That looks promising, but I can't make heads or tails of how to implement
any of those rules. Is there a way I can set up the logger to only record
usernames if the IP address matches a list of malicious IPs?
Josh Welker
-----Original Message-----
From: Code for Libraries [mailto:[log in to unmask]] On Behalf Of
Michael Berkowski
Sent: Thursday, November 20, 2014 1:02 PM
To: [log in to unmask]
Subject: Re: [CODE4LIB] Balancing security and privacy with EZproxy
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Here's some of the relevant documentation of the user.txt expressions Kyle
mentioned. It is possible to set session variables and get them to be
logged - we're doing this with certain Shibboleth attributes for business
analysis. I have not had luck getting variables other than session vars
set at the user's moment of login to be logged though.
http://oclc.org/support/services/ezproxy/documentation/expressions.en.html
On Thu, 20 Nov 2014, Kyle Banerjee said:
> I can't remember the details because I haven't worked with EZP for
> years and unfortunately, this stuff isn't documented.
>
> Where I used it was in the user.txt file when authenticating. Things
> you can do include setting/modifying session, regular EZP, and
> arbitrary variables, as well as doing comparisons and file I/O. You
> can nest expressions and perform reasonably sophisticated comparisons
> and manipulations.
>
> > On 11/20/14 1:06 PM, Kyle Banerjee wrote:
> >
> >> BTW, you can do some funky things with EZP that include conditional
> >> logic
> >>
> >
> > Can you say more about funky things you can do with EZProxy
> > involving conditional logic? Cause I've often wanted that but
> > haven't found any! Are you talking about a particular part/area of
EZProxy? (Logging?).
> >
- --
++++++++++++++++++++
Michael Berkowski
University of Minnesota Libraries
[log in to unmask]
612.626.6137
PGP Public Key: http://z.umn.edu/mjbpubkey
++++++++++++++++++++
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlRuOowACgkQ01KJk46VC2YL9QCgpyv7ByxUIgnOFcqUT4iFEPLV
0MgAmQHPrDMyVu0x2dgtqE84e9IS1rdV
=lkc4
-----END PGP SIGNATURE-----
|