I've just uploaded a new Beta update.
Aside from the usual bug fixes, this release also contains some some new features:
HTTP Block Override
You now can allow certain users and groups to override the blocking of sites by the HTTP proxy. This is configured at "Web Security >> HTTP/S >> URL Filtering", field "User/Groups allowed to bypass blocking". These users will be able to override blocks on the error page presented by the HTTP/S proxy.
"Reporting >> Web Security >> Blocked Usage" contains new reports which allow you to monitor the usage of this ability.
HTTP Exceptions configurable operator
The exceptions configured at "Web Security >> HTTP/S >> Exceptions" are now more flexible. If you add more than one match criteria you can choose whether the Exception should be applied if any of the criteria match (current behavior) or if all of the criteria match.
This allows you to define more narrow exceptions than before.
Note that the same operator applies to all criteria. You can't create exceptions like (criteria1 and criteria2) or criteria3. You can usually emulate this easily by creating more than one exception, though.
VPN Remote Access Reporting
There is now a reporting facility for VPN Remote Access connections. Due to
some known bugs (which will be listed in the KIL) we would not recommend
to test this feature at this time. I'm just mentioning it in case someone wonders
about new menu items (i.e. "Reporting >> Remote Access")
As before there is no Up2Date package available for this release. If you want
to test it, you need to reinstall. Currently we can't make any promises when
we will offer Up2Date packages.
ISOs:
7.865/asg-7.865-100120-4.iso:
ISO size................: 380M (398866432 bytes)
ISO md5sum..............: ada26466a8e9ec48e720fcda1ef1c5a3
ISO sha1sum.............: 6a7db89d83c706958415b8c03575e2c3502ceec6
7.865/ssi-7.865-100120-4.iso:
ISO size................: 382M (400414720 bytes)
ISO md5sum..............: 951f16346e159212aafe5c2c71953f61
ISO sha1sum.............: cb9ce5f0266a388d3c34d7a146efc06204963a00
Issues fixed with this release:
- [7526] Support multiple remote IPsec peers with dynamic IPs and different PSKs
- [12147] Twofish and Serpent not available as IKE encryption algorithms
- [12174] HP DL160G6 fails to install (fails to partition harddisk)
- [12228] Wrong keyboard layout for DE
- [12254] select ins_imp2p failed
- [12271] [UBB][7.850] Broken error messaging for QoS
- [12276] [UBB][7.851] Bootsplash: some text still difficult to read
- [12303] 2010
- [12307] udev: device renaming not always working
- [12327] init.d/sshd: generate sshv2 2048 bit RSA key
- [12353] [UBB][7.850] Accounting tables inconsistency
- [12364] Add Interface object for IPv6 Tunnel Broker
- [12365] VPNID handled incorrectly
- [12368] [UBB][7.851] Reporting for im and p2p broken
- [12373] udev: improve error logging in case of renaming errors
- [12375] [UBB][7.860] Time change causes high cpu usage
- [12379] installer: installer crashes in HW detection if no device name assigned
- [12380] new snort version uses new rules
- [12382] Proxy may crash if no profile is found in transparent mode
- [12383] IPsec doesn't work when masquerading is used
- [12405] IPv6 interface_network address not set
- [12407] SUSE regression fix update for expat
- [12409] object table pages are broken
- [12415] Make HTTP Proxy Authentication realm configurable
- [12421] DNS resolver broken with IPv6
- [12429] advanced Webadmin tabs accessible from before SSL is enabled
- [12448] Name Collision in L2TP over IPSec and HTTP Proxy URL Filtering
