diff options
author | jim-p <jimp@pfsense.org> | 2010-07-06 16:32:09 -0400 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2010-07-06 16:32:09 -0400 |
commit | 14eab6fb4d893a179c8e689769168968456e1c74 (patch) | |
tree | 8464eaa6958f053b30f4d1505a7ec4063064bc5b /usr/local/www/system_advanced_admin.php | |
parent | 06cb265678b140cba68bba30ea97247c18068f46 (diff) | |
download | pfsense-14eab6fb4d893a179c8e689769168968456e1c74.zip pfsense-14eab6fb4d893a179c8e689769168968456e1c74.tar.gz |
Add a checkbox to disable DNS rebinding checks if needed.
Diffstat (limited to 'usr/local/www/system_advanced_admin.php')
-rw-r--r-- | usr/local/www/system_advanced_admin.php | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/usr/local/www/system_advanced_admin.php b/usr/local/www/system_advanced_admin.php index 840d6bf..6bdd411 100644 --- a/usr/local/www/system_advanced_admin.php +++ b/usr/local/www/system_advanced_admin.php @@ -55,6 +55,8 @@ $pconfig['ssl-certref'] = $config['system']['webgui']['ssl-certref']; $pconfig['disablehttpredirect'] = isset($config['system']['disablehttpredirect']); $pconfig['disableconsolemenu'] = isset($config['system']['disableconsolemenu']); $pconfig['noantilockout'] = isset($config['system']['webgui']['noantilockout']); +$pconfig['nodnsrebindcheck'] = isset($config['system']['webgui']['nodnsrebindcheck']); +$pconfig['noantilockout'] = isset($config['system']['webgui']['noantilockout']); $pconfig['enableserial'] = $config['system']['enableserial']; $pconfig['enablesshd'] = $config['system']['enablesshd']; $pconfig['sshport'] = $config['system']['ssh']['port']; @@ -126,6 +128,11 @@ if ($_POST) { else unset($config['system']['enableserial']); + if ($_POST['nodnsrebindcheck'] == "yes") + $config['system']['webgui']['nodnsrebindcheck'] = true; + else + unset($config['system']['webgui']['nodnsrebindcheck']); + $sshd_enabled = $config['system']['enablesshd']; if($_POST['enablesshd']) $config['system']['enablesshd'] = "enabled"; @@ -316,6 +323,18 @@ function prot_change() { </td> </tr> <tr> + <td width="22%" valign="top" class="vncell"><?=gettext("DNS Rebind Check"); ?></td> + <td width="78%" class="vtable"> + <input name="nodnsrebindcheck" type="checkbox" id="nodnsrebindcheck" value="yes" <?php if ($pconfig['nodnsrebindcheck']) echo "checked"; ?> /> + <strong><?=gettext("Disable webConfigurator DNS Rebinding Checks"); ?></strong> + <br/> + <?php echo gettext("When this is unchecked, access to the webConfigurator " . + "is protected against <a href=\"http://en.wikipedia.org/wiki/DNS_rebinding\">DNS Rebinding attacks</a>. " . + "Check this box to disable this protection if you find that it interferes with " . + "webConfigurator access in certain corner cases. "); ?> + </td> + </tr> + <tr> <td colspan="2" class="list" height="12"> </td> </tr> <tr> |