I figured it out by looking at one of the pre-recorded macros.

global $config;

This isn't in the help or documentation anywhere.. I guess I'm the only person who ever got tripped up on it though!

@ermal:

There is rate limit on the login attempts a host can make.
So its not based on user but host sending login attempts. Its hardcoded in php code to 5 attempts in 15minutes but do not quote me on that.

That's the sort of thing I'm looking for. If it were configurable for # attempts and # minutes for future, it would be nice. Also worth adding to the documentation if correct. While it allows multiple clients (which causes the limit to scale) it's not nearly enough for heavy duty brute force to be viable. Thanks. As to the others…? :)

Thanks jimp!

I see you updated http://doc.pfsense.org/index.php/Creating_Your_Own_Package_Repository already too, fantastic.

Still not recommended. There is no way to get all of the required compilers, headers, tools, etc, on there and still have a system one would consider secure and usable.

If you must share hardware, I'd suggest using a VM setup like ESX and make a pfSense VM and a separate VM for your other services.

May not take much to do really, it could be as simple as adding some sortable tags to the table there, as we have on many other pages.

Open a feature request ticket on redmine (set target version to 'future') and if someone gets a moment to look at it, it may be easy.

Thanks.
In the next months i plain made the subscription (very low money, everything starting from begin now) and i will request that.
Thank you for the anwser.

Best Regards.

https://github.com/bsdperimeter

All packages work that way. <config>is an array inside of a package like that. It's interpreted by the XML parser as an array, so it gets an array index.

Some packages have multiple configs (multiple tabs, etc) and rely on that.</config>

You can get the green_saver.ko from here:
http://files.pfsense.org/jimp/ko-8.1/

Place that in /boot/modules/ and then add it to /boot/loader.conf.local like so:
green_saver_load="YES"

That may be enough. If you need to tweak the time, install the shellcmd package and then setup a vidcontrol -t nnn command to change the timeout.

Hi,

I'm done with debugging of the voucher system.
Next week maybe i can provide more details about the key generation an the databases.
I had written a first "test-php-script" and it looks like it works.

Can somebody provide me the development documentation/scripts/sources (e.g. github ..)?
I have only found this: https://github.com/bsdperimeter/pfsense .

Work in Progress ….

:)

Is there anyone to answer my first question?

I do not think that will solve what you are after.
Mostly will break other things.

Check out the replies here.

I had the same question and just successfully requested the change to be made officially!

Thank you to both of you!

stephenw10: I have followed the steps you outlined and forked to source. I committed the changes and requested a merge, plus dropped an email to the core team.

richinspirit: Thank you, too! I have sent you the new files (3 all together) via email!

AFAIK FreeBSD supports only hardware virtualized (HVM) kernels on amd64; however, PV drivers are supported in this configuration.

The PHP one doesn't matter - we aren't moving to 5.3 yet and there is no fix for that on 5.2.x.

The syslog one isn't really relevant to how it's used on pfSense so again, doesn't really matter.

If there is a problem, we usually address it with custom patches or updating as needed.

Usb_modeswitch is a Linux utility. u3g is the bsd equivalent, though it doesn't support as many modems.
If you are seeing cua0 when you plug in the modem then it is correctly switched to modem type device. Try sending it some AT commands and see what happens. pfSense has a program for talking to modems terminal style, like minicom, but for the life of me I can't remember what it's called!  ::)

Steve

Edit: Found it: tip

Username: rcfa

Strange, because the system seems to find me, it sends me the password reset link just fine, when I give it my e-mail address, which should be the same that's used to send notifications when forum threads are updated. I can PM that e-mail address to you if that's any help, just don't want to post it where spam bots can harvest it…

Almost looks like I have a zombie account, that's visible to some parts of the software, but not to others.