vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-07 13:48:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
5898 commits 26 branches 19 tags 450 MiB
Commit graph

20 commits

Author SHA1 Message Date
Luca Deri
bedff2c8e2 Updated (C) 2019-01-07 19:28:49 +01:00
emanuele-f
5e321077ca Disable user login after failed attempts 2018-12-17 17:36:38 +01:00
Luca Deri
d146200962 Implements async HTTP send used in pcap download to avoid that paused clients will lead ntopng to drop packets 2018-08-15 08:13:25 +02:00
Simone Mainardi
6f0104045a Initial work to check available space in socket buffers to send pcaps 2018-08-14 19:55:10 +02:00
Simone Mainardi
bd4252d727 Live pcap download security fixes 2018-08-14 17:57:42 +02:00
Luca Deri
444a12e0e8 Win fixes 2018-07-17 00:58:05 +02:00
Emanuele Faranda
a4730f33c1 Improve captive portal support with WISPr XML 2018-07-06 19:35:48 +02:00
Simone Mainardi
b980a1808f Implements web UI ACL 2018-06-22 19:31:02 +02:00
Simone Mainardi
7fa432ad9a Generalizes captive portal server start/stop 
Fixes https://github.com/ntop/ntopng/issues/1819
 2018-06-20 18:07:00 +02:00
Simone Mainardi
c1bcc625ac Code cleanup for HTTP/HTTPs 2018-06-20 11:38:08 +02:00
Luca Deri
1ee5eff201 Minor code cleanup 2018-06-20 08:25:24 +02:00
Simone Mainardi
8f1228c04f Captive portal HTTP server fixes 2018-06-19 17:29:36 +02:00
Luca Deri
56b275124f Improved ntopng startup time 
Split the HTTP server into management and non-management (splash) servers

Implemented protection of the HTTP interface via an ACL that can be set with
- redis-cli set ntopng.prefs.http_acl_management_port "XXXX"

Where XXXX has the format +net/mask,+net/mask....

Example:
- You want the HTTP management interface be accessible only from localhost
   redis-cli set ntopng.prefs.http_acl_management_port "+127.0.0.0/8"

- You want the HTTP management interface be accessible for everybody except 192.168.0.0/16
  redis-cli set ntopng.prefs.http_acl_management_port "+0.0.0.0/0,-192.168.0.0/16"
 2018-06-19 11:43:49 +02:00
emanuele-f
a70dce4301 Secure ntopng cookies with SameSite and HttpOnly 
HttpOnly prevents the cookie from being accessed by javascript code and restricts XMLHttpObject utilization.
See https://blog.codinghorror.com/protecting-your-cookies-httponly/ .

SameSite=lax restricts cookie utilization in iframes, images or XMLHttpRequests, but still allows external
sites to link to the ntopng webserver and use the existing authenticated user session.
See https://www.sjoerdlangkemper.nl/2016/04/14/preventing-csrf-with-samesite-cookie-attribute/ .
 2018-05-16 11:43:23 +02:00
Luca Deri
f0c936c368 Updated (C) to 2018 2018-03-22 21:59:42 +01:00
Luca Deri
420ce53060 Added support for HTTP splash port 2017-10-16 07:57:32 +02:00
Luca Deri
7e384d3c18 Added the ability to activate the web HTTP port on two ports. Example -w 80,3000 
Changes in the captive portal logic that made it compatible with Android
Updated bridging readme to include the latest changes
 2017-01-25 22:44:34 +01:00
Luca
30e1a75f98 (C) update 2017-01-10 15:03:16 -08:00
Luca Deri
d7c452f0a3 Moved to 2016 2016-01-01 09:27:39 +01:00
Luca Deri
b178cf4121 Added travis file for code testing 
Added .gitignore file for ignoring selected files
Reworked src and include paths to organize the source better
Fixed bug with invalid git version caused in some settings that do not compile code extracting it from github
 2015-05-01 19:40:52 +02:00
Renamed from HTTPserver.h (Browse further)