OSSP CVS Repository

ossp - ossp-pkg/ac/TODO 1.2
Not logged in 		[Honeypot]  [Browse]  [Directory]  [Home]  [Login
[Reports]  [Search]  [Ticket]  [Timeline
  [Raw

ossp-pkg/ac/TODO 1.2

- "lock" command for locking the session

- "not" (!) implementing in grants

- error on /DNS
ac: connection establishing
Use of uninitialized value in hash element at /u/rse/ac/src/ac line 1216.
Use of uninitialized value in concatenation (.) or string at /u/rse/ac/src/ac line 1216.
ac:ERROR: invalid login method "" 
ac:ERROR: Can't call method "delwin" on an undefined value 

- support not in grants with "!xx"
- access levels/tags:
  grant { @gsoc[0] } { @is };
  grant { @gsoc[1] } { rse cschug };
- display order
  order { @is @gsoc } { @is };
  order { @gsoc @is } { @gsoc };
- switch user
  superuser { rse cschug };
  grant { SUPERUSER } { rse };
- who's online, last login, busy time, ...$ who
- options: -+include, -+shell$(cmd), -+overrideentry 
- remove special case of "hostname" and make this the first argument of login args
- shell-style $(cmd) einbauen (und dafuer $ENVs rauswerfen?)
- usage of #1 for backreferences in expected strings should be locally scoped?!
- more expect methods

- SIGWINCH support
- provide last-login information
- option -g for starting in CUI and staying there

- add ac.pod documentation

- better code commenting
- better consistrency checks
- better error checking, especially line/col info on parse errors

Manuel Hendel:
- SSH:
    - Abschalten von Agentforwarding auf die Maschine nach
      login.eu.cw.net
    - Konfigurationsmöglichkeit ob Privat Keys vom Agent oder vom
      login.eu.cw.net genutzt werden, Konfigurationsmöglichkeit pro
      Host in ssh-config (wird aus login Server config erzeugt)
- Screen in der Shell auf login.eu.cw.net
- zusätzlich, zu den vorhandenen Feldern in der Auflistung der Server
  den User mit dem man sich einloggt anzeigen
- List der Server nicht nur von oben nach unten durchlaufen können
  sondern auch von unten nach oben
  (Wrapping!)
- einloggen pro Server mit mehreren Benutzern in der Konfiguration ermöglichen
  z.b. oracle@pho-db-1 vs. root@pho-db-1
 
Christoph Schug:
- feature: allow different visible hostname instead of used one (e.g.
  Management-LAN und nur IPs bekannt)
- feature: allow better parameterization of login methods
- feature: allow to configure arbitrary shell commands, e.g. additional
  command "ping" (similar to "connect") for checking connectivity first
- bugfix: on failed logins or terminated connections, the OSSP ac shell terminates
  pho-ftp-1:~#  shutdown -r now
  Connection to 172.16.1.161 closed by remote host.
  Connection to 172.16.1.161 closed.
  login:ERROR: failed to spawn sychronous command: "ssh -2 -A -X root@172.16.1.161": No such file or directory (No such file or directory)
  login-ui@m.de.cw.net: shutdown session
- bugfix: "info" does no access control, everyone sees everything
- bugfix: (similar to dt1->en1->mutt) in NVi keystroke problems (bash geht)
- command line expansion bei trick mit "oracle@pho-db-1"  funktioniert nicht gescheit
- "connect foo" und "foo" existiert nicht, macht shutdown der Session

CVSTrac 2.0.1