Shortly after Christmas, we release IPFire 2.27 - Core Update 172. It comes with cryptography improvements for IPsec and OpenVPN, as well as security improvements under the hood, a plethora of package updates and various bugs fixed across the place.
Despite being currently busy with an IPFire 3 hackathon, we found the time to release the next Core Update for testing: IPFire 2.27 - Core Update 172. It comes with cryptography improvements for IPsec and OpenVPN, as well as security improvements under the hood, a plethora of package updates and various bugs fixed across the place.
The IPFire Project has been fighting a legal battle against someone who plagiarised our work and sold it as their own. This post is a summary about a fight in front of courts of law over the last couple of years and the lessons learned from it.
Today, we release IPFire 2.27 - Core Update 171. It updates major parts of the distribution, such as the kernel and the IPS engine, and features bug fixes as well as stability and security improvements - most notably, upstream fixes against a strain of vulnerabilities in the kernel's WiFi components. Particularly IPFire users running WiFi networking hardware are advised to install this update as soon as possible, and reboot their systems afterwards.
If you have been following the IT security news, you might have come across these headlines: Earlier this year, Russia creates its own TLS certificate authority to bypass sanctions, entering production in September. On July 6th, digital security giant and root CA operator Entrust informed its customers about having been breached by a ransomware gang. Both news have seen a decent amount of attention, but one thing they tell us in common has received considerable less coverage: That the global PKI ecosystem, which virtually all internet users (have to) trust, is actually not trustworthy at all.
The next Core Update is available for testing. It updates major parts of the distribution, such as the kernel and the IPS engine, and features bug fixes as well as stability and security improvements.
The next Core Update is released: IPFire 2.27 - Core Update 170. It features new IP blocklists for the firewall engine, significant improvements to Pakfire, modernizes the default cryptographic algorithm selection for IPsec connections, as well as a new kernel, and a plethora of bug fixes and security improvements under the hood.
The next Core Update is available for testing. It features new IP blocklists for the firewall engine, significant improvements to Pakfire, modernizes the default cryptographic algorithm selection for IPsec connections, as well as a new kernel, and a plethora of bug fixes and security improvements under the hood.
With the latest update of IPFire, a new feature is available which helps to make OpenVPN connections more secure: OpenVPN Two-Factor Authentication (2FA). This post explains what Two-Factor Authentication is, what it is good for, and how to use it with IPFire and OpenVPN.
The next Core Update - one of the biggest in size we have ever put together - is released: IPFire 2.27 - Core Update 169. It introduces the support of two-factor authentication (2FA) for OpenVPN clients, updates several core parts of the system, provides mitigations for another two types of CPU side-channel attacks, as well as package updates, bug fixes and other security improvements.
The next Core Update - one of the biggest in size we have ever put together - is available for testing. It introduces the support of two-factor authentication (2FA) for OpenVPN clients, updates several core parts of the system, provides mitigations for another two types of CPU side-channel attacks, as well as package updates, bug fixes and other security improvements.
Another update of IPFire is ready: IPFire 2.27 - Core Update 168. It comes with significant improvements to the Intrusion Prevention System (IPS), various security improvements, an updated version of Linux' firmware bundle, as well as a heap of updated packages and bug fixes.
Another Core Update is available for testing. It comes with significant improvements to the Intrusion Prevention System (IPS), various security improvements, an updated version of Linux' firmware bundle, as well as a heap of updated packages and bug fixes.
Another update of IPFire is ready: IPFire 2.27 - Core Update 167. It brings an updated kernel in which we continue our efforts to harden IPFire even further; various package updates including bug and security fixes as well as smaller improvements throughout the distribution.
After the single-issue Core Update 166, the next regular update is available for testing. It brings an updated kernel in which we continue our efforts to harden IPFire even further; various package updates including bug and security fixes as well as smaller improvements throughout the distribution.
This is the release announcement for IPFire 2.27 - Core Update 166. It fixes the recently introduced backup issue and patches a security vulnerability in zlib.
This is a heads up of a bug which has been introduced in IPFire 2.27 - Core Update 164 causing incomplete backups. Unfortunately, it wasn't spotted during the testing phase. This is not a security announcement, but still a bug which might cause inconvenience for some users. An update with the fix will be released in due course.
Shortly after the last one, the next release of IPFire is ready: IPFire 2.27 - Core Update 165. It comes with various updates for the firewall engine that improve its performance and increase its flexibility, as well as with an updated toolchain, Python 3.10 and various more bug and security fixes.
Another update is ready for testing: IPFire 2.27 - Core Update 165. It comes with various updates for the firewall engine that improve its performance and increase its flexibility, as well as with an updated toolchain, Python 3.10 and various more bug and security fixes.
A little but later than scheduled, it is finally here: IPFire 2.27 - Core Update 164 - coming with a vastly improved firewall engine, a new kernel under the hood, and of course with various security and bug fixes.
Starting with upcoming Core Update 164, the firewall options page will feature a new checkbox: Drop packets from and to hostile networks. For basic protection of our users and their networks, it will be enabled by default on new installations, staying disabled on existing IPFire systems (but we recommend to turn it on there as well).
It is time to test another release for IPFire: IPFire 2.27 - Core Update 164. It comes with a vastly improved firewall engine, a new kernel and various security and bug fixes. Please help us testing this release and if you would like to support us, please donate.
It is time to release another Core Update for IPFire. It comes with an improved Quality of Service based on CAKE and various bug fixes and a lot of package updates.
Today, we are releasing the first Core Update of the year for testing. It comes with an improved Quality of Service based on CAKE and various bug fixes and a lot of package updates.
Donations are the backbone of the project. They keep the lights on and fund development. They are however a complicated construct and a lot of paperwork. We have now made some changes that will make the entire process more transparent and easier for everyone.
