psytester

First PR to issue #29

Hello, I don't want to stress you. Really! I know its a hobby project and no business behind. But are you planing to secure the AddOn somehow in the next...

In a first step the AddOn(s) should be integrated into existing user session management. Only valid and logged in users are allowed to use them. In some more detail, I...

For sure, if I would know how TCL scripting works, how to use in own AddOns the given internal eQ-3 scripts like ```session.tcl```, ```verifysid.cgi``` and ```login.cgi``` to add a login...

Seen in RaspberryMatic issue 332 jens-maus/RaspberryMatic/issues/332 > > Mit den Methoden die es in der 3.41.x gibt können CUxD, XMLAPI usw. nun entsprechende Methoden einbauen damit deren Webseiten auch via...

@uwe111 I checked my e-mail account, there is nothing in inbox nor probably spam folder from you. What I mean it the access to internal devices usage. This needs to...

> > That also means no direct port forwarding to the Internet. I think that's the best solution. It's not me, who needs to be protected. Two weeks before there...

Just for traceability only, this issue was published last year as [CVE-2019-14984](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14984)

A (non technical) users can faulty configure the firewall settings and the mentioned "protection" is gone. And for sure the requested parameter is actually not there, but you have access...

Case 1) Listening on all interfaces means one can access the open port potentially over eth0 from external and it's accessible on local host. Case 2) Listening on localhost only...