OPNsense Forum

Archive => 19.1 Legacy Series => Topic started by: putt1ck on May 30, 2019, 09:29:14 AM

Title: Papercut: VIP VHID gateway/password seen as firewall user/password
Post by: putt1ck on May 30, 2019, 09:29:14 AM
When creating or editing a Virtual IP (Firewall -> Virtual IP -> Settings) the Gateway and Virtual IP Password boxes are seen as the firewall user/password boxes respectively, and the password manager (via FF66 and earlier) auto-completes them. Could this be changed so that doesn't happen?

Should the VHID password even be treated as something that needs hiding? I'm guessing that if it's not called/defined as "password" that it won't be seen as one.
Title: Re: Papercut: VIP VHID gateway/password seen as firewall user/password
Post by: hbc on May 30, 2019, 10:42:25 AM
I think, the problem is your password manager. Set an exception or use another one. KeePass is pretty cool and can be bound to URLs.

@Devs: Don't mess up with forms, because of third party apps/requests like this. There maybe people that use password mangers to fill in VHID passwords automatically and mods would break that.
Title: Re: Papercut: VIP VHID gateway/password seen as firewall user/password
Post by: putt1ck on May 31, 2019, 06:32:35 AM
You have a password manager that differentiates between the password on a page v. a password on a site? I don't think mine can do that.

For interest, why would you need to store the VHID password at all - if it's available in plain text in the UI, like the IPSEC PSK, can't you just cut and paste between the firewalls?
Title: Re: Papercut: VIP VHID gateway/password seen as firewall user/password
Post by: mimugmail on May 31, 2019, 07:03:26 AM
You really should exclude saving of passwords on any firewall UI, then this also wouldn't happen
Title: Re: Papercut: VIP VHID gateway/password seen as firewall user/password
Post by: putt1ck on June 02, 2019, 01:11:44 PM
That option works better when you don't administrate a lot of firewalls. Unique password per install is a lot of passwords to remember.