Another option is just allow the webgui but define another user with
user access rights instead of admin rights.
This is possible in the current SVN and an image is available on my
download site (based on SVN r97)
Basic principle: or you give access, or you don't. Saying "I don't want
to seem like we are keeping them from anything directly like that" is
the same like: I don't want them to access the box. So don't give them.
Jonathan De Graeve
Jonathan dot de dot graeve at imelda dot be
> -----Oorspronkelijk bericht-----
> Van: Christoph Hanle [mailto:christoph dot hanle at leinpfad dot de]
> Verzonden: donderdag 9 maart 2006 19:35
> Aan: m0n0wall at lists dot m0n0 dot ch
> Onderwerp: Re: [m0n0wall] Disable WebGUI and use Shell only?
> Jimmy Bones (Mhottie) schrieb:
> > Hello guys.
> > Is there a way to disable the webgui and configure/access via
> > only?
> without patches:no
> > Or maybe run the webgui on an odd port, etc? Have the console menu
> > a shell login prompt instead of console menu, etc?
> A possible way is the following:
> Use a box with three interfaces;
> Put a Laptop with crossovercable on LAN, hardening the access to the
> M0n0 (https,high-port, strong password, rules).
> Put the internal LAN to the OPT1 interface, deny access to the IP of
> M0n0 except DNS, log it.
> So it is not possible to reach the webgui within the Lan
> > I ask because we are going to setup a m0n0 box in a small office
> > several nosy people in it that will want to start "playing with
> settings". I
> > would like to do the inital config in the webgui, then disable it
> > continue to configure via a shell, etc. and keep it that way.
> > Let me know if thats possible.
> > Thanks!
> last words:
> "let's make the backup tomorrow"
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch