That looks promising, but I can't make heads or tails of how to implement any of those rules. Is there a way I can set up the logger to only record usernames if the IP address matches a list of malicious IPs? Josh Welker -----Original Message----- From: Code for Libraries [mailto:[log in to unmask]] On Behalf Of Michael Berkowski Sent: Thursday, November 20, 2014 1:02 PM To: [log in to unmask] Subject: Re: [CODE4LIB] Balancing security and privacy with EZproxy -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Here's some of the relevant documentation of the user.txt expressions Kyle mentioned. It is possible to set session variables and get them to be logged - we're doing this with certain Shibboleth attributes for business analysis. I have not had luck getting variables other than session vars set at the user's moment of login to be logged though. http://oclc.org/support/services/ezproxy/documentation/expressions.en.html On Thu, 20 Nov 2014, Kyle Banerjee said: > I can't remember the details because I haven't worked with EZP for > years and unfortunately, this stuff isn't documented. > > Where I used it was in the user.txt file when authenticating. Things > you can do include setting/modifying session, regular EZP, and > arbitrary variables, as well as doing comparisons and file I/O. You > can nest expressions and perform reasonably sophisticated comparisons > and manipulations. > > > On 11/20/14 1:06 PM, Kyle Banerjee wrote: > > > >> BTW, you can do some funky things with EZP that include conditional > >> logic > >> > > > > Can you say more about funky things you can do with EZProxy > > involving conditional logic? Cause I've often wanted that but > > haven't found any! Are you talking about a particular part/area of EZProxy? (Logging?). > > - -- ++++++++++++++++++++ Michael Berkowski University of Minnesota Libraries [log in to unmask] 612.626.6137 PGP Public Key: http://z.umn.edu/mjbpubkey ++++++++++++++++++++ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlRuOowACgkQ01KJk46VC2YL9QCgpyv7ByxUIgnOFcqUT4iFEPLV 0MgAmQHPrDMyVu0x2dgtqE84e9IS1rdV =lkc4 -----END PGP SIGNATURE-----