<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Hi Michael,<br>
<br>
We're actually working on implementing a new token architecture that
should, in a not too distant future hopefully, allow to control all
these settings. If you'd like to help out on this one, here's some doc
about what will be implemented
<a class="moz-txt-link-freetext" href="https://dev.wifidog.org/wiki/doc/developer/TokenArchitecture">https://dev.wifidog.org/wiki/doc/developer/TokenArchitecture</a>, and we
are working on a branch of the code at
<a class="moz-txt-link-freetext" href="https://dev.wifidog.org/svn/branches/newtoken">https://dev.wifidog.org/svn/branches/newtoken</a>. <br>
<br>
<br>
<div class="moz-signature">-- <br>
Geneviève Bastien
</div>
<br>
<br>
Michael Thomas wrote:
<blockquote cite="mid:-4596143775976926702@unknownmsgid" type="cite">
<pre wrap="">Since the list is I'm copy I'll switch to English for everybody else :)
By timeout for users I mean a time limit per user or per node. For
instance a user is connected and denied access after 10 minutes and
won't be able to access the internet in the next 30 minutes.
That kind of mechanism.
Le 27 janv. 2010 à 16:53, Jean-Philippe Menil
<a class="moz-txt-link-rfc2396E" href="mailto:jean-philippe.menil@univ-nantes.fr"><jean-philippe.menil@univ-nantes.f
r></a> a écrit :
</pre>
<blockquote type="cite">
<pre wrap="">Michael Thomas a �crit :
</pre>
<blockquote type="cite">
<pre wrap="">Bonjour Jean Philippe,
D�sol� de m'adresser directement � toi, mais je lis
souvent de tes contributions qui sont souvent pertinentes :)
Je me demandais si dans ton impl�mentation de wifidog tu avais r
�ussi � inclure le timeout pour les clients. J'ai cru
comprendre d'apr�s ce que j'ai lu que l'ABUSE_CONTROL se base en
fait sur les infos contenues dans la base, ce qui veut dire que l
es utilisateurs se verront refuser l'acc�s � posteriori.
Correct ?
Si je peux aider � impl�menter cette fonction avec mes
maigres connaissances PHP, je serai ravi.
A bientot
Michael
2010/1/27 Jean-Philippe Menil <<a class="moz-txt-link-abbreviated" href="mailto:jean-philippe.menil@univ-nantes.fr">jean-philippe.menil@univ-nantes.fr</a> <<a class="moz-txt-link-freetext" href="mailto:jean-philippe.menil@univ-nantes.fr">mailto:jean-philippe.menil@univ-nantes.fr</a>
</pre>
<pre wrap=""> Steve Congrave a �crit :
I'm trying to understand the WiFidog firewall process (sorry
for
newbie
questions LOL) and have read the developer docs at
<a class="moz-txt-link-freetext" href="http://dev.wifidog.org/wiki/doc/developer/FlowDiagram">http://dev.wifidog.org/wiki/doc/developer/FlowDiagram</a>
The Gateway Firewall rules (iptables) mangles the initial user
request and
starts the auth process.
I'm ok with this and the auth process but what I find hard to
understand is
how is the firewall opened up for an authenticated client?
What is the process and ruleset that allows a client that
has been
authenticated, access through the firewall, and how is that
then
closed down
after the client has been de-authenticated (if they run out of
access time
allowance for example)?
I'm trying to understand the role of iptables and whether
there
are changes
made to it dynamically or if something else is tagging the
traffic before it
hits the firewall
Thanks for any help
Steve
_______________________________________________
WiFiDog mailing list
<a class="moz-txt-link-abbreviated" href="mailto:WiFiDog@listes.ilesansfil.org">WiFiDog@listes.ilesansfil.org</a> <<a class="moz-txt-link-freetext" href="mailto:WiFiDog@listes.ilesansfil.org">mailto:WiFiDog@listes.ilesansfil.org</a>
</pre>
<pre wrap=""> <a class="moz-txt-link-freetext" href="http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog">http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog</a>
Hi,
here you can find a good map of the wifidog firewall rules:
<a class="moz-txt-link-freetext" href="http://wireless-speed.blogspot.com/2009/04/wifidog-hack-iptables-map-rules.html">http://wireless-speed.blogspot.com/2009/04/wifidog-hack-iptables-map-rules.html</a>
Regards.
_______________________________________________
WiFiDog mailing list
<a class="moz-txt-link-abbreviated" href="mailto:WiFiDog@listes.ilesansfil.org">WiFiDog@listes.ilesansfil.org</a> <<a class="moz-txt-link-freetext" href="mailto:WiFiDog@listes.ilesansfil.org">mailto:WiFiDog@listes.ilesansfil.org</a>
</pre>
<pre wrap=""> <a class="moz-txt-link-freetext" href="http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog">http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog</a>
</pre>
</blockquote>
<pre wrap="">Bonjour,
pour des raisons de performances, nous n'utilisons plus la partie
serveur d'authentification de wifidog.
Mais, je ne suis pas s�r de comprendre ce que tu entends par
timeout?
Peux-tu pr�ciser?
Cordialement.
<jean-philippe_menil.vcf>
</pre>
</blockquote>
<pre wrap=""><!---->_______________________________________________
WiFiDog mailing list
<a class="moz-txt-link-abbreviated" href="mailto:WiFiDog@listes.ilesansfil.org">WiFiDog@listes.ilesansfil.org</a>
<a class="moz-txt-link-freetext" href="http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog">http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog</a>
</pre>
</blockquote>
<br>
</body>
</html>