[WB23] - Adding a Firewall Rule - WINDEV 2024 - Foro de desarrolladores

FOROS PROFESIONALES
WINDEV, WEBDEV y WINDEV Mobile

Inicio

Mensajes recientes

Conéctese...

Español

Inicio → WINDEV 2024 → [WB23] - Adding a Firewall Rule

[WB23] - Adding a Firewall Rule

Iniciado por guest, 04,ago. 2018 10:10 - 4 respuestas

guest

Publicado el 04,agosto 2018 - 10:10

Hi All

To prevent a person from endless attempts to log into a website I though a good solution would be to add a blocking rule to the Windows firewall after NN failed attempts. This would just block the person for some time and stop wasting server resources. Does anyone know how to do this in WebDev?

I have code for adding rules to Windows firewall but it must run with Admin privileges. How does one do that in WebDev from on the server?

Thanks

Informar

Debe estar conectado para evaluar este mensaje

guest

Publicado el 04,agosto 2018 - 14:57

Hi JP

what firewall? The server firewall? the Client firewall?

If it's the client, I doubt it will be possible, as a browser session will never have the provileges needed.
If it's the server, you coiuld have a windev program running on the server with admin privileges, and in the webdev session just write what you need done somewhere (text file, DB)... the windev exe will read that every x seconds and do what is needed.

Best regards

Informar

guest

Publicado el 04,agosto 2018 - 18:46

Hi Fabrice

Server firewall. Yes, this is what I did - another app running looking for firewall requests generated by the WebDev site. Works fine. Was just wondering if it were all possible by WebDev itself in server code but I guess it's a rights issue. Anyway, have a solution.

Cheers

Informar

guest

Publicado el 06,agosto 2018 - 13:53

Hi JP

your answer is inside your question... Yes, of course, it's possible from webdev server code -IF- you give the appropriate permissions to the internet User (iUser, generally)...

It could also probably be a VERY BAD IDEA, security wise.

Best regards

Informar

guest

Publicado el 06,agosto 2018 - 23:47

Fabrice, yes agree. Not a good idea to give iuser admin privileges

My solution works just fine; too many failed attempts and the site creates a file with the IP address to block and the external app running as admin manages both the creation of the temporary firewall rule and the removal of it after a certain time period has elapsed. All good. Cheers.

Informar

→ Volver a WINDEV 2024