Prevent this page from creating additional dialogues?



  • 2.2-BETA (amd64)
    built on Fri Oct 17 20:02:23 CDT 2014
    FreeBSD 10.1-RC2

    What does "Prevent this page from creating additional dialogues" do?

    Its popping up when I click on a blue i icon in the snort alerts page with the tooltip "resolve host via reverse dns lookup" two or more times.

    If I tick it, I'm assuming the popup with the resolved host name will no longer appear, which would then prompt the question, where can I reset that option if I want the page to create additional dialogues and show the resolved hosts again? Or should this option not be present if it does indeed block the popup page with the hostname?

    TIA.


  • Rebel Alliance Developer Netgate

    It's from your browser and not pfSense. If you set it then that page cannot make any more JavaScript alert dialogs.



  • jimp is correct.  Your browser is the source of that setting.  The JavaScript pop-up alert dialog is a temp-fix to workaround some recent changes in the pfSense Diagnostics…DNS Lookup code.  I hope to soon revise that to something a little prettier and more in tune with pfSense themes.

    Bill



  • I've never seen that popup before so learnt something new.

    I dont know if its possible, but where the pop up windows resolve a host, there are times they cant resolve, but I quite liked the way in earlier versions where you could resolve the host in the dns lookup page, and if it failed to resolve on that page, then have the option to use DNS stuff as it can be useful at least looking up any basic info like where in the world its assigned.



  • @firewalluser:

    I've never seen that popup before so learnt something new.

    I dont know if its possible, but where the pop up windows resolve a host, there are times they cant resolve, but I quite liked the way in earlier versions where you could resolve the host in the dns lookup page, and if it failed to resolve on that page, then have the option to use DNS stuff as it can be useful at least looking up any basic info like where in the world its assigned.

    Well, that extra functionality is what disappeared due to the tightening of security on the pfSense GUI pages.  The use of query strings and $_GET is being phased out and replaced with $_POST and authenticated sessions to prevent cross-site scripting attacks.  The old Snort code simply called an existing pfSense PHP page to perform the lookup, but it relied on that page allowing passed query strings to send in the IP address to resolve.  That functionality was removed.

    Bill



  • @bmeeks:

    Well, that extra functionality is what disappeared due to the tightening of security on the pfSense GUI pages.

    That explains that. Thanks!



  • @firewalluser:

    @bmeeks:

    Well, that extra functionality is what disappeared due to the tightening of security on the pfSense GUI pages.

    That explains that. Thanks!

    I will look into a better method within the Snort and Suricata packages.  I am not happy with the current stop gap measure I put place in those packages.

    Bill