form.cleaned_data['server_address'], 
                "sync_interval" : form.cleaned_data['sync_interval']
            }

            # and write it
            w = FileWriter(os.path.join(Paths.etc_dir(), "node"))
            d = JsonDumper()

            w.write('cluster_client.json', d.dumps(data))

            # mark as needing relstart
            messages.info(request, "need_squid_restart")

            return HttpResponseRedirect(self.get_success_url()) 

        return render(request, self.template_name, {'form': form })
Exemplo n.º 4
0
    def generate_rules(self, policy_dir, policy):

        # construct rules folder
        rules_dir = os.path.join(policy_dir, "rules")

        # recreate it
        self.recreate_dir(rules_dir)

        # create writer and dumper
        w = FileWriter(rules_dir)
        j = JsonDumper()

        # call individual generators
        self.generate_ruleannoyances(rules_dir, policy.ruleannoyances,
                                     policy.ruleapps)
        self.generate_ruleadult(rules_dir, policy.ruleadult)
        self.generate_ruleapps(rules_dir, policy.ruleapps)
        self.generate_rulefilesize(rules_dir, policy.rulefilesize)
        self.generate_rule_dynamic_categorization(rules_dir, policy)

        # write different file types
        for (n, t) in [
            ('block_domains.json', policy.ruledomain_set),
            ('block_urls.json', policy.ruleurl_set),
            ('block_useragents.json', policy.ruleuseragent_set),
            ('block_content_type.json', policy.rulecontenttype_set),
            ('block_file_name.json', policy.rulefilename_set),
            ('block_file_content.json', policy.rulefilecontent_set),
            ('block_charset.json', policy.rulecharset_set),
        ]:
            w.write(n, j.dumps(self.to_array(t.all())))

        # write blocked categories
        w.write(
            'block_categories.json',
            j.dumps({
                "block_noncategorized_domains":
                policy.rulecategory.block_noncategorized_domains,
                "blocked_categories":
                policy.rulecategory.categories_as_array()
            }))

        # write custom categories
        array = []
        for r in policy.rulecategorycustom_set.filter(enable=True):
            array.append(r.category)

        w.write('block_categories_custom.json', j.dumps(array))
Exemplo n.º 5
0
    def generate_config(self, target_dir):

        # create writer and dumper
        w = FileWriter(target_dir)        
        d = JsonDumper()

        self.generate_safebrowsing(w, d)
Exemplo n.º 6
0
    def find_user(self, groups, user):

        path = ""

        try:
            data = {'user': user, 'groups': []}
            for group in groups:
                data['groups'].append({
                    'name': group.name,
                    'dn': group.dn,
                    'recursive': group.recursive
                })

            fout, path = tempfile.mkstemp()
            with os.fdopen(fout, 'w') as f:
                f.write(JsonDumper().dumps(data))

            # run search command
            data = CommandSearchLDAP().run(path)
            if data['exit_code'] == 0:
                return {
                    'result': True,
                    'error': '',
                    'output': self.serialize(data)
                }

            raise Exception("%s" % self.serialize(data))

        except Exception as e:
            return {'result': False, 'error': str(e)}
        finally:
            if len(path) > 0:
                os.unlink(path)
Exemplo n.º 7
0
    def update_comment(self, username, comment):
        
        data = {}
        name = self.json
        if os.path.exists(name):
            with open(name) as fin:    
                data = json.load(fin)

        data[username] = {
            "comment" : comment
        }

        # and save it
        w = FileWriter(self.etc_dir)
        d = JsonDumper()

        w.write("users.json", d.dumps(data))
Exemplo n.º 8
0
    def generate_policy(self, policy_dir, policy):

        # first generate the schedule
        self.generate_schedule(policy_dir, policy)

        # now generate the policy
        o = policy
        a = {
            "enabled": o.advanced.enable,
            "priority": o.priority,
            "ignore_case_exclusions": o.advanced.ignore_case,
            "ignore_case_members": o.advanced.ignore_case,
            "ignore_case_rules": o.advanced.ignore_case,
            "use_url_as_filename": True,
            "description": o.advanced.comment,
            "hide_history": o.advanced.hide_history,
            "hide_result_info": o.advanced.hide_result_info,
            "sslbump": o.advanced.sslbump,
            "tunnel_block": o.advanced.tunnel_block,

            # bypass settings
            "bypass_allowed": o.bypass_allowed,
            "bypass_strip_www": o.bypass_strip_www,
            "bypass_children": o.bypass_children,
            "bypass_referers": o.bypass_referers,
            "bypass_duration": o.bypass_duration,
            "bypass_token_required": o.bypass_token_required,
            "bypass_adult": o.bypass_adult,
            "bypass_categories": o.bypass_categories,
            "bypass_file": o.bypass_file,
            "bypass_adblock": o.bypass_adblock,
            "bypass_privacy": o.bypass_privacy,
            "bypass_http": o.bypass_http
        }

        # create writer and dumper
        w = FileWriter(policy_dir)
        d = JsonDumper()

        # write and dump
        w.write('policy.json', d.dumps(a))

        # now generate policy components
        self.generate_members(policy_dir, policy)
        self.generate_exclusions(policy_dir, policy)
        self.generate_rules(policy_dir, policy)
Exemplo n.º 9
0
    def write_auth_labels(self, new_dir):

        # create writer and dumper
        w = FileWriter(new_dir)
        d = JsonDumper()

        # write auth jsons
        self.generate_auth_labels(w, d)
Exemplo n.º 10
0
    def generate_config(self, target_dir):

        # create writer and dumper
        w = FileWriter(target_dir)
        d = JsonDumper()

        # generate all global files
        self.generate_sharing(w, d)
Exemplo n.º 11
0
 def generate_ruleapps(self, rules_dir, rule):
     o = rule
     d = {
         "enable_google_apps": o.enable_google_apps,
         "enable_safe_search": o.enable_safe_search,
         "youtube_restrictions": o.youtube_restrictions
     }
     FileWriter(rules_dir).write('apps.json', JsonDumper().dumps(d))
Exemplo n.º 12
0
    def generate_config(self, target_dir):

        # create writer and dumper
        w = FileWriter(target_dir)
        d = JsonDumper()

        # and generate
        self.generate_reports(w, d)
        self.generate_monitor(w, d)
        self.generate_wsmgrd(w, d)
Exemplo n.º 13
0
    def generate_exclusions(self, policy_dir, policy):

        # construct the dir name
        dir = os.path.join(policy_dir, "exclusions")

        # create it
        self.recreate_dir(dir)

        # create writer and dumper
        w = FileWriter(dir)
        j = JsonDumper()

        # write and dump
        for (n, v) in [('domain_name.json', policy.exclusiondomain_set),
                       ('domain_ip.json', policy.exclusionip_set),
                       ('content_type.json', policy.exclusioncontenttype_set),
                       ('domain_ip_range.json', policy.exclusionrange_set),
                       ('domain_ip_subnet.json', policy.exclusionsubnet_set),
                       ('request_uri.json', policy.exclusionurl_set)]:
            array = []
            objects = v.all()

            for object in objects:
                array.append({
                    "value": object.value,
                    "comment": object.comment,
                    "scan": {
                        "adult": object.scan_adult,
                        "categories": object.scan_categories,
                        "file": object.scan_file,
                        "adblock": object.scan_adblock,
                        "privacy": object.scan_privacy,
                        "http": object.scan_http,
                    }
                })
            w.write(n, j.dumps(array))

        # and also advanced
        w.write(
            'advanced.json',
            j.dumps({"exclude_by_referer":
                     policy.advanced.exclude_by_referer}))
Exemplo n.º 14
0
    def generate_ruleannoyances(self, rules_dir, rule1, rule2):

        o1 = rule1  # annoyances
        o2 = rule2  # apps
        d = {
            "block_ads": o1.block_ads,
            "protect_privacy": o1.protect_privacy,
            "hide_yt_comments": o2.hide_yt_comments,
            "hide_yt_suggestions": o2.hide_yt_suggestions,
            "hide_yt_other": o2.hide_yt_other
        }
        FileWriter(rules_dir).write('block_annoyances.json',
                                    JsonDumper().dumps(d))
Exemplo n.º 15
0
    def generate_rule_dynamic_categorization(self, rules_dir, policy):

        o = policy.ruledynamiccategory
        d = {
            "enabled": o.enabled,
            "analyze_request": o.analyze_request,
            "analyze_response": o.analyze_response,
            "classify_type": o.classify_type,
            "classifiers": o.categories_as_array(),
            "token_proximity": 4,  # hardcoded and is NOT visible in UI
            "check_delimiters": True,  # hardcoded and is NOT visible in UI
            "probability": 40  # hardcoded and is NOT visible in UI
        }
        FileWriter(rules_dir).write('dynamic_categorization.json',
                                    JsonDumper().dumps(d))
Exemplo n.º 16
0
    def test_ldap(self, object):

        # here we have django model auth domain updated, but we also need to generate JSON files in /opt/websafety/etc
        g = Generator(os.path.join(Paths.etc_dir(), "squid"))
        w = FileWriter(os.path.join(Paths.etc_dir(), "squid"))
        d = JsonDumper()
        
        g.generate_auth(w, d)

        # and run the tests
        result = LdapTester().run();
        if result['exit_code'] == 0:
            return (True, "%s %s" % (result['stdout'], result['stderr']))
        else:
            return (False, "Exit code: %s\nSTDOUT: %s\nSTDERR: %s\n" % (str(result['exit_code']), result['stdout'], result['stderr']))
        pass
Exemplo n.º 17
0
 def generate_ruleadult(self, rules_dir, rule):
     o = rule
     d = {
         "trust_allowed_categories": o.trust_allowed_categories,
         "enable_heuristics": o.enable_heuristics,
         "heuristics_maximum_weight": o.heuristics_maximum_weight,
         "fulltext_detection_enable": o.enable_phrases,
         "fulltext_detection_maximum_weight": o.phrases_maximum_weight,
         "fulltext_detection_maximum_size": o.phrases_maximum_size,
         "fulltext_scan_links": o.phrases_scan_links,
         "fulltext_scan_javascript": o.phrases_scan_javascript,
         "fulltext_scan_css": o.phrases_scan_css,
         "fulltext_parse_links": o.phrases_parse_links,
         "enable_image_filtering": o.enable_image_filtering
     }
     FileWriter(rules_dir).write('block_adult.json', JsonDumper().dumps(d))
Exemplo n.º 18
0
    def generate_config(self, target_dir):

        # create writer and dumper
        w = FileWriter(target_dir)
        d = JsonDumper()

        # generate all global files
        self.generate_network(w, d)
        self.generate_apps(w, d)
        self.generate_subscriptions(w, d)
        self.generate_trusted_categories(w, d)
        self.generate_recategorized_domains(w, d)
        self.generate_skip_sslbump(w, d)
        self.generate_engine(w, d)
        self.generate_bypass_tokens(w, d)

        # now generate policies
        self.generate_policies(target_dir)
Exemplo n.º 19
0
    def generate(self):

        etc_dir = Paths.etc_dir()

        # run all generators first
        NodeGenerator(os.path.join(etc_dir, "node")).generate()
        TrafficGenerator(os.path.join(etc_dir, "traffic")).generate()
        SafetyGenerator(os.path.join(etc_dir, "safety")).generate()
        SquidGenerator(os.path.join(etc_dir, "squid")).generate()
        AntivirusGenerator(os.path.join(etc_dir, "antivirus")).generate()

        # dump the copy of the database to /opt/websafety/var/db
        self.dump_db()

        # update config timestamp
        d = {'version': self.version, 'timestamp': self.timestamp}
        FileWriter(etc_dir).write('config.json', JsonDumper().dumps(d))

        # and archive it
        self.archive()
Exemplo n.º 20
0
import django
import logging

sys.path.append(os.path.abspath(__file__))

if __name__ == "__main__":

    os.environ.setdefault("DJANGO_SETTINGS_MODULE", "console.settings")

    django.setup()

    from _domain.core import Paths
    from _domain.utils import JsonDumper, FileWriter
    from traffic.generator import Generator

    logging.basicConfig(format='%(asctime)s %(message)s', level=logging.INFO)
    logging.info(
        "Syncing monitoring settings from /opt/websafety/var/db/config.sqlite to /opt/websafety/etc/traffic/monitor.json..."
    )

    f = os.path.join(Paths.etc_dir(), "traffic")

    logging.info("Generating monitor.json in folder %s" % f)

    g = Generator(f)
    w = FileWriter(f)
    d = JsonDumper()
    g.generate_monitor(w, d)

    logging.info("Success!!!")
Exemplo n.º 21
0
 def generate_rulefilesize(self, rules_dir, rule):
     o = rule
     d = {"enable": o.enable, "max_size": o.max_size}
     FileWriter(rules_dir).write('block_file_size.json',
                                 JsonDumper().dumps(d))