diff --git a/core/:q b/core/:q deleted file mode 100644 index 4f53862..0000000 --- a/core/:q +++ /dev/null @@ -1,569 +0,0 @@ -= time())) { - if(!db_login ($_SESSION['username'], $_SESSION['passwd'])) { - $tMessage = 'Dati di autenticazione errati'; - $tUsername = $_SESSION['username']; - $_SESSION['auth'] = 0; - session_destroy(); - include ("userlogin.php"); - exit; - } else { - logga ($_SERVER['REQUEST_URI']); - $_SESSION['time'] = time(); - return carica_utente (); - } - } else { - if ($_POST['fUsername']) { - $fUsername = $_POST['fUsername']; - $fPassword = $_POST['fPassword']; - if(db_login ($fUsername, $fPassword)) { - $_SESSION = array(); - $_SESSION['passwd'] = $fPassword; - $_SESSION['username'] = $fUsername; - $_SESSION['auth'] = 1; - $_SESSION['time'] = time(); - session_regenerate_id(TRUE); - logga ("Accesso"); - return carica_utente (); - } else { - $tMessage = 'Errore'; - $tUsername = $fUsername; - include ("userlogin.php"); - exit; - } - } else { - if ($_SESSION['auth'] && ($_SESSION['time']+$CONF['temposessione']*60 < time())) { - $tMessage = 'Sessione scaduta'; - $tUsername = $_SESSION['username']; - logga ("Sessione scaduta"); - include ("userlogin.php"); - exit; - } else { - include ("userlogin.php"); - exit; - } - } - } -} - -function carica_conf ($modulo="") { - global $CONF, $DB_ID; - - if ($modulo != "") { - $query = "SELECT prefisso FROM moduli WHERE nome = '$modulo'"; - $res = mysql_query( $query, $DB_ID ); - $dato = mysql_fetch_array ( $res ); - $tabella = $dato['prefisso']."conf"; - } else { - $tabella = "conf"; - } - - $query = "SELECT variabile, valore FROM $tabella"; - $res = mysql_query( $query, $DB_ID ); - while ($dato = mysql_fetch_array ( $res )) { - $tmp[$dato[0]] = $dato[1]; - } - return $tmp; -} - -function isadmin () { - global $UTENTE, $CONF; - if ($UTENTE['admin']) { - return; - } else { - header("location: ".$CONF['base_url']."/index.php"); - exit; - } -} - -function carica_utente () { - global $_SESSION, $CONF, $DB_ID; - $query = "SELECT * FROM utenti where utente = '".$_SESSION['username']."'"; - $res = mysql_query( $query, $DB_ID ); - $dati = mysql_fetch_array ( $res ); - - return $dati; -} - -function is_first_access () { - global $_SESSION, $DB_ID, $CONF; - $utente = $_SESSION['username']; - $query = "SELECT * FROM utenti WHERE utente = '$utente'"; - $res = mysql_query( $query, $DB_ID ); - if (!mysql_fetch_array( $res )) { - $query = "INSERT INTO utenti SET utente='$utente', max_perm='".$CONF['permanenti']."', max_temp='".$CONF['temporanei']."', creato=now(), max_tempo='".$CONF['tempo_temporanei']."', totale=".$CONF['totale'].", idtemplate=".$CONF['template_base']; - mysql_query( $query, $DB_ID ); - logga ("Creazione nuova utenza"); - mkdir ($CONF['storage'].'/'.$utente); - logga ("Creazione storage utente"); - } -} - -function logga ($testo, $dest="") { - global $_SESSION, $DB_ID, $CONF; - - if ($dest == "") { - $destinatario = $_SESSION['username']; - } else { - $destinatario = $dest; - } - - $ip = @$_SERVER["REMOTE_ADDR"]; - $sessione = session_id();; -// print "-- $sessione --"; - $query = "INSERT INTO accessi_utenti SET utente = '$destinatario', quando = now(), ip = '$ip', cosa = '$testo', sessione = '$sessione'"; - $queryuser = "UPDATE utenti SET ultimo = now() WHERE utente = '$destinatario'"; -// print "-- $query --"; - $res = mysql_query( $query, $DB_ID ); - $res = mysql_query( $queryuser, $DB_ID ); -} - -function logga_allegati ($id, $cosa) { - global $DB_ID, $CONF; - $ip = $_SERVER["REMOTE_ADDR"]; - $query = "INSERT INTO accesso_allegati SET idallegato=$id, quando=now(), cosa='$cosa', ip='$ip'"; - $res = mysql_query( $query, $DB_ID ); -} - -function ultimo_coll () { - global $_SESSION, $DB_ID, $CONF; - $query = "SELECT DATE_FORMAT(quando, '%d-%m-%Y %H:%i:%s') as quando FROM accessi_utenti WHERE utente = '".$_SESSION['username']."' AND cosa = 'Uscita' order by quando desc limit 1"; - $res = mysql_query( $query, $DB_ID ); - $dato = mysql_fetch_array ( $res ); - if (is_null($dato['quando'])) { - return "Primo accesso"; - } else { - return $dato['quando']; - } -} - -function codice(){ - global $DB_ID; - $N_Caratteri = 30; - $Stringa = ""; - For($I=0;$I<$N_Caratteri;$I++){ - do{ - $N = Ceil(rand(48,122)); - }while(!((($N >= 48) && ($N <= 57)) || (($N >= 65) && ($N <= 90)) || (($N >= 97) && ($N <= 122)))); - $Stringa = $Stringa.Chr ($N); - } - - $query = "SELECT * FROM allegati WHERE codice='$Stringa' AND vecchio=0"; - $res = mysql_query( $query, $DB_ID ); - if (mysql_fetch_array ( $res )) { $stringa = codice(); } - return $Stringa; -} - -function invia_mail ($oggetto, $testo, $dest="") { - global $UTENTE, $CONF; - - $headers = 'From: noreply@esseweb.eu' . "\r\n" . - 'X-Mailer: PHP/' . phpversion(); - - if ($dest == "") { - $destinatario = $UTENTE['utente']; - } else { - $destinatario = $dest; - } - mail($destinatario, $oggetto, $testo, $headers); -} - -function fsize ($stat) { - $stat = (float)$stat; - $idx = 0; - $arr = array("B","kB","MB","GB","TB","PB","EB","ZB","YB"); - while(floor($stat/1024)>0){ - $stat = round($stat/1024,2); - $idx++; - } - return $stat." ".$arr[$idx]; -} - -function creanome ($idparent) { - global $DB_ID; - $query = "SELECT interfacce.device, defrule.idparent, defrule.priorita FROM defrule JOIN interfacce ON defrule.idinterfacce = interfacce.id WHERE defrule.id = '$idparent'"; - $res = mysql_query( $query, $DB_ID ); - $dato = mysql_fetch_array ( $res ); - if ($dato['idparent'] == 0) { - $ritorno = $dato['device']."-2:".$dato['priorita']; - return $ritorno; - } else { - $ritorno = creanome($dato['idparent']).":".$dato['priorita']; - return $ritorno; - } -} - -function defrule_att ($id) { - global $DB_ID; - $query = "UPDATE defrule SET attivo=1, stato=2 WHERE id = $id"; - if (mysql_query( $query, $DB_ID )) { - azioni ("defrule", $id, 1); - $query = "SELECT idparent FROM defrule WHERE id = $id"; - $res = mysql_query( $query, $DB_ID ); - $dato = mysql_fetch_array ( $res ); - $parent = $dato['idparent']; - if ($parent) { - $ritorno = defrule_att($parent); - } else { - $ritorno = 1; - } - } else { - return mysql_error(); - } - return $ritorno; -} - -function defrule_dis ($id, $stato=2) { - global $DB_ID; - $ritorno = 1; - $query = "UPDATE defrule SET attivo=0, stato=$stato WHERE id = $id"; - if (mysql_query( $query, $DB_ID )) { - azioni ("defrule", $id, 3); - if ($stato == 3) { - $query_rule = "DELETE FROM rule WHERE iddefrule = $id"; - mysql_query( $query_rule, $DB_ID ); - } - $query = "SELECT id FROM defrule WHERE idparent = $id AND stato <> 3"; - if ($res = mysql_query( $query, $DB_ID )) { - while ($dato = mysql_fetch_array ($res)) { - $ritorno = defrule_dis ($dato['id'], $stato); - } - } else { - return mysql_error(); - } - } else { - return mysql_error(); - } - return $ritorno; -} - -function defrule_reset ($iddevice, $idparent, $fw) { - global $DB_ID; - $query = "SELECT id FROM defrule WHERE idinterfacce = $iddevice AND idparent = $idparent AND attivo = 1 AND stato <> 3"; - $res = mysql_query( $query, $DB_ID ); - while ($dato = mysql_fetch_array ($res)) { - $id_defrule = $dato['id']; - $query_azioni = "INSERT INTO azioni SET fw=$fw, tabella='defrule', idtabella=$id_defrule, stato=1, datains=NOW()"; - mysql_query( $query_azioni, $DB_ID ); - defrule_reset ($iddevice, $id_defrule, $fw); - } -} - -function maxrate ($idrule, $idparent, $device) { - global $DB_ID; - if ($idparent == 0) { - $querylim = "SELECT rate, ceil FROM interfacce WHERE id = $device"; - } else { - $querylim = "SELECT rate, ceil FROM defrule WHERE id = $idparent"; - } - $queryatt = "SELECT SUM(rate) AS somma FROM defrule WHERE idinterfacce = $device AND attivo = 1 AND stato <> 3 AND id <> $idrule AND idparent = $idparent"; - $querypri = "SELECT MAX(priorita) AS pri FROM defrule WHERE idinterfacce = $device AND stato <> 3 AND id <> $idrule AND idparent = $idparent AND priorita < 1000"; - - $reslim = mysql_query( $querylim, $DB_ID ); - $datolim = mysql_fetch_array ($reslim); - $resatt = mysql_query( $queryatt, $DB_ID ); - $datoatt = mysql_fetch_array ($resatt); - $respri = mysql_query( $querypri, $DB_ID ); - $datopri = mysql_fetch_array ($respri); - - $ritorno['rate'] = $datolim['rate'] - $datoatt['somma']; - $ritorno['ceil'] = $datolim['ceil']; - $ritorno['pri'] = $datopri['pri'] + 10; - - return $ritorno; -} - -function azioni ($tabella, $idtabella, $stato) { - global $DB_ID; - - $query_fw = "SELECT id FROM firewall WHERE attivo = 1"; - $res_fw = mysql_query( $query_fw, $DB_ID ); - while ($dato_fw = mysql_fetch_array ($res_fw)) { - $id_fw = $dato_fw['id']; - $query_new = "INSERT INTO azioni SET fw = $id_fw, tabella = '$tabella', idtabella = $idtabella, stato = $stato, datains = NOW()"; -// print "$query_new
"; - mysql_query( $query_new, $DB_ID ); - } -} - -function lista_moduli () { - global $UTENTE, $DB_ID, $CONF; - - $query = " SELECT - moduli.id AS id, - moduli.nome AS nome, - moduli.directory AS directory - FROM - utenti - JOIN - permessi ON utenti.id = permessi.id_utenti AND permessi.accesso > 0 - JOIN - moduli ON moduli.id = permessi.id_moduli - WHERE - utenti.utente = '".$_SESSION['username']."' - AND - moduli.attivo = 1 - "; - - $menu[] = array("Home", $CONF['base_url']."/core/main.php",0); - - if ($UTENTE['admin']) { - $menu[] = array("Configurazione", $CONF['base_url']."/core/conf.php"); - $query .= " UNION DISTINCT SELECT - moduli.nome AS nome, - moduli.directory AS directory - FROM - moduli - WHERE - moduli.superadmin > 0 - AND - moduli.attivo = 1 - "; - } - - $res = mysql_query( $query, $DB_ID ); - - while ($dato = mysql_fetch_array ($res)) { - $menu[] = array($dato['nome'], $CONF['base_url']."/".$dato['directory']."/index.php",$dato['id']); - } - - $menu[] = array("Cambio password", $CONF['base_url']."/core/chkpasswd.php",0); - - $pezzi = preg_split('/\//', $_SERVER["PHP_SELF"], -2); - $self = $pezzi[count($pezzi)-1]; -?> - - - - - - - - - - - - - - - - - - - - - -
-
- - -
-
- - - - - - - - -= $minimo) { - return $risposta; - } else { - header("location: ".$CONF['base_url']."/index.php"); - exit; - } -} - -function get_levels () { - global $DB_ID; - - $query = "SELECT nome, livello FROM livelli ORDER BY livello"; - $res = mysql_query( $query, $DB_ID ); - $livelli = array(); - while ($dato = mysql_fetch_array ($res)) { - $livelli[$dato['livello']] = $dato['nome']; - } - return $livelli; - -} - -function view_top () { - global $CONF, $UTENTE; - include_once ($_SERVER["CONTEXT_DOCUMENT_ROOT"].$CONF['base_url']."/core/top.php"); -} - -function view_footer () { - global $CONF, $UTENTE; - include_once ($_SERVER["CONTEXT_DOCUMENT_ROOT"].$CONF['base_url']."/core/footer.php"); -} -?> diff --git a/core/function.php b/core/function.php index b1f5435..76782a5 100755 --- a/core/function.php +++ b/core/function.php @@ -479,6 +479,9 @@ function view_footer () { } function byteConvert($bytes) { + + if ($bytes == 0) return "0 B"; + $s = array('B', 'Kb', 'MB', 'GB', 'TB', 'PB'); $e = floor(log($bytes)/log(1024)); diff --git a/proxy/graph.php b/proxy/graph.php new file mode 100644 index 0000000..d8dabdf --- /dev/null +++ b/proxy/graph.php @@ -0,0 +1,126 @@ += DATE_SUB(NOW(), INTERVAL 1 $tempo) + GROUP BY + $gruppo(data_destroy) + UNION + SELECT + DATE_FORMAT(DATE_SUB(NOW(), INTERVAL tempo $gruppo), '$format1'), + DATE_FORMAT(DATE_SUB(NOW(), INTERVAL tempo $gruppo), '$format2'), + 0, + 0 + FROM + (SELECT @i:= @i - 1 AS tempo FROM INFORMATION_SCHEMA.COLLATION_CHARACTER_SET_APPLICABILITY, ( SELECT @i:= $limit) As i ) As Y + WHERE + tempo BETWEEN 0 AND $limit; + "; +//print $query; exit; + +$res = mysql_query( $query, $DB_ID ); + +$xdata = array(); +$ydata = array(array()); +$tmp = array(array()); +$tag = array(array()); +$alt = array(array()); + +while ( list ($tempo, $scritta, $inviati, $ricevuti) = mysql_fetch_array($res)) { + $xdata[$tempo] = $tempo; + if (!isset ($tmp['inv'][$tempo]) ) $tmp['inv'][$tempo] = $inviati; + if (!isset ($tmp['ric'][$tempo]) ) $tmp['ric'][$tempo] = $ricevuti; + if (!isset ($tmp['tag'][$tempo]) ) $tmp['tag'][$tempo] = $scritta; +}; + +//print_r($xdata); exit; + +asort($xdata); +foreach ($xdata as $key => $val) { + $ydata['inv'][] = $tmp['inv'][$val]; + $ydata['ric'][] = $tmp['ric'][$val]; + $ydata['tag'][] = $tmp['tag'][$val]; +} + +//print_r($ydata); exit; + +$l = 900; +$h = 400; + +$g = new Graph($l,$h); +$g->SetMargin(80,20,50,80); +$g->SetScale('textlin'); +$g->yaxis->SetLabelFormatCallback('byteConvert'); +$g->xaxis->SetLabelAngle(45); + +$g->legend->Pos(0.05,0.1); + +$b1plot = new BarPlot ( $ydata['inv'] ); +$b2plot = new BarPlot ( $ydata['ric'] ); +$gbplot = new GroupBarPlot (array( $b1plot , $b2plot )); +$g->Add ( $gbplot ); + + +$b1plot->SetFillColor('red'); +$b1plot->SetShadow('gray',0.8); +$b1plot->SetLegend("Inviati"); + +$b2plot->SetFillColor('blue'); +$b2plot->SetShadow('gray',0.8); +$b2plot->SetLegend("Ricevuti"); + +$g->xaxis->SetTickLabels($ydata['tag']); + + + +$g->Stroke(); +?> diff --git a/proxy/index.php b/proxy/index.php index 0f42724..b5a61ca 100755 --- a/proxy/index.php +++ b/proxy/index.php @@ -38,7 +38,7 @@ while ($dato = mysql_fetch_array ( $res )) { Utente attivo - Dettaglio + Dettaglio diff --git a/proxy/ip.php b/proxy/ip.php new file mode 100755 index 0000000..8004894 --- /dev/null +++ b/proxy/ip.php @@ -0,0 +1,84 @@ + + +
+ + + + + + + += DATE_SUB(NOW(), INTERVAL 1 $tempo) + "; + +$res = mysql_query( $query, $DB_ID ); +$dato = mysql_fetch_array ( $res ); +?> + + + + + + + + + + + + + + + + + + + + + + + + + + + +
+ +
Utente attivo Inviati
Ricevuti
+
+ + diff --git a/proxy/lista.php b/proxy/lista.php index 7eccc40..6466137 100755 --- a/proxy/lista.php +++ b/proxy/lista.php @@ -3,25 +3,67 @@ include_once ("../core/config.php"); $UTENTE = login(); $DIRITTI = diritti(1); view_top(); + +if (isset($_POST['tempo'])) { + $tempo = $_POST['tempo']; +} else { + $tempo = "DAY"; +} ?> - +
+ + + + + + + = DATE_SUB(NOW(), INTERVAL 1 $tempo)"; $res = mysql_query( $query, $DB_ID ); $valori = mysql_fetch_array ( $res ); $max = $valori['max']; $query = " SELECT ip, + MIN(data_destroy) AS first, MAX(data_destroy) AS last, SUM(inviati) AS inviati, SUM(ricevuti) AS ricevuti FROM proxy_dati + WHERE + data_destroy >= DATE_SUB(NOW(), INTERVAL 1 $tempo) GROUP BY ip + UNION + SELECT + ip, + NULL, + NULL, + 0, + 0 + FROM + proxy_dati + WHERE + data_destroy < DATE_SUB(NOW(), INTERVAL 1 $tempo) + AND + ip NOT IN ( + SELECT + ip + FROM + proxy_dati + WHERE + data_destroy >= DATE_SUB(NOW(), INTERVAL 1 $tempo)) ORDER BY ip "; @@ -32,10 +74,14 @@ while ($dato = mysql_fetch_array ( $res )) { - + + + + + @@ -46,6 +92,7 @@ while ($dato = mysql_fetch_array ( $res )) { + @@ -54,10 +101,11 @@ while ($dato = mysql_fetch_array ( $res )) { - +
+ +
Utente attivo DettaglioDettaglio Inviati
Ricevuti
+