. * All rights reserved. * * modified for the pfsense snort package * Copyright (C) 2009-2010 Robert Zelaya. * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are met: * * 1. Redistributions of source code must retain the above copyright notice, * this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, * INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE * AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, * OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE * POSSIBILITY OF SUCH DAMAGE. */ require_once("guiconfig.inc"); require_once("/usr/local/pkg/snort/snort.inc"); if (!is_array($config['installedpackages']['snortglobal']['whitelist'])) $config['installedpackages']['snortglobal']['whitelist'] = array(); if (!is_array($config['installedpackages']['snortglobal']['whitelist']['item'])) $config['installedpackages']['snortglobal']['whitelist']['item'] = array(); $a_passlist = &$config['installedpackages']['snortglobal']['whitelist']['item']; // Calculate the next Pass List index ID if (isset($config['installedpackages']['snortglobal']['whitelist']['item'])) $id_gen = count($config['installedpackages']['snortglobal']['whitelist']['item']); else $id_gen = '0'; function snort_is_passlist_used($list) { /********************************************** * This function tests the provided Pass List * * to determine if it is assigned to an * * interface. * * * * On Entry: $list -> Pass List name to test * * * * Returns: TRUE if Pass List is in use or * * FALSE if not in use * **********************************************/ global $config; if (!is_array($config['installedpackages']['snortglobal']['rule'])) return FALSE; foreach($config['installedpackages']['snortglobal']['rule'] as $v) { if (isset($v['whitelistname']) && $v['whitelistname'] == $list) return TRUE; } return FALSE; } if ($_POST['del'] && is_numericint($_POST['list_id'])) { if ($a_passlist[$_POST['list_id']]) { /* make sure list is not being referenced by any interface */ if (snort_is_passlist_used($a_passlist[$_POST['list_id']]['name'])) { $input_errors[] = gettext("This Pass List is currently assigned to a Snort interface and cannot be deleted. Unassign it from all Snort interfaces first."); } if (!$input_errors) { unset($a_passlist[$_POST['list_id']]); write_config(); sync_snort_package_config(); header("Location: /snort/snort_passlist.php"); exit; } } } $pgtitle = gettext("Snort: Pass Lists"); include_once("head.inc"); ?>