freeradiussettings.xml.patch - pfSense Packages - pfSense bugtracker

Feature #16582 » freeradiussettings.xml.patch

Loic FONTAINE, 12/13/2025 08:00 AM

     			<type>input</type>
     			<default_value>1-6</default_value>
     		</field>
     		<field>
     			<fielddescr>OTP Anti-Replay Protection</fielddescr>
     			<fieldname>varsettingsotpantireplay</fieldname>
     			<description>Enable OTP Anti-Replay Protection (RFC 6238)</description>
     			<sethelp>
     				<![CDATA[
     				When enabled, each OTP code can only be used once within its validity window (90 seconds).<br/>
     				This provides RFC 6238 compliance and prevents replay attacks where an intercepted code could be reused.<br/>
     				Used tokens are tracked in <code>/var/run/freeradius/</code> and automatically cleaned up.<br/>
     				<span class="text-info">(Default: Disabled for backward compatibility)</span>
     				]]>
     			</sethelp>
     			<type>checkbox</type>
     		</field>
     		<field>
     			<name>Miscellaneous Configuration</name>
     			<type>listtopic</type>

(4-4/5)