40 lines
1.2 KiB
YAML
40 lines
1.2 KiB
YAML
id: password-protected-consolemenu
|
|
|
|
info:
|
|
name: PfSense Consolemenu Password Protection Not Implememnted - Detect
|
|
author: pussycat0x
|
|
severity: info
|
|
description: |
|
|
PfSense password protection via the Console Menu is recommended to be configured. An unattended computer with an open Console Menu session can allow an unauthorized user access to the firewall management.
|
|
reference: |
|
|
https://docs.netgate.com/pfsense/en/latest/config/advanced-admin.html
|
|
classification:
|
|
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
|
|
cvss-score: 0
|
|
cwe-id: CWE-200
|
|
metadata:
|
|
verified: true
|
|
tags: firewall,config,audit,pfsense,file
|
|
|
|
file:
|
|
- extensions:
|
|
- xml
|
|
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: word
|
|
words:
|
|
- "<disableconsolemenu>"
|
|
- "<disableconsolemenu>1</disableconsolemenu>"
|
|
condition: or
|
|
negative: true
|
|
|
|
- type: word
|
|
words:
|
|
- "<pfsense>"
|
|
- "<webgui>"
|
|
- "<system>"
|
|
condition: and
|
|
|
|
# Enhanced by md on 2023/05/04
|
|
# digest: 490a00463044022078bebe23791220eee7587337be7cdd8f3dc36ae8e2fffcb62e57b6d4697609af02202a015c2d5eacb159debb08f84abf1d1a158ded646676fd555d1eae7dfe17007a:922c64590222798bb761d5b6d8e72950 |