Re: [pfSense Support] 1.2.1 released!

Sun, 28 Dec 2008 13:40:04 -0800

I copied the 1.2.1 image to a new CF card, and 'restored' the configuration parameter file I had just exported using the backup/restore function. 
So far that's the only problem I've detected.


Per your directive, I modified /usr/local/www/graph.php.
FIXED: Chrome when running the GUI on both HTTP and HTTPS,
NOT FIXED: IE 6.x and 7.x still malfunctions in HTTPS. HTTP Continues to work. 

Let me know if there's another fix I can try.
I'm happy to help any way I can.

-Karl
----- Original Message ----- From: "Chris Buechler" <[email protected]> 
To: <[email protected]>
Sent: Sunday, December 28, 2008 2:49 PM
Subject: Re: [pfSense Support] 1.2.1 released!



On Sun, Dec 28, 2008 at 3:25 PM, Karl Fife <[email protected]> wrote:

I just upgraded from 1.2 Embedded to 1.2.1 Embedded:

Is the following a regression?



Yep - the SVG graphs used to not require any authentication, they were
open to anyone who had access to the port your webUI was running on if
you accessed that php page directly. Now that page won't load without
authentication. This is how m0n0wall has always done it, but we went
through and tightened up some things including this. But the way it
was done apparently only worked right with Firefox. Many of our devs
including the one who made that change are Mac users, or exclusively
use Firefox, which is likely how this wasn't noticed sooner.

This has been fixed, I think. Please help test - Go to Diagnostics ->
Edit file, open /usr/local/www/graph.php. Replace:

if(!$_SERVER['PHP_AUTH_USER']) {
        Header("Location: /");
        exit;
}

with:
require("guiconfig.inc");

save the file, then try again. That works for me in Chrome, and still
requires the authentication.

On another note, upgrading embedded is of course a known pain point
with every embedded version to date, and hasn't been well tested - how
did you upgrade, and I presume everything else is working as prior to
upgrade?

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Commercial support available - https://portal.pfsense.org





---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Commercial support available - https://portal.pfsense.org

Reply via email to