Hi all,
Quick update, nothing overly fancy this week. :)
Here are the full patch notes:
- system: harden GUI by removing TLS_RSA_WITH_3DES_EDE_CBC_SHA
- system: harden GUI by improving Secure Attribute cookie usage
- system: harden GUI by using DH-4096 parameters
- system: allow to reverse password / token order in TOTP authentication
- system: add swap file option for SSD operation
- interfaces: speed up GUI handling with configurations of more than 150 VLANs
- interfaces: stop is_ipaddrv6() from accepting subnets
- ipsec: IKEv2 can handle multiple phase 1 with the same IP
- ipsec: list non-routed connections
- unbound: removed obsolete so-rcvbuf optimisation code
- net-mgmt/zabbix-agent: validation fix (contributed by Frank Wall)
- net/quagga: version 1.3.1 (contributed by Frabian Franz and Michael Muenz)
- layout: update to Font-Awesome 4.7
- mvc: add setMultiple() to OptionField
- ports: phalcon 3.2.1[1]
- ports: php 7.0.21[2]
- ports: php70-openssl CRL hotfix
- ports: bind 9.11.1-P3[3]
- ports: unbound 1.6.4[4]
- ports: suricata 3.2.3[5]
Stay safe,
Your OPNsense team