Traceability hotspot


(Goulwen Jouan) #1

Hi, I have a quick question about the nethserver wifi hotspot.
I am interested in captive portal and authentication by email or social networks.
In France, we must keep for 1 year the logs of users. Only a judicial authority has the right to consult or it is up to us to provide them with an archive. Does nethserver do that?
I didn’t found on documentation.
thank’s.


(Giacomo Sanchietti) #2

The service is split into many programs.

Regarding the chilli instance (named dedalo) which runs inside NS, it stores everything inside to /var/log/messages.
Then the log rotation is handled by /etc/logrotate.d/syslog.

About the server part (https://nethesis.github.io/icaro/), it depends on how you configure your machine. It’s entirely up to you.

If you have more questions, please ask. @Amygos and @davide_marini will answer to them!


(Rob Bosch) #3

Can’t the logging get a seperate log? I can imagine that if you are obligated to hand over 1 year of logs, you don’t want to hand over 1 year of /var/log/messages
In /var/log/messages a lot more is stored than chili hotspot activity. And grepping for dedalo entries might be not accepted as ‘full hotspot activity log’


(Giacomo Sanchietti) #4

Of course, you need to create a rsyslogd filter.


(Michael Kicks) #5

Little question for “logs of users”. What france laws intends for logs? Site visited, with timestamp? Or only “logon and logoff” activity?


(Goulwen Jouan) #6

Hi Guy thank’s for you answer.
In France, in fact you need the name, first name. Date time website visited.

Link to the documents but it’s in french sorry …
http://www.ssi.gouv.fr/uploads/IMG/pdf/NP_Journalisation_NoteTech.pdf#subsection.C.3