@@ -8,13 +8,10 @@ remove done tasks or assign yourself to a task.
88
99Form Validators
1010--------------------------------------
11- ISIPV4 does a manual check, PHP5 now has FILTER_VALIDATE_IP, FILTER_FLAG_IPV4 which may be better.
12- There also will be a time to add ISIPV6 or ISIPADDR to validate for IPv6 or both
1311
1412Installer
1513--------------------------------------
1614
17- - Load and update system config from file into sql database during installation.
1815- Add a function to let a server join a existing installation.
1916
2017
@@ -32,33 +29,41 @@ Mail module
3229- Show mail statistics in the interface. The mail statistics are stored
3330 in the database table mail_traffic and are collected by the file
3431 server/cron_daily.php
35- - Show mail quota usage in the interface. This is started for Dovecot and
36- requires testing
37- -- Functional on Debian Squeeze with newer Dovecot 2011-06-28
38- -- Needs more cross platform support
39-
32+ -- For Courier this works but not Dovecot. Maybe the intention needs
33+ reviewed as some clients think this should be the number of emails
34+ and not the size of the emails. (I agree that size is important)
35+ lathama
4036
4137Administration module
4238--------------------------------------
4339
44- - Add a firewall configuration form. Any suggestions for a good firewall
45- script that runs on many Linux distributions, or shall we stay with Bastille
46- firewall that is used in ISPConfig 2?
47- -- There are a few options here. Some are already started. I (lathama) would
48- like to look at a pure IPTables (firewall_iptables) which can allow for
49- other modules.
50- -- Note: make sure to not interupt fail2ban
40+
41+ - Firewall Solution -- Andrew lathama Latham lathama@gmail.com
42+ * Monitor existing IPTABLES rules is done and in the monitor page.
43+ * Add IPTABLES rules
44+ semi-functional and in development also functional in multiserver
45+ * Delete IPTABLES rules
46+ semi-functional and in development also functional in multiserver
47+ * Merge IPTABLES rules made from the CLI with those made from ISPConfig3
48+ Interesting topic about merging control with with the GUI and the CLI
49+ interface for a systems adminitstrator who might add a rule during an
50+ attack or for trouble shooting and forget to remove it.
51+ * Fail2Ban
52+ Add configuration for fail2ban on certian systems. Imagine an admin
53+ wishes to use fail2ban on one service but not others. Rare but an issue
54+ when a large number of clients use a single NAT for all users and failed
55+ logins and traffic looks like an attack. Maybe a whitelist configuration
56+ as an optional setting.
57+ * Remoting
58+ Enable remoting hooks for updating IPTABLES
59+ * Service Checks
60+ Adding saftey checks to make sure that the admin does not lock his/herself
61+ out of the system by accident. We all make mistakes.
62+
5163-- Note: I'd love a pure iptables firewall as well. I've made such a script for
5264 my work, which uses a simple config file to open/close ports and support for
5365 ip exclusions. I think we could use it as a base to start with, it's up on the dev forum
5466 url: http://www.howtoforge.com/forums/showthread.php?p=261311 (Mark_NL)
55- --- The complete PHP IPTables script is currently working on my test platform.
56- I am developing a wizard and a method of reporting if the rules in the database
57- and the running rules do not match. This is taking a lot of effort to effectivly
58- "bend over backwards" to allow both the ISPConfig admin and the system admin
59- to work with the rules. This will work with all distros and most any version.
60- Most of the code is in trunk now.
61- lathama... lathama@gmail.com
6267
6368Clients module
6469--------------------------------------
@@ -67,11 +72,6 @@ Clients module
6772Sites (web) module
6873--------------------------------------
6974
70- - Add a function to the Sites module to create SSL certificates or upload
71- existing SSL certs and SSL chain files. It might be a good idea to add
72- this as a new tab named "SSL" to the exiting domain settings form.
73- -- This exists to some extent, review
74-
7575- Make sure that changes in the domain name do not break the configuration.
7676
7777
@@ -93,13 +93,6 @@ Interface
9393
9494- Enhance the list function to allow sorting by column
9595- Enhance the paging in lists (e.g. like this: [1 2 3 4 ... 10])
96- - Use graphical Icons in the lists for on / off columns.
97- CSS icons are also an option. lathama 2011
98- http://nicolasgallagher.com/pure-css-gui-icons/
99- - Add a graphical delete button to the lists.
100- CSS icons are also an option. lathama 2011
101- http://nicolasgallagher.com/pure-css-gui-icons/
102-
10396
10497General tasks
10598--------------------------------------
0 commit comments