Turris issueshttps://gitlab.nic.cz/groups/turris/-/issues2024-03-07T16:41:29+01:00https://gitlab.nic.cz/turris/foris/foris/-/issues/158Sentinel data collection tab2024-03-07T16:41:29+01:00Vojtech MyslivecSentinel data collection tab- [x] Foris Controller backend implementation turris/foris-controller/foris-controller-sentinel-module#1
- [x] reForis Data Collection tab turris/reforis/reforis-data-collection#1
- [ ] Link in Foris to reForis Data Collection tab- [x] Foris Controller backend implementation turris/foris-controller/foris-controller-sentinel-module#1
- [x] reForis Data Collection tab turris/reforis/reforis-data-collection#1
- [ ] Link in Foris to reForis Data Collection tabSentinel migrationŠtěpán HenekŠtěpán Henekhttps://gitlab.nic.cz/turris/os/packages/-/issues/518Provide sentinel-proxy with device token2023-08-16T14:37:30+02:00Martin PrudekProvide sentinel-proxy with device tokenModify `sentinel-proxy`'s init script to generate ini file at `/tmp/etc/sentinel/proxy.ini` with all available config options including `device_token`. This ini file will be used by `sentinel-proxy` at it's startup.
To be implemented af...Modify `sentinel-proxy`'s init script to generate ini file at `/tmp/etc/sentinel/proxy.ini` with all available config options including `device_token`. This ini file will be used by `sentinel-proxy` at it's startup.
To be implemented after #493
Connected with turris/sentinel/proxy#2
The `device_token` looks like proposed in turris/foris-controller/foris-controller-sentinel-module#1
EDIT:
The proxy config file was moved to `/tmp/etc/sentinel-proxy.cfg`
Currently, there's only one line:
```
device_token = <device_token>
```Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/6Integrate vizapp2022-04-20T12:04:12+02:00Vojtech MyslivecIntegrate vizappIntegrate or reimplement turris/sentinel/vizapp> to vizualize turris/sentinel/dynfw> data.Integrate or reimplement turris/sentinel/vizapp> to vizualize turris/sentinel/dynfw> data.Sentinel migrationFilip HronFilip Hronhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/1Display data according to Device token2021-12-10T12:47:41+01:00Martin PrudekDisplay data according to Device tokenThe user should have the ability to display data collected by his own router identified by the Device token.The user should have the ability to display data collected by his own router identified by the Device token.Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/12Migrate to Influx2021-11-12T13:26:06+01:00Martin PrudekMigrate to InfluxMigrate from PostgreSQL to influxDB, mainly because of better data retention capabilities.Migrate from PostgreSQL to influxDB, mainly because of better data retention capabilities.Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/11Integrate new minipots2021-11-12T13:26:06+01:00Michal HruseckyIntegrate new minipots- [ ] http minipot
- [ ] smtp minipot
- [ ] ftp minipot- [ ] http minipot
- [ ] smtp minipot
- [ ] ftp minipotSentinel migrationhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/5Integrate FWLogs records2021-11-12T13:26:05+01:00Vojtech MyslivecIntegrate FWLogs recordsInclude FWLogs records among *attackers*Include FWLogs records among *attackers*Sentinel migrationhttps://gitlab.nic.cz/turris/user-docs/-/issues/64Document Sentinel plugin and services2021-05-18T15:58:53+02:00Vojtech MyslivecDocument Sentinel plugin and servicesRelates to #51 #70
- [x] Greylist
- [x] DynFW
- [x] Minipots
- [x] FWlogs
- [x] SurveyRelates to #51 #70
- [x] Greylist
- [x] DynFW
- [x] Minipots
- [x] FWlogs
- [x] SurveySentinel migrationhttps://gitlab.nic.cz/turris/user-docs/-/issues/51Document public DynFW:Publisher API2021-05-18T15:58:51+02:00Vojtech MyslivecDocument public DynFW:Publisher APIRelates to #64
From projects turris/sentinel/dynfw-example-client> and turris/sentinel/dynfw>Relates to #64
From projects turris/sentinel/dynfw-example-client> and turris/sentinel/dynfw>Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/proxy/-/issues/2Require Device token to run2020-10-15T20:06:42+02:00Vojtech MyslivecRequire Device token to runSentinel Proxy should require and send *Device token* as well as device *serial number*.
Foris is responsible to generate such token (turris/foris#158). Please discuss with @shenek required format (I suggest something like 32-bytes hex/...Sentinel Proxy should require and send *Device token* as well as device *serial number*.
Foris is responsible to generate such token (turris/foris#158). Please discuss with @shenek required format (I suggest something like 32-bytes hex/base64 string).
This token is potentially confidential, so it would be better to pass it via a *file*, *stdin* or an *environment variable* in *init* script.
The `device_token` shall be read from `/tmp/etc/sentinel/proxy.ini` generated by *init script*. We will preserve the option to pass it via cli argument for debug purposes. See /turris/turris-os-packages#518Sentinel migrationhttps://gitlab.nic.cz/turris/os/packages/-/issues/522sentinel eula2020-10-08T23:05:45+02:00Štěpán Heneksentinel eulaCreate a package with sentinel EULA. It is supposed to contain:
* EULAs per version
* list of valid EULAs (in json)Create a package with sentinel EULA. It is supposed to contain:
* EULAs per version
* list of valid EULAs (in json)Sentinel migrationŠtěpán HenekŠtěpán Henekhttps://gitlab.nic.cz/turris/sentinel/minipot/-/issues/4Implement http/s minipot2020-07-28T14:24:34+02:00Vojtech MyslivecImplement http/s minipotPart of #1
To record *http* *basic* and *digest* login methods.Part of #1
To record *http* *basic* and *digest* login methods.Sentinel migrationhttps://gitlab.nic.cz/turris/os/packages/-/issues/493Sentinel packages integration2020-06-29T11:51:20+02:00Vojtech MyslivecSentinel packages integrationIntegrate Sentinel packages and package-list for updater, Foris and EULA.
- [x] Meta package for data collection (using proxy package for that) !287
- [x] uCI configuration file for Sentinel !287
- [x] ~~Documentation for Foris team~~Integrate Sentinel packages and package-list for updater, Foris and EULA.
- [x] Meta package for data collection (using proxy package for that) !287
- [x] uCI configuration file for Sentinel !287
- [x] ~~Documentation for Foris team~~Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/ca/-/issues/13Validity period for requests2020-02-10T15:38:00+01:00Vojtech MyslivecValidity period for requestsImplement some validity period for requests from Cert-API. I.e. include timestamp of the request in the queue and do not generate a certificaet for a device when the request is older than several tens of seconds.
The Certgen client give...Implement some validity period for requests from Cert-API. I.e. include timestamp of the request in the queue and do not generate a certificaet for a device when the request is older than several tens of seconds.
The Certgen client give-up the request in 30-40 seconds anyway and every request could potentially generates a new certificate. If the CA process stuck or anything similar gets wrong, there are lot of useless requests in the queue and CA generates a unusable certificates in the db.Sentinel migrationhttps://gitlab.nic.cz/turris/sentinel/cert-api/-/issues/8Prepare CertAPI to new style deployment2020-01-27T14:10:10+01:00Vojtech MyslivecPrepare CertAPI to new style deployment- [x] Include *dotenv* file(s)
- [x] Manage package installation through `setup.py`
- [x] Review package data (`MANIFEST.in`)
- [x] Review `static` file (to serve through webserver)
- [x] Let `wsgi.py` module on deployment- [x] Include *dotenv* file(s)
- [x] Manage package installation through `setup.py`
- [x] Review package data (`MANIFEST.in`)
- [x] Review `static` file (to serve through webserver)
- [x] Let `wsgi.py` module on deploymentSentinel migrationhttps://gitlab.nic.cz/turris/sentinel/sview/-/issues/2First version2019-10-15T11:44:35+02:00Martin PrudekFirst versionFirst version of Sentinel:ViewFirst version of Sentinel:ViewSentinel migration