The pfSense Store

Author Topic: Logoff Feature $400.00 USD -- Must have user configurable logoff timer  (Read 2517 times)

0 Members and 1 Guest are viewing this topic.

Offline vreid473

  • Newbie
  • *
  • Posts: 7
    • View Profile
I need a logoff feature for pfsense.  This will help with HIPAA compliance.

Here are the specs.
1.  Have a default logoff time of 5 minutes of inactivity.  After that, the user needs to be asked for the username and password again in order to be given access to the  web gui.
2.  This logoff time after a period of inactivity must be configurable somewhere in the web gui.  I suggest the same place where users choose their pfsense username and password.

Bonus:
1.  If this code also includes a check box to automatically create the firewall rules to enable or disable https access to the pfsense web gui from the WAN interface, then I'll add $100.00 USD to the fee that I pay.  Note, for this bonus to be paid, this additional function needs to actually work, not just be the gui front end for this item.


Note:  All code that is produced for this product shall be donated back to the pfsense code base under the same BSD license as the core pfsense code base.

If you are interested, please reply to this message, and we will make contact arrangements.


Thanks,

Vaughn Reid III
« Last Edit: February 12, 2007, 08:39:46 am by vreid473 »

Offline billm

  • Administrator
  • Hero Member
  • *****
  • Posts: 731
    • View Profile
    • UCSecurity - Technology discovery and ramblings
Re: Logoff Feature $400.00 USD -- Must have user configurable logoff timer
« Reply #1 on: February 12, 2007, 01:30:16 pm »
I've corresponded with vreid on this and plan on taking this bounty.

--Bill
pfSense core developer
blog - http://www.ucsecurity.com/
twitter - billmarquette

Offline databeestje

  • Administrator
  • Hero Member
  • *****
  • Posts: 1048
  • It just might be your luck day, if you only knew.
    • View Profile
Re: Logoff Feature $400.00 USD -- Must have user configurable logoff timer
« Reply #2 on: February 15, 2007, 06:45:55 am »
Bonus:
1.  If this code also includes a check box to automatically create the firewall rules to enable or disable https access to the pfsense web gui from the WAN interface, then I'll add $100.00 USD to the fee that I pay.  Note, for this bonus to be paid, this additional function needs to actually work, not just be the gui front end for this item.

Unless Bill complains I am willing to create such a feature. A few questions about the bonus feature.

If you want to be able to remotely administer the box you are currently aware that you can do this with a firewall rule, no?

I was thinking something along the following lines.
1 "Allow remote administration checkbox on the webgui port and protocol, with a field next to it to specify either a IP or a alias which is allowed to connect".

OR

2 "Allow remote administration checkbox, force the webgui to https, user port selection from general settings, with a field next to it to specify either a IP or a alias which is allowed to connect".

I am aware that there are quite a number of users that require access to the webgui on port 80 because of artificial reasons they can not control. So I wanted to make it possible to allow remote administration over port 80 http.
Although I consider it good practice to switch to https.

Would the following suggestion work for you, only allow setting the remote administration checkbox when the protocol is https on whatever the webgui port is? This would leave the choice of external port free, you can always set this on the general setup page.

Kind regards,

Seth