<?php $ago = get_alarm_life($s_since, $s_last); $acid_link = Util::get_acid_events_link($s_since, $s_date, "time_a"); echo "<a href=\"{$acid_link}\" class='stop'><span style='color:black' class='tip' title='" . _("First") . ": {$s_since} " . Util::timezone($tz) . "<br>" . _("Last") . ": {$s_last} " . Util::timezone($tz) . "'>" . $ago . "</span></a>"; ?> </td> <?php } else { ?> <td class="nobborder" style='<?php echo $bgcolor; ?> text-align: center' width='12%'> <?php $now = gmdate("Y-m-d H:i:s", gmdate("U") + 3600 * $tz); $ago = get_alarm_life($s_since, $now); $acid_link = Util::get_acid_events_link($s_since, $now, "time_a"); echo "<a href=\"{$acid_link}\" class='stop'>\n \t\t\t\t <span style='color:black' class='tip' title='" . _("First") . ": {$s_since} " . Util::timezone($tz) . "'>" . $ago . "</span>\n \t\t\t\t </a>\n \t\t\t\t <img src='/ossim/alarm/style/img/correlating.gif' class='img_cor tip' title='" . _("This alarm is still being correlated and therefore it can not be modified") . "'/>"; ?> </td> <?php } ?> <td class="left" style="padding-left:10px"><?php echo $source_balloon; ?> </td> <td class="left" style="padding-left:10px"><?php echo $dest_balloon;
if (ossim_error()) { die(ossim_error()); } $geoloc = new Geolocation("/usr/share/geoip/GeoLiteCity.dat"); $db = new ossim_db(TRUE); $conn = $db->connect(); $tz = Util::get_timezone(); list($alarm, $event) = Alarm::get_alarm_detail($conn, $backlog); $stats = $alarm->get_stats(); $timestamp_utc = Util::get_utc_unixtime(Util::timestamp2date($alarm->get_timestamp())); $last = gmdate("Y-m-d H:i:s", $timestamp_utc + 3600 * $tz); $alarm_time = get_alarm_life($alarm->get_since(), $alarm->get_last()); preg_match_all("/(\\d+)\\s(\\w+)/", strip_tags(trim($alarm_time)), $found); $alarm_time_number = $found[1][0]; $alarm_time_unit = $found[2][0]; $alarm_life = get_alarm_life($alarm->get_since(), gmdate("Y-m-d H:i:s")); preg_match_all("/(\\d+)\\s(\\w+)/", strip_tags(trim($alarm_life)), $found); $alarm_life_number = $found[1][0]; $alarm_life_unit = $found[2][0]; $show_total = false; $removable = $alarm->get_removable(); $backlog_id = $alarm->get_backlog_id(); $event_id = $alarm->get_event_id(); /* Buttons */ $alarm_detail_url = empty($stats) ? "load_alarm_detail('{$event_id}', 'event')" : "load_alarm_detail('{$backlog_id}', 'alarm')"; $alarm_close_url = "tray_close('{$backlog_id}');"; $alarm_open_url = "open_alarm('{$backlog_id}');"; $alarm_delete_url = "tray_delete('{$backlog_id}');"; /* Source Home */ $_home_src = Asset_host::get_extended_name($conn, $geoloc, $alarm->get_src_ip(), $ctx, $event["_SRC_HOST"], $event["_SRC_NET"]); /* Destination Home */
} } } else { $res["entities"] = array(); }*/ //$res["since"] = $since." ".Util::timezone($tz); //$res["last"] = $last." ".Util::timezone($tz); if ($alarm->get_removable()) { $res[] = $last == $today ? $hour : $last; //get_alarm_life($since, $last); $res[] = $alarm->get_status(); } else { $now = gmdate("Y-m-d H:i:s", gmdate("U") + 3600 * $tz); $res[] = get_alarm_life($since, $now); $res[] = "<img align='absmiddle' src='/ossim/alarm/style/img/correlating.gif' class='img_cor tip' title='" . _("This alarm is still being correlated and therefore it can not be modified") . "'>"; } //$res["status_background_color"] = ($alarm->get_status() == "open") ? "#ECE1DC" : "#DEEBDB"; //$res["status_border_color"] = ($alarm->get_status() == "open") ? "#E6D8D2" : "#D6E6D2"; // TAGS $tgs = ""; if (count($tags) > 0) { foreach ($tags as $id_tag) { $tgs .= $tags_html[$id_tag] . " "; } } $res[] = $tgs; // kingdom, category and subcategory list($alarm_ik, $alarm_sc) = Alarm::get_alarm_name($alarm->get_taxonomy()); $res[] = $alarm_ik;
//This is to force the alarms to remember the position of the datatables $_SESSION["_alarm_keep_pagination"] = TRUE; $_SESSION["_alarm_stats"] = $stats; //Getting event info $event_info = Alarm::get_event($conn, $alarm->get_event_id()); //alarm source and detination $src = $stats['src']; $dst = $stats['dst']; $alarm_name = Util::translate_alarm($conn, $alarm->get_sid_name(), $alarm, 'array'); if (!empty($alarm_name['subcategory'])) { $alarm_tr = Util::translate_alarm($conn, $alarm_name['subcategory'], $alarm, 'array'); $alarm_name['subcategory'] = $alarm_tr['name']; } $event_number = $stats['events']; $alarm_time = get_alarm_life($alarm->get_since(), $alarm->get_last()); $alarm_life = get_alarm_life($alarm->get_last(), gmdate("Y-m-d H:i:s"), 'ago'); /* Source */ $_home_src = Asset_host::get_extended_name($conn, $gl, $alarm->get_src_ip(), $ctx, $event_info["src_host"], $event_info["src_net"]); /* Destination */ $_home_dst = Asset_host::get_extended_name($conn, $gl, $alarm->get_dst_ip(), $ctx, $event_info["dst_host"], $event_info["dst_net"]); //Alarm Attack Pattern $attack_pattern = _(is_promiscous(count($src['ip']), count($dst['ip']), $_home_src['is_internal'], $_home_dst['is_internal'])); //Getting the tags $_tags = Tag::get_tags_by_component($conn, $backlog_id); $tag_list = array(); foreach ($_tags as $tag_id => $tag) { $tag_list[$tag_id] = array('id' => $tag_id, 'name' => $tag->get_name(), 'class' => $tag->get_class()); } //Alarm Status if ($alarm->get_removable() === 0) { $status = 'correlating';