Heaps of changes in this release.
I'll attempt to detail them in a subsequent post.
Please download it and report feedback to the Open-AudIT forums - LINK.
I have a few days off, so I plan to code, code, code. Any feedback / bugs can be corrected quick smart !).
You can find the download link on the right of this page.
Tuesday, November 30, 2010
Thursday, November 4, 2010
What's next ?
CMDB or Software Licensing Register ?
Both will take a bit of time, so does anyone have a preferrence which I take a look at next ?
Personally, I'm thinking Software Register, but I'm open to change.
FYI - I have the DB design mostly complete for both of these - it's just the actual code that needs to happen now. "Just" the code he says... :-)
Both will take a bit of time, so does anyone have a preferrence which I take a look at next ?
Personally, I'm thinking Software Register, but I'm open to change.
FYI - I have the DB design mostly complete for both of these - it's just the actual code that needs to happen now. "Just" the code he says... :-)
IIS Auditing
IIS auditing for Windows 2003 and up is working.
I also have 64bit Windows CD Keys enumerating, too.
Some spit and polish to do, but another alpha should be inbound soon.
I also have 64bit Windows CD Keys enumerating, too.
Some spit and polish to do, but another alpha should be inbound soon.
Monday, October 4, 2010
What's next for OAv2 ?
My work program (in my head) is such:
1 - Finish off the existing functions that have been implemented.
2 - Get IIS auditing working.
Those two will take a week or so.
Look-out for another alpha next week sometime...
1 - Finish off the existing functions that have been implemented.
2 - Get IIS auditing working.
Those two will take a week or so.
Look-out for another alpha next week sometime...
Tuesday, September 28, 2010
Alpha 5 released
Fixed a few bugs.
Export a Group definition to XML and import.
SQL Database enumeration.
Export a Group definition to XML and import.
SQL Database enumeration.
Monday, September 27, 2010
Update
No coding done over the weekend - we have visitors staying with us.
I should be able to get a release up pretty soon though.
I've had some feedback (from alpha 4) and have also managed to get SQL Server DBs enumerating / storing / reporting.
I should be able to get a release up pretty soon though.
I've had some feedback (from alpha 4) and have also managed to get SQL Server DBs enumerating / storing / reporting.
Thursday, September 23, 2010
CodeIgniter Sessions + IE sucks
Man - what a pain in the ass.
Apparently the in built CodeIgniter session class and IE7/8/9 don't like each other.
On top of that, if you're using an internal computer name to access the site, well, that's not a valid W3C URL standard. You have to have at least two "." 's in the URL. So, trying to access the site via http://mycomputer is not strictly valid and IE will reject the cookie. Sigh.
So, I found the "session hybrid" class for CodeIgniter. Combining this with accessing the site via http://www.mypcname.com seems to work in IE. You also have to put the www.mypcname.com in your /etc/hosts file to make it work (otherwise it obviously will not resolve through normal DNS).
So, the long and the short is - I have sessions in OAv2 with IE7/8/9 working, but it requires a change to your /etc/hosts file (or your internal DNS). Or you could use the full domain name / path to your machine. In my case, that's rather long...
This does not affect submitting audit results, as that page does not use cookies.
If anyone has a better option - please advise.
BTW - IE6 & Firefox(3.6.9) work fine. Not sure about Chrome, Opera, et al... Strictly speaking Firefox should break just like IE if it followed standards. Maybe the Mozilla Devs are slack, maybe they thought they would deliberately _not_ meet the standard to make it easier for "internal to company" type sites - who knows ?
As per http://curl.haxx.se/rfc/cookie_spec.html,
Apparently the in built CodeIgniter session class and IE7/8/9 don't like each other.
On top of that, if you're using an internal computer name to access the site, well, that's not a valid W3C URL standard. You have to have at least two "." 's in the URL. So, trying to access the site via http://mycomputer is not strictly valid and IE will reject the cookie. Sigh.
So, I found the "session hybrid" class for CodeIgniter. Combining this with accessing the site via http://www.mypcname.com seems to work in IE. You also have to put the www.mypcname.com in your /etc/hosts file to make it work (otherwise it obviously will not resolve through normal DNS).
So, the long and the short is - I have sessions in OAv2 with IE7/8/9 working, but it requires a change to your /etc/hosts file (or your internal DNS). Or you could use the full domain name / path to your machine. In my case, that's rather long...
This does not affect submitting audit results, as that page does not use cookies.
If anyone has a better option - please advise.
BTW - IE6 & Firefox(3.6.9) work fine. Not sure about Chrome, Opera, et al... Strictly speaking Firefox should break just like IE if it followed standards. Maybe the Mozilla Devs are slack, maybe they thought they would deliberately _not_ meet the standard to make it easier for "internal to company" type sites - who knows ?
As per http://curl.haxx.se/rfc/cookie_spec.html,
Only hosts within the specified domain can set a cookie for a domain and domains must have at least two (2) or three (3) periods in them to prevent domains of the form: ".com", ".edu", and "va.us". Any domain that fails within one of the seven special top level domains listed below only require two periods. Any other domain requires at least three. The seven special top level domains are: "COM", "EDU", "NET", "ORG", "GOV", "MIL", and "INT".
Subscribe to:
Posts (Atom)
Posts
