Language Selection

English French German Italian Portuguese Spanish

OPNsense 20.1-RC1 Released For Popular BSD-Based Firewall / Routing OS

Filed under
OS
Security
BSD

The release candidate of OPNsense 20.1 is available this weekend, the FreeBSD/HardenedBSD-based networking/firewall OS that forked from pfSense now a half-decade ago.

The OPNsense 20.1 release has been working on a variety of security improvements, VXLAN device support, working on the transition to a fully plug-able device infrastructure, plug-in updates, and many other changes.

Read more

Original message:

  • OPNsense 20.1-RC1 released
    Hi there,
    
    For over 5 years now, OPNsense is driving innovation through modularising
    and hardening the open source firewall, with simple and reliable firmware
    upgrades, multi-language support, HardenedBSD security, fast adoption of
    upstream software updates as well as clear and stable 2-Clause BSD licensing.
    
    We thank all of you for helping test, shape and contribute to the project!
    We know it would not be the same without you.
    
    Download links, an installation guide[1] and the checksums for the images
    can be found below as well.
    
    o Europe: https://opnsense.c0urier.net/releases/20.1/
    o US East Coast: http://mirrors.nycbug.org/pub/opnsense/releases/20.1/
    o US West Coast: https://mirror.sfo12.us.leaseweb.net/opnsense/releases/20.1/
    o South America: http://mirror.upb.edu.co/opnsense/releases/20.1/
    o South-East Asia: https://ftp.yzu.edu.tw/opnsense/releases/20.1/
    o Full mirror list: https://opnsense.org/download/
    
    Here are the full patch notes against 19.7.9_1:
    
    o system: support for manually removing static route entries
    o system: migrated logging to MVC
    o system: regenerate default DH parameters
    o system: randomize session ID in test cookie
    o system: remove legacy XMLRPC push on changes
    o system: deprecate the use of services.inc
    o system: opt-out on "Allow DNS server list to be overridden by DHCP/PPP on WAN" for selected interfaces
    o system: increase PHP memory limit to 512 MB
    o system: opnsense-auth can now respond with extended properties in JSON on successful authentication
    o interfaces: loopback device support
    o interfaces: VXLAN device support
    o interfaces: first steps toward fully pluggable device infrastructure
    o interfaces: remove default load of netgraph framework on bootup
    o interfaces: interfaces: move description into top block and rename titles
    o interfaces: only trigger newwanip event for affected interfaces
    o firmware: revoke 19.1, trust 20.1 fingerprint
    o firmware: new mirror in Zurich, CH contributed by ServerBase AG
    o firmware: add live search to mirror selection
    o dhcp: add OMAPI configuration support (contributed by Yuri Moens)
    o ipsec: add configurable dpdaction (contributed by  Marcel Menzel)
    o ipsec: refactor tunnel settings page
    o unbound: add options for logging queries and extended statistics (contributed by Flightkick)
    o mvc: BaseListField ignoring empty selected field
    o ui: jQuery 3.4.1
    o plugins: os-dyndns 1.19 adds dynv6 and Azure DNS support (contributed by Ralf Zerres and martgras)
    o plugins: os-haproxy 2.20[2]
    o plugins: os-zabbix-agent 1.7[3][4]
    o ports: ca_root_nss 3.49.1
    o ports: curl 7.68.0[5]
    o ports: openssl 1.1.1d[6]
    
    Known issues and limitations:
    
    o HardenedBSD 12.1 has been postponed to the next major release
    o Nano growfs does not work on this release candidate, but a fix for 20.1 already exists
    o Installer still advertises 19.7, but a fix for 20.1 already exists
    o Legacy MPD5 plugins os-l2tp, os-pppoe and os-pptp have been deprecated and will no longer receive updates
    o i386 has not been deprecated for the time being 
    

More in Tux Machines

postmarketOS in 2020-02

Long time readers may ask themselves: what's with the strange title? Where's the traditional "xyz days of postmarketOS" post? Truth is, that this is a low-key update post, one that is rather "rushed out" in a few hours instead of spending a whole week on adding all the fancy photos and gifs webm animations and so on. Consider this the minimal effort of making the project not look dead on the homepage, while not getting too distracted from the deep development lands that our minds are sunken into. We are on track with our project direction 2020 plans. In a nutshell, we will create a stable releases of postmarketOS based on Alpine stable, while still having the development channel based on Alpine edge. Furthermore, the status of supported devices will become clearer. The PinePhone, possibly the Librem 5 and few more will be labeled as officially supported in their deviceinfo and in the wiki. postmarketOS should be usable as daily driver on these. All other devices will be categorized further, depending on active maintainer count and what is working. Think of it like the AUR: still useful, but sometimes broken and you need to know what you are doing when using these. The devices will get split into their own git repository, so one can use the device packages with both the "edge" and "latest" (stable!) channel of all other packages. @ollieparanoid and @Minecrell are evolving pmbootstrap as needed. Read more

Android Leftovers

KDE: Cutelyst 2.10.0 and SimpleMail 2, Okular Examined, FOSDEM & Plasma Mobile Sprint

  • Cutelyst 2.10.0 and SimpleMail v2 released!

    Cutelyst the C++/Qt Web framework and SimpleMailQt just got new releases. Cutelyst received many important bugfixes and if you are compiling it with View::Email it also requires SimpleMail 2, the latter got an Async API which is on production for a few months, allowing for a non-blocking send mail experience.

  • Okular is an open source universal document viewer for Windows, Linux and macOS

    Wouldn't it be nice if you had one program to view them all? That's exactly what Okular does. It's an open source universal document viewer for Windows, Linux and macOS. The program is made by KDE, a name Linux users should be familiar with, among other creations they are the ones behind the popular Kubuntu (Ubuntu + KDE Software) distro. Let's begin touring the interface. The sidepanel on the left can be used to jump to the Contents, Thumbnails, Reviews and Bookmarks sections. Select one of the options and the list of corresponding items are displayed in the panel to the right of the sidebar. The Contents option lists each section/chapter in a document, along with the sub-items, page numbers, etc. The Thumbnail mode pane displays a preview of each page in the document, you can scroll through it and click to go to the selected page. The Reviews pane contain the annotations that have been made on the document. If you don't have any, you can add some by hitting the F6 key or from the Tools menu > Review. Bookmarks are custom links that you have added, i.e., if you bookmark a page it will be displayed in the side-panel for future reference. Hit Ctrl + B to bookmark a page.

  • FOSDEM & Plasma Mobile Sprint

    Last week I decided to take KDE Itinerary for a test tour. Between the train rides there was also time for some KDE stuff. FOSDEM After writing an exam on Friday afternoon I took a train to Frankfurt. I did so not to enjoy the beautiful scenery of the area around Frankfurt central station at night but to be able to catch an early train towards Bruxelles for my first time at FOSDEM. It has been a great experience to meet so many people interested in what KDE does at the KDE booth. It also was awesome to meet all the folks that are working hard on making Linux on the phone become a thing.

Want to be an innovative company? Adopt enterprise open source

Nearly all IT professionals (95%) agree that enterprise open source is important, with 75% of professionals citing it as "extremely important," a Red Hat report found. Enterprise open source isn't just a trend, but a growing movement, as 77% of respondents expect their organizations to increase open source use in the next 12 months. "Historically, open source was seen [mainly] in web infrastructure," said Gordon Haff, Red Hat technology evangelist. "What you're seeing today is how open source is becoming a space where companies and individuals come together to collaborate in new areas of technology." Read more