gtkila: log analyzer for RSBAC, 1st pre-version

From: Jonas Weismueller <ila weismueller org>
To: gtk-list gnome org, gtk-app-devel-list gnome org
Cc:
Subject: gtkila: log analyzer for RSBAC, 1st pre-version
Date: Fri, 01 Apr 2005 21:48:20 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Hi,
I have developed the gtkila (GPL) log analyzer for RSBAC
(http://www.rsbac.org) as a project
part of my study. It is written in C and gtk+ (plus interfaces are
generated by Glade/libglade).
It has been my first project bigger than, reading two numbers of
stdin, add them and print them on stdout   ;)  
Personallay, I have learned a lot and progress will be going on.

You can download gtkila from:
http://svn.rsbac.mprivacy-update.de/viewsvn.php?project=rsbac&path=/ila/gtkila/gtkila-0.1.tar.gz&download=yes

To start gtkila you must pass the glade xml file as an argument (as
long as I know how to code the path of the glade xml file dynamically
in my code):
[jonas TuxM gtkila]$ /usr/local/gtkila src/ila.glade

For any urgent assistance you are welcome to ask in the IRC channel
#rsbac on Freenode.
My nick name is MrRagga and others are always willing to help as well.


Furthermore I would like to get some feedback from you to include in
my documentation (GFDL).

Attached you have an example log file for the File Open option in gtkila
to see a test log table.
The Real Time mode will work only, if you have patched your kernel with
the RSBAC security extension.

Feedback
- ----------------
Features:
- - Open a RSBAC log file for analysis
- - Watch a log file in real time (default /var/log/syslog), you can
change this part in the settings, wherever you defined RSBAC to log
- - right-click context menu for a real time log table to display the
File/ Dir settings of a file/dir
- - Search and sort function for a log table

Not working at the moment is:
- - Real Time Logging is not working as far as you don't have patched
your kernel with RSBAC
- - the regular expression search and of course some more or less bugs
- - Open a logging File crashes with too huge files (fix is in progress)
- - Show File/ Dir settings works for FD objects only

Questionnaire
- ------------------------
INSTALLATION:
Any installation problems?

Suggestions to improve the installation?

GENERAL:
How is the usability of the program?

What can be improved to provide easy/handy use of ILA?

How is the structure and coding style of my code (regarding this is my
first project likes this, only constructive criticism please) ?

MISC:
- ---------
Any other suggestions?


Agreement:
- -------------------
Do you agree, that your comments will be published as a part of a
documentation (Answer: yes or no)

Publish your name/email address? (Answer: name only, email only, both,
nothing)



It would be great to have some feedback before sunday night.

Thanks in advance.

Cheers Jonas
- ----
ila weismueller org

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iQIVAwUBQk2zBC4HIbkjo7BrAQJqag//U2x5sHuVXNJqd668xeNkzjMzcpCXUA65
kKg/YRQePDCf+04l7wdTr0T4e80jqP/syxkHkPfpqH4kk1HAfAMTb5wj6MnVt50S
C2xSdrH31aF6g9WM1C3glVgOm9dcMggrMMxEuOj9d++B4v0QhefrrpAZKJX05US+
c7zt/hOfvhNnHpw+qIfDWdlDUovAQRXj9zA7BsIR3hpHsZDLHPgELP55DN+kw6cy
dEJDHm1Jw9Jfvd5uz/vdMu8OLX7VHaklPhq/ig+3lnXhXf+smQL/Rh6HK/gmOvTr
n89zBU6IfQA7hSnWnsWQCCr+YIesVoKOlk0lSRWICNWsdjrxd+nIWlQA9/WIcctf
fQdxDYivjplKhBz3dUAn1JahHHlTMb2kv8uNVA3nNBLEFsJu7cmHX5VCML5oM+qh
F9vpjY8Gq40+isFXaMd/Re1fzHMmnrGZNc8eaMZr9AbPmAHGmnj9eC137Dj9WKKI
OMuLdolug/HI9vo05XtcJYxRQY914jgFjKoIo5nUPBfZESHXoDayE89AptXtomsV
zBpW02UZ2jd8uVWA6GhKpkbcREnpiUFaQXbSzjMqIxOG8iUL6DGk76y/F2DOUiNV
jBh3sqzuWUAtI0eVnl9BpanwJ5gYm+j3WFRBx7x0Nl0kYQPWWvxL5f7xxxdqJfkC
WOBSIbUCMYg=
=4XAV
-----END PGP SIGNATURE-----

Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 26720, ppid 10796, prog_name smbd, prog_file /usr/sbin/smbd, uid 0, audit_uid 65534, target_type PROCESS, tid 26720, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 26720, ppid 10796, prog_name smbd, prog_file /usr/sbin/smbd, uid 0, audit_uid 65534, target_type PROCESS, tid 26720, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 26720, ppid 10796, prog_name smbd, prog_file /usr/sbin/smbd, uid 0, audit_uid 65534, target_type PROCESS, tid 26720, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 26720, ppid 10796, prog_name smbd, prog_file /usr/sbin/smbd, uid 0, audit_uid 65534, target_type PROCESS, tid 26720, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 26720, ppid 10796, prog_name smbd, prog_file /usr/sbin/smbd, uid 0, audit_uid 65534, target_type PROCESS, tid 26720, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request CHANGE_OWNER, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:56:43 TuxM kernel: rsbac_adf_request(): request DATA, pid 10696, ppid 1, prog_name master, prog_file /usr/lib/postfix/master, uid 0, audit_uid 0, target_type PROCESS, tid 10696, attr owner, value 0, result NOT_GRANTED (Softmode) by AUTH
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$ 
Feb 10 04:02:20 TuxM smbd[26720]: [2005/02/10 04:02:20, 0] smbd/service.c:make_connection(800) 
Feb 10 04:02:20 TuxM smbd[26720]:   fitzys (157.190.250.167) couldn't find service c$

Follow-Ups:
- Re: gtkila: log analyzer for RSBAC, 1st pre-version
  - From: Jonas Weismueller

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]