Re: [pfSense Support] http - https and captive portal

[jonathan gonzalez]

Hi Scott,

i sniffed the session while using the captive portal, and definitively a 
non-HTTPS session is used.

I would like to know where i can modify the global variable 
"$PORTAL_ACTION$" to use https://<pfsense_ip:8000 instead http.

Thanks in advance.

jonathan




Scott Ullrich wrote:
There is no way for me to see this code correctly.  Make sure your
form is posting to https://$IPOFpfSENSE  ...  If for some reason the
form doesn't post then you know its not running on HTTPS.

Scott
PS: please do not send html mail to public lists.

On 10/22/05, jonathan gonzalez <[EMAIL PROTECTED]> wrote:

This is the exim of the command you tell:

root      511  0.0  0.4  2552  2004  ??  Ss   12:26PM   0:02.77
/usr/local/sbin/mini_httpd -S -E /var/etc/cert.pem -c **.php|**.cgi -u
root -maxproc 16 -i /var/run/mi
root      567  0.0  0.3  2512  1608  ??  Ss   12:26PM   0:00.01
/usr/local/sbin/mini_httpd -a -M 0 -u root -maxproc 72 -p 8000 -i
/var/run/mini_httpd.cp.pid
root      570  0.0  0.1  1180   712  ??  Ss   12:26PM   0:00.20
/usr/local/bin/minicron 60 /var/run/minicron.pid /etc/rc.prunecaptiveportal



I can see something related to a PEM file. Should i think mini_httpd is
running with SSL support? My tests show me that it doesnt :(

About the "lock icon", which auth page do you refer?

I already attach my home made captive portal page using the form code
pfsense provide from the web admin panel for your evaluation. Am i doing
something wrong or incomplete?

Wait for your thoughts!
Regards,


jonathan






Scott Ullrich wrote:

Please run a ps awux | grep mini and show the results from a shell.

Also, do you not see a lock icon in the browser when visiting the auth page?


On 10/22/05, jonathan gonzalez <[EMAIL PROTECTED]> wrote:


Hi,

i have a reasonable doubt (i think): if i set up web admin access using
SSL, why the captive portal is running (and processing authentication)
on standard http?

I look forward to get your thoughts.
Regards,

jonathan


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]








        SURESTORM.COM CAPTIVE PORTAL

In order to get in/out of the LAN you'll need to authenticate to the central 
AAA server.
      Provide your username and password below and check your access rights.    
                        
        

Username:

Password:

                                                                                
                

If you have furher trouble get in touch via email to [EMAIL PROTECTED]
          Kind regards  
        
        
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]