Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Development and Code Review
(Moderator:
fabian
) »
Plugin Development assistance gig - $100
« previous
next »
Print
Pages:
1
[
2
]
Author
Topic: Plugin Development assistance gig - $100 (Read 8597 times)
MasterXBKC
Jr. Member
Posts: 66
Karma: 6
Infragard Member
Re: Plugin Development assistance gig - $100
«
Reply #15 on:
January 05, 2018, 11:29:25 pm »
Also, on the security front.
My platform does not require any open ports like a traditional web api does. My plugin connects out to my central system from each firewall, so there is not exposed api on the firewalls to be scanned, brute forced, etc.
The firewalls checkin every 60 seconds, and ask for any scheduled tasks, commands, etc, runs them, syncs its vital signs, and then repeats. Rather than using timers, ive utilized cron, allowing the checkin program to terminate when its work is done, and then be re-run at the next minute. I use pre-defined functions inside the checkin agent, rather than have raw api/shell commands crossing back and fourth to potentially be exploited somehow, this allows direct control of what can, and cannot be commanded of the checkin agent. It also communicates using TLS.
«
Last Edit: January 05, 2018, 11:31:09 pm by MasterXBKC
»
Logged
Member of FBIs Infragard Program
Certified Information Systems Security Officer
Certified Vulnerability Assessor
PFMonitor Remote Management, Backup, & Live Monitoring for PFSense and OPNSense
OPNSense Units: R720XD XL, R720XD XL, R720XD, R720XD, R710, DL360G7, QNAP
Print
Pages:
1
[
2
]
« previous
next »
OPNsense Forum
»
English Forums
»
Development and Code Review
(Moderator:
fabian
) »
Plugin Development assistance gig - $100
