Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.
Latest post by user774 on Tuesday, 19 February 2013 14:53 CST
Just a quick idea to make a great product more awesome:
I'd love to have a dashboard chart or scoreboard for monthly/weekly/daily attacks so it's easy to see the baseline and deviations from it over time. Something as simple as a weekly-monthly email showing the current week/month trend versus YTD and all time average would be useful as a manageable heads-up alert to any unusual patterns in the frequency and types of attacks.
If there were only a handful of metrics I could have done that. The problem is that you need an infinitely flexible reporting engine which can be used to provide all sorts of arbitrary KPIs in arbitrary time segments. It already exists and it's called Microsoft Office Excel. I don't intend to build half of Excel's spreadsheet and graph engine inside Admin Tools :)
I know what you have in mind. If Google can do it for Google Analytics it's feasible. Yes, it is... if you have hundreds of people and no shortage of money. If I were to assemble a team as big as necessary to provide the kind of browser-based analytics you want in a reasonable time I would have to start charging 500€ per site instead of 20€ for unlimites sites. And that's just to break even, provided that all of the people who were happy to pay me 20€ are equally happy to pay me 500€. Do you see the practical issue here?
Nicholas K. Dionysopoulos
Lead Developer and Director
🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
If you could easily get the data into a spreadsheet or google fusion tables that would be all that's needed, I guess.
I was thinking something as modest as a running average would do it. Are total attacks (nevermind false positive) up this month or down? I can only determine this quickly now in a crude way with Gmail filtering alert emails or by filtering the logs and counting.
If you could easily get the data into a spreadsheet or google fusion tables that would be all that's needed, I guess.
I was thinking something as modest as a running average would do it. Are total attacks (nevermind false positive) up this month or down? I can only determine this quickly now in a crude way with Gmail filtering alert emails or by filtering the logs and counting.
Are you familiar with Akeeba Subscriptions? I could easily implement a 30 days rolling graph and pie chart to give a graphical representation of security exceptions per day and a breakdown per reason just like Akeeba Subscriptions does the same for sales. Maybe I could even add a month-to-date and last month comparison in the same vein as Akeeba Subscriptions stats are presented.
Regarding data export, you can always export the #__admintools_logs table to CSV using your host's copy of phpMyAdmin and import to Excel 2010 or later (older versions only support up to roughly 60,000 rows). Using Excel's data filters allows for easy data filtration and reporting.
Nicholas K. Dionysopoulos
Lead Developer and Director
🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
I haven't tried out Akeeba Subscriptions for quite some time, but I see what you mean. That would work very nicely.
I know I could put the log table data into Excel, but it's the manual steps I want to get rid of. To me the value is in quickly getting brief, digestible risk/threat information on a regular basis.
If this is something you do become interested in pursuing, I think it would be a significant, marketable extension of the value of Admin Tools -- especially for high value sites, enterprise users, etc.
Here are two actual use cases where Admin Tools has been essential, though somewhat tedious to operate:
1) Identifying legitimate users who are having trouble getting into their accounts or who have been locked out. In cases where they're logging in to spend $300 on average, we don't want them locked out, but we do want to stop the brute force atacks and block their sources.
2) Identify any significant increase in a certain kind of attack, block the sources, and identify the targets -- usually a specific extension. I like to know what the popular targets are, just in case the attackers know something about a vulnerability I'm not aware of.
The better and faster I can identify major attack sources (and block them) versus legitimate users who may need help, the more secure (and customer friendly) we actually are.
All right! I am adding this as a development ticket. I expect this to take me a few weeks due to other development tickets I am currently working on. I expect to be able to release a version with this basic analytics around mid-March.
Nicholas K. Dionysopoulos
Lead Developer and Director
🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!
Excellent!
Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.
Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!