Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Logoff Feature $400.00 USD – Must have user configurable logoff timer

    Expired/Withdrawn Bounties
    3
    3
    3.6k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      vreid473
      last edited by

      I need a logoff feature for pfsense.  This will help with HIPAA compliance.

      Here are the specs.
      1.  Have a default logoff time of 5 minutes of inactivity.  After that, the user needs to be asked for the username and password again in order to be given access to the  web gui.
      2.  This logoff time after a period of inactivity must be configurable somewhere in the web gui.  I suggest the same place where users choose their pfsense username and password.

      Bonus:
      1.  If this code also includes a check box to automatically create the firewall rules to enable or disable https access to the pfsense web gui from the WAN interface, then I'll add $100.00 USD to the fee that I pay.  Note, for this bonus to be paid, this additional function needs to actually work, not just be the gui front end for this item.

      Note:  All code that is produced for this product shall be donated back to the pfsense code base under the same BSD license as the core pfsense code base.

      If you are interested, please reply to this message, and we will make contact arrangements.

      Thanks,

      Vaughn Reid III

      1 Reply Last reply Reply Quote 0
      • B
        billm
        last edited by

        I've corresponded with vreid on this and plan on taking this bounty.

        –Bill

        pfSense core developer
        blog - http://www.ucsecurity.com/
        twitter - billmarquette

        1 Reply Last reply Reply Quote 0
        • D
          databeestje
          last edited by

          @vreid473:

          Bonus:
          1.  If this code also includes a check box to automatically create the firewall rules to enable or disable https access to the pfsense web gui from the WAN interface, then I'll add $100.00 USD to the fee that I pay.  Note, for this bonus to be paid, this additional function needs to actually work, not just be the gui front end for this item.

          Unless Bill complains I am willing to create such a feature. A few questions about the bonus feature.

          If you want to be able to remotely administer the box you are currently aware that you can do this with a firewall rule, no?

          I was thinking something along the following lines.
          1 "Allow remote administration checkbox on the webgui port and protocol, with a field next to it to specify either a IP or a alias which is allowed to connect".

          OR

          2 "Allow remote administration checkbox, force the webgui to https, user port selection from general settings, with a field next to it to specify either a IP or a alias which is allowed to connect".

          I am aware that there are quite a number of users that require access to the webgui on port 80 because of artificial reasons they can not control. So I wanted to make it possible to allow remote administration over port 80 http.
          Although I consider it good practice to switch to https.

          Would the following suggestion work for you, only allow setting the remote administration checkbox when the protocol is https on whatever the webgui port is? This would leave the choice of external port free, you can always set this on the general setup page.

          Kind regards,

          Seth

          1 Reply Last reply Reply Quote 0
          • First post
            Last post