Hi. I've just uploaded a new Beta update. Notable updates beside bug fixes: IPS Exception Operator The IPS Exceptions (i.e. Network Security >> Intrusion Prevention >> Exceptions ) were changed to work similar to the HTTP Exceptions as introduced in the previous release. Note that this partly reverts a change we did to the IPS Exceptions in Version 8. Previously the IPS Exceptions were changed to more resemble packetfilter rules. Kernel Upgrade The Linux kernel used for ASG was updated from 2.6.31 to 2.6.32. So far we noticed no regressions introduced by this upgrade, which of course doesn't mean that there are none. As before there is no Up2Date package available for this release. If you want to test it, you need to reinstall. Currently we can't make any promises when we will offer Up2Date packages. ISOs: 7.866/asg-7.866-100203-2.iso: ISO size................: 383M (401231872 bytes) ISO md5sum..............: 3576312712f46f49ee1784aec57ec703 ISO sha1sum.............: 5ed42975b7dbf4aa463fd63fcb24a045c56756bf 7.866/ssi-7.866-100203-2.iso: ISO size................: 384M (402778112 bytes) ISO md5sum..............: b78a2d1c80fb8640c6ff7cf2e8f53649 ISO sha1sum.............: 1aba45f2cf72e16219f292b3b015fbe42908f2a4 Issues fixed with this release: [8041] Autogeneration of users with '/' in fullName fails [12157] Rework ICMPv6 support [12174] HP DL160G6 fails to install (fails to partition harddisk) [12231] "Internet" Network Object needs IPv6 support [12341] Update libsavapi [12355] [CVE] CVE-2009-4537 (Linux Kernel) [12387] Dynamic Interface like DSL are missing in flash based reporting [12411] Send gratuitous ARP on bridge [12453] VPN Reporting: L2TP not displaying any data [12455] VPN Reporting: Session -> Failed logins not displaying any data [12465] [UBB][7.865] Comment field for http proxy exceptions is missing in webadmin [12472] Block override doesn't work when URL is blocked due to reputation limit [12474] False message on Login screen - "Capslock is on" [12490] site to site IPSec PSK using a FQDN [12493] VPN Reporting: Sorting of graphs differs between Flash / PNG [12494] Security Update for gzip (CVE-2009-2624 & CVE-2010-0001) [12495] Security Update for bind (CVE-2010-0097 & CVE-2010-0290) [12502] snort fails to detect some attacks when ipv6 is enabled [12503] Security Update for openssl (CVE-2009-4355) [12506] Missing "and" and "or" in exception overview [12509] Virtual MAC Adress is stored in the backupfile even the HA Option is disabled [12511] HTTP Logging exceptions not working [12516] Logical problem with HTTP exceptions [12517] 'Missing Parameters' when first provide wrong credentials and afterwards correct for blocked page bypass [12518] Logging accessed and blocked pages not work [12520] Web Security Reporting: Override section shows incorrect data [12535] "No such file or directory" error when terms of use in Block override isn't checked [12536] [UBB][7.865] Dashboard labels interfaces as "port" [12555] do not force httpproxy restart when avira aevdf.dat changes

Beta Update Released (7.866)

Hi.

I've just uploaded a new Beta update.

Notable updates beside bug fixes:

IPS Exception Operator

The IPS Exceptions (i.e. Network Security >> Intrusion Prevention >> Exceptions)
were changed to work similar to the HTTP Exceptions as introduced
in the previous release.

Note that this partly reverts a change we did to the IPS Exceptions
in Version 8. Previously the IPS Exceptions were changed to more
resemble packetfilter rules.

Kernel Upgrade

The Linux kernel used for ASG was updated from 2.6.31 to 2.6.32. So
far we noticed no regressions introduced by this upgrade, which of
course doesn't mean that there are none.

As before there is no Up2Date package available for this release. If you want
to test it, you need to reinstall. Currently we can't make any promises when
we will offer Up2Date packages.

ISOs:
7.866/asg-7.866-100203-2.iso:
  ISO size................: 383M (401231872 bytes)
  ISO md5sum..............: 3576312712f46f49ee1784aec57ec703
  ISO sha1sum.............: 5ed42975b7dbf4aa463fd63fcb24a045c56756bf

7.866/ssi-7.866-100203-2.iso:
  ISO size................: 384M (402778112 bytes)
  ISO md5sum..............: b78a2d1c80fb8640c6ff7cf2e8f53649
  ISO sha1sum.............: 1aba45f2cf72e16219f292b3b015fbe42908f2a4

Issues fixed with this release:

[8041] Autogeneration of users with '/' in fullName fails
[12157] Rework ICMPv6 support
[12174] HP DL160G6 fails to install (fails to partition harddisk)
[12231] "Internet" Network Object needs IPv6 support
[12341] Update libsavapi
[12355] [CVE] CVE-2009-4537 (Linux Kernel)
[12387] Dynamic Interface like DSL are missing in flash based reporting
[12411] Send gratuitous ARP on bridge
[12453] VPN Reporting: L2TP not displaying any data
[12455] VPN Reporting: Session -> Failed logins not displaying any data
[12465] [UBB][7.865] Comment field for http proxy exceptions is missing in webadmin
[12472] Block override doesn't work when URL is blocked due to reputation limit
[12474] False message on Login screen - "Capslock is on"
[12490] site to site IPSec PSK using a FQDN
[12493] VPN Reporting: Sorting of graphs differs between Flash / PNG
[12494] Security Update for gzip (CVE-2009-2624 & CVE-2010-0001)
[12495] Security Update for bind (CVE-2010-0097 & CVE-2010-0290)
[12502] snort fails to detect some attacks when ipv6 is enabled
[12503] Security Update for openssl (CVE-2009-4355)
[12506] Missing "and" and "or" in exception overview
[12509] Virtual MAC Adress is stored in the backupfile even the HA Option is disabled
[12511] HTTP Logging exceptions not working
[12516] Logical problem with HTTP exceptions
[12517] 'Missing Parameters' when first provide wrong credentials and afterwards correct for blocked page bypass
[12518] Logging accessed and blocked pages not work
[12520] Web Security Reporting: Override section shows incorrect data
[12535] "No such file or directory" error when terms of use in Block override isn't checked
[12536] [UBB][7.865] Dashboard labels interfaces as "port"
[12555] do not force httpproxy restart when avira aevdf.dat changes

Parents

0 wingman over 15 years ago

Do we know what were the issues that the kernel update addressed?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 flichtenheld over 15 years ago in reply to wingman

Do we know what were the issues that the kernel update addressed?

Apart from usual bug fixes (e.g. the CVE referenced in the issues list) I'm not aware of any big changes relevant for ASG (but our Kernel developers might have some more insight there).

One important thing about the update is that it gives the ASG a kernel version that several parts of the Linux community have agreed on to maintain longer than usual. This will be important later on in V8's life cycle when bug fixes and updated drivers need to be backported.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 RFCat_vk_01 over 15 years ago in reply to flichtenheld

Hi,
at the moment I can't connect to the server, it is refusing connections.

Ian M
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 RFCat_vk_01 over 15 years ago in reply to flichtenheld

Hi,
at the moment I can't connect to the server, it is refusing connections.

Ian M
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data