home *** CD-ROM | disk | FTP | other *** search
/ PC World 2005 December / PCWorld_2005-12_cd.bin / software / temacd / tiny / tpf-6[1].5.126.exe / Tiny Firewall 2005.msi / webui.dll / WS / WSN-DEVICES.JS < prev    next >
Encoding:
JavaScript  |  2005-08-17  |  4.9 KB  |  188 lines
  1. /*//////////////////////////////////////////////////////////////////////
  2. Filename:          wsn-devices.js
  3. Company Name:      Computer Associates International, Inc.
  4. Legal Copyright: Copyright (c) Computer Associates International, Inc.
  5. Author:
  6. Product:          Tiny Firewall
  7. Description:      device functions
  8. ///////////////////////////////////////////////////////////////////////*/
  9.  
  10. var sdparser = window.external.ServerParser(XM_SBX);
  11. var arparser = window.external.ServerParser(XM_APPREP);
  12. var dhtmlctrl = window.external;
  13.  
  14. function getXmlSdbFilePath()
  15. {
  16.     if (sdparser)
  17.     {
  18.         // paths to source files
  19.         return sdparser.filePath;
  20.     } else
  21.         return "";
  22.  
  23. }
  24.  
  25. function changeRules(chkb)
  26.     {
  27.         var idsString = chkb.rules;
  28.         var prevent = chkb.checked;
  29.  
  30.         if (idsString && idsString != "" && sdparser)
  31.         {  // change existing rule
  32.             var ids = idsString.split("|");
  33.             for (var i = 0; i < ids.length; i++)
  34.             {
  35.                 var adl = sdparser.RuleList.Get(ids[i]).AccessDescriptorList;
  36.                 adl.Clear();
  37.                 var ad = adl.CreateAccessDescriptor();
  38.                 ad.AccessType = 0x0000001F;
  39.  
  40.                 if (prevent)
  41.                 {
  42.                     // Prevent
  43.                     
  44.                     // USB and Firewire storage devices have omitted AT_DEVICE_WRITE access in order to avoid "Failed write" messages
  45.                     if ((sdparser.RuleList.Get(ids[i]).Path == "Disk\\Link\\*\\usbstor*" || sdparser.RuleList.Get(ids[i]).Path == "Disk\\Link\\*\\Sbp2*")
  46.                         && sdparser.RuleList.Get(ids[i]).Account == RA_SYSTEM)
  47.                     {
  48.                         var ad2 = adl.CreateAccessDescriptor();
  49.                         ad2.AccessType = AT_DEVICE_OPEN;
  50.                         ad2.AccessResult = 0x0000;
  51.                         ad2.AuditLevel = document.all["SelAuditLevel"].value == "monitor" ? 0x0001 : 0x0000;
  52.                         adl.Insert(ad2);
  53.                         
  54.                         var ad3 = adl.CreateAccessDescriptor();
  55.                         ad3.AccessType = AT_DEVICE_READ;
  56.                         ad3.AccessResult = 0x0000;
  57.                         ad3.AuditLevel = document.all["SelAuditLevel"].value == "monitor" ? 0x0001 : 0x0000;
  58.                         adl.Insert(ad3);
  59.                         
  60.                         ad.AccessType = AT_DEVICE_IOCTL;
  61.                         
  62.                         // ignore AT_DEVICE_WRITE
  63.                     }
  64.                     
  65.                     ad.AccessResult = 0x0000;
  66.  
  67.                     if (document.all["SelAuditLevel"].value == "monitor")
  68.                     {
  69.                         // Monitor
  70.                         ad.AuditLevel = 0x0001;
  71.                     }
  72.                     else
  73.                     {
  74.                     // Ignore
  75.                         ad.AuditLevel = 0x0000;
  76.                     }
  77.                 }
  78.                 else
  79.                 {
  80.                     // Allow / Ignore
  81.                     ad.AccessResult = 0x0001;
  82.                     ad.AuditLevel = 0x0000;
  83.                 }
  84.                 adl.Insert(ad);
  85.             }
  86.         }
  87.         else
  88.         {  // create new rule
  89.             /*var maxId = maxRuleID.value;
  90.             if (maxId == "")
  91.                 maxId = 0;*/
  92.             var rules = "";
  93.             var strRule = "";
  94.  
  95.             if (chkb.objects)
  96.             {
  97.                 var objs = chkb.objects.split("|");
  98.                 for (var i = 0; i < objs.length; i++)
  99.                 {
  100.                     strRule = addRule(objs[i], 0, prevent);
  101.                     rules += strRule + "|";
  102.                     if ((chkb.account) && (chkb.account == "system"))
  103.                     {
  104.                         strRule = addRule(objs[i], 1, prevent);
  105.                         rules += strRule + "|";
  106.                     }
  107.                 }
  108.             }
  109.  
  110.             if (rules.substring(rules.length-1) == "|")
  111.                 rules = rules.substring(0, rules.length-1);
  112.  
  113.             chkb.rules = rules;
  114.         }
  115.  
  116.         saveWSChanges( false, false )
  117.         //external.Save();
  118.     }
  119.  
  120.     function addRule(object, account, prevent)
  121.     {
  122.         var newRule = sdparser.RuleList.CreateRule();
  123.         var adl = newRule.AccessDescriptorList;
  124.  
  125.         //newRule.RuleIdString = id;
  126.         newRule.Priority = 0;
  127.         newRule.ObjectType = 0x00000010;
  128.         newRule.Application = "*";
  129.         newRule.Path = object;
  130.         newRule.PathType = 0;
  131.         newRule.Account = account;
  132.         newRule.assignment = dhtmlctrl.Assignment;
  133.         newRule.RuleID = sdparser.RuleList.GenerateRuleID( newRule.ObjectType, true);
  134.  
  135.         var ad = adl.CreateAccessDescriptor();
  136.         ad.AccessType = 0x0000001F;
  137.  
  138.         if (prevent)
  139.         {
  140.             // Prevent
  141.             
  142.             // USB and Firewire storage devices have omitted AT_DEVICE_WRITE access in order to avoid "Failed write" messages
  143.             if ((sdparser.RuleList.Get(ids[i]).Path == "Disk\\Link\\*\\usbstor*" || sdparser.RuleList.Get(ids[i]).Path == "Disk\\Link\\*\\Sbp2*")
  144.                 && sdparser.RuleList.Get(ids[i]).Account == RA_SYSTEM)
  145.             {
  146.                 var ad2 = adl.CreateAccessDescriptor();
  147.                 ad2.AccessType = AT_DEVICE_OPEN;
  148.                 ad2.AccessResult = 0x0000;
  149.                 ad2.AuditLevel = document.all["SelAuditLevel"].value == "monitor" ? 0x0001 : 0x0000;
  150.                 adl.Insert(ad2);
  151.                 
  152.                 var ad3 = adl.CreateAccessDescriptor();
  153.                 ad3.AccessType = AT_DEVICE_READ;
  154.                 ad3.AccessResult = 0x0000;
  155.                 ad3.AuditLevel = document.all["SelAuditLevel"].value == "monitor" ? 0x0001 : 0x0000;
  156.                 adl.Insert(ad3);
  157.                 
  158.                 ad.AccessType = AT_DEVICE_IOCTL;
  159.                 
  160.                 // ignore AT_DEVICE_WRITE
  161.             }
  162.             
  163.             ad.AccessResult = 0x0000;
  164.  
  165.             if (document.all["SelAuditLevel"].value == "monitor")
  166.             {
  167.                 // Monitor
  168.                 ad.AuditLevel = 0x0001;
  169.             }
  170.             else
  171.             {
  172.                 // Ignore
  173.                 ad.AuditLevel = 0x0000;
  174.             }
  175.         }
  176.         else
  177.         {
  178.             // Allow / Ignore
  179.             ad.AccessResult = 0x0001;
  180.             ad.AuditLevel = 0x0000;
  181.         }
  182.  
  183.         adl.Insert(ad);
  184.         sdparser.RuleList.Insert(newRule, newRule);
  185.  
  186.         return newRule.RuleIDString;
  187.     }
  188.