pfSense

								<strong><?=gettext("NOTE:"); ?>&nbsp;</strong>

							</span>

							<?=gettext("The options on this page are intended for use by advanced users only."); ?>

						</span>

						<table width="100%" border="0" cellpadding="6" cellspacing="0" summary="main area">

							<tr>

								<td colspan="2" valign="top" class="listtopic"><?=gettext("webConfigurator"); ?></td>

									<input name="webguiproto" id="https_proto" type="radio" value="https" <?=$https_chk;?> <?=$https_disabled;?> onclick="prot_change()" />

									<?=gettext("HTTPS"); ?>

									<?php if (!$certs_available): ?>

									<?=gettext("No Certificates have been defined. You must"); ?>

									<a href="system_certmanager.php"><?=gettext("Create or Import"); ?></a>

									<?=gettext("a Certificate before SSL can be enabled."); ?>

								<td width="78%" class="vtable">

									<input name="disablehttpredirect" type="checkbox" id="disablehttpredirect" value="yes" <?php if ($pconfig['disablehttpredirect']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable webConfigurator redirect rule"); ?></strong>

									<?php echo gettext("When this is unchecked, access to the webConfigurator " .

									"is always permitted even on port 80, regardless of the listening port configured. " .

									"Check this box to disable this automatically added redirect rule. ");

								<td width="78%" class="vtable">

									<input name="noautocomplete" type="checkbox" id="noautocomplete" value="yes" <?php if ($pconfig['noautocomplete']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable webConfigurator login autocomplete"); ?></strong>

									<?php echo gettext("When this is unchecked, login credentials for the webConfigurator " .

									"may be saved by the browser. While convenient, some security standards require this to be disabled. " .

									"Check this box to disable autocomplete on the login form so that browsers will not prompt to save credentials (NOTE: Some browsers do not respect this option). ");

								<td width="78%" class="vtable">

									<input name="quietlogin" type="checkbox" id="quietlogin" value="yes" <?php if ($pconfig['quietlogin']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable logging of webConfigurator successful logins"); ?></strong>

									<?php echo gettext("When this is checked, successful logins to the webConfigurator " .

									"will not be logged.");

									?>

									?>

									<input name="noantilockout" type="checkbox" id="noantilockout" value="yes" <?php if ($pconfig['noantilockout']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable webConfigurator anti-lockout rule"); ?></strong>

									<?php printf(gettext("When this is unchecked, access to the webConfigurator " .

									"on the %s interface is always permitted, regardless of the user-defined firewall " .

									"rule set. Check this box to disable this automatically added rule, so access " .

								<td width="78%" class="vtable">

									<input name="nodnsrebindcheck" type="checkbox" id="nodnsrebindcheck" value="yes" <?php if ($pconfig['nodnsrebindcheck']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable DNS Rebinding Checks"); ?></strong>

									<?php echo gettext("When this is unchecked, your system " .

									"is protected against <a href=\"http://en.wikipedia.org/wiki/DNS_rebinding\">DNS Rebinding attacks</a>. " .

									"This blocks private IP responses from your configured DNS servers. Check this box to disable this protection if it interferes with " .

								<td width="22%" valign="top" class="vncell"><?=gettext("Alternate Hostnames"); ?></td>

								<td width="78%" class="vtable">

									<input name="althostnames" type="text" class="formfld unknown" id="althostnames" size="75" value="<?=htmlspecialchars($pconfig['althostnames']);?>"/>

									<strong><?=gettext("Alternate Hostnames for DNS Rebinding and HTTP_REFERER Checks"); ?></strong>

									<?php echo gettext("Here you can specify alternate hostnames by which the router may be queried, to " . 

									"bypass the DNS Rebinding Attack checks. Separate hostnames with spaces."); ?>

								</td>

								<td width="78%" class="vtable">

									<input name="nohttpreferercheck" type="checkbox" id="nohttpreferercheck" value="yes" <?php if ($pconfig['nohttpreferercheck']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable HTTP_REFERER enforcement check"); ?></strong>

									<?php echo gettext("When this is unchecked, access to the webConfigurator " .

									"is protected against HTTP_REFERER redirection attempts. " .

									"Check this box to disable this protection if you find that it interferes with " .

								<td width="78%" class="vtable">

									<input name="beast_protection" type="checkbox" id="beast_protection" value="yes" <?php if ($pconfig['beast_protection']) echo "checked=\"checked\""; ?> <?= $disable_beast_option ?>/>

									<strong><?=gettext("Mitigate the BEAST SSL Attack"); ?></strong>

									<?php echo gettext("When this is checked, the webConfigurator can mitigate BEAST SSL attacks. ") ?>

									<?php 	if ($disable_beast_option) {

										} ?>

									<?php echo gettext("This option is off by default because Hifn accelerators do NOT work with this option, and the GUI will not function. " .

									"It is possible that other accelerators have a similar problem that is not yet known/documented. " .

								<td width="78%" class="vtable">

									<input name="sshdkeyonly" type="checkbox" id="sshdkeyonly" value="yes" <?php if ($pconfig['sshdkeyonly']) echo "checked=\"checked\""; ?> />

									<strong><?=gettext("Disable password login for Secure Shell (RSA/DSA key only)"); ?></strong>

									<?=gettext("When enabled, authorized keys need to be configured for each"); ?>

									<a href="system_usermanager.php"><?=gettext("user"); ?></a>

									<?=gettext("that has been granted secure shell access."); ?>

								<td width="22%" valign="top" class="vncell"><?=gettext("SSH port"); ?></td>

								<td width="78%" class="vtable">

									<input name="sshport" type="text" id="sshport" value="<?php echo $pconfig['sshport']; ?>" />

									<span class="vexpl"><?=gettext("Note: Leave this blank for the default of 22."); ?></span>

								</td>

							</tr>

										<option value="57600"  <?php if ($pconfig['serialspeed'] == "57600")  echo "selected=\"selected\"";?>>57600</option>

										<option value="115200" <?php if ($pconfig['serialspeed'] == "115200") echo "selected=\"selected\"";?>>115200</option>

									</select> bps

								</td>

							</tr>

							<?php if (!$g['primaryconsole_force'] && ($g['platform'] == "pfSense" || $g['platform'] == "cdrom" || file_exists("/etc/nano_use_vga.txt"))): ?>

										<option value="serial"   <?php if ($pconfig['primaryconsole'] == "serial")   echo "selected=\"selected\"";?>>Serial Console</option>

										<option value="video"  <?php if ($pconfig['primaryconsole'] == "video")  echo "selected=\"selected\"";?>>VGA Console</option>

									</select>

								</td>

							</tr>

							<?php endif; ?>

								<td width="78%" class="vtable">

									<input name="disableconsolemenu" type="checkbox" id="disableconsolemenu" value="yes" <?php if ($pconfig['disableconsolemenu']) echo "checked=\"checked\""; ?>  />

									<strong><?=gettext("Password protect the console menu"); ?></strong>

									<span class="vexpl"><?=gettext("Changes to this option will take effect after a reboot."); ?></span>

								</td>

							</tr>