Feature request: session tracking based on traffic

[GoogleCodeExporter]

I don't know how difficult it is but a session tracking based on the packets 
traffic (like WIFIDog) would help to make Kanet work on IPhones. No need to 
keep a window open.

It could be an option in the configuration file.

Thomas

Original issue reported on code.google.com by thomas.b...@gmail.com on 31 Jan 2012 at 10:00

[GoogleCodeExporter]

The main goal of updated session is to limit spoofing time window. Disabled it 
have (in my opinion) no sense as we can't offer spoofer an unlimited time 
access.
Let's have other opinion about this before included an option that's possibly 
makes kanet less secure.

Original comment by cymo...@gmail.com on 31 Jan 2012 at 10:10

• Added labels: Type-Enhancement
• Removed labels: Type-Defect

[GoogleCodeExporter]

After using it for about a week now I think this would be very useful as an 
option. I don't think that having unlimited would be good but maybe having a 
way to configure session-limit by minutes/hours. Most of our students at our 
school use their Anroid/Apple products to connect to our Wifi and cannot 
maintain a open window. Our current wireless login is based on a time-limit, we 
are using our Sonicwall AP's that redirect to a Sonicwall login page on the 
firewall itself giving them certain ampoutn of time before they need to 
re-authenticate.

I REALLY want to use this for our wireless, 90% of our web apps use our CAS for 
login and moving our wireless to the same login would be awesome!

Jason

Original comment by jason.ev...@gmail.com on 3 Jul 2012 at 1:38

[GoogleCodeExporter]

if the session time out (15s default) can be set manually in config file is 
enough ?

Original comment by cymo...@gmail.com on 3 Jul 2012 at 1:49

[GoogleCodeExporter]

Where is this option, I looked in the config file and cannot find a Default 
Session TimeOut of 15s? Would probably work if I could find, lol..

Thanks,
Jason

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 2:12

[GoogleCodeExporter]

Hi jason,
it was a question ... in fact i update some code with this :
        "WEB_SESSION_TIMEOUT" : "7200",
        "ENABLE_TIMEOUT" : "1",
WEB_SESSION_TIMEOUT is the authentication duration and ENABLE_TIMEOUT is to 
enable/disable session update to validate.
I need to test those changes.
Can you test it ?

Original comment by cymo...@gmail.com on 5 Jul 2012 at 2:22

[GoogleCodeExporter]

I added just under the Default configuration like so 

    "ENABLE_TIMEOUT" : "1",
    "WEB_SESSION_TIMEOUT" : "7200",

I didn't see any change, I closed the browser which in-turn destroys the CAS 
session and the KANET was still looking for a valid ticket just a few mitutes 
later,

Is there anything else that should be updated?

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 2:54

[GoogleCodeExporter]

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 2:59

Attachments:

• kanet.log
• error.log
• access.log

[GoogleCodeExporter]

I uploaded the logs above, just scroll down to todays dates, July 5th around 
930-10am CST

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 3:01

[GoogleCodeExporter]

Jason .. change can't be done Over The Air .. to test you need to download new 
sources, compile and install it.
I tried to init the git repository, but no way .. :S

Original comment by cymo...@gmail.com on 5 Jul 2012 at 3:04

[GoogleCodeExporter]

Ohh ok, So I will get it downloaded and let you know, lol

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 3:08

[GoogleCodeExporter]

Whats the git repo link?

Original comment by jason.ev...@gmail.com on 5 Jul 2012 at 3:09