IPFire 2.29 Core Update 198 significantly enhances the open-source firewall, particularly through the integration of Suricata 8.0.1 for its Intrusion Prevention System (IPS). This update introduces innovative reporting tools that improve security event visibility, enabling swift administrative responses to threats. New features include real-time email notifications for alerts that exceed user-defined thresholds and scheduled PDF reports summarizing alerts for archiving purposes. Such functionality ensures critical incidents are flagged immediately, improving overall network security management.
In addition to the revamped reporting suite, the update includes optimizations such as caching compile rules for faster startups and supporting expanded protocols for deeper traffic inspection. The rebasing of the IPFire toolchain enhances overall security and performance, with updates to packages like BIND, cURL, and the latest Intel microcode addressing processor vulnerabilities. Notably, vulnerabilities identified by VulnCheck and Pellera Technologies resulted in the assignment of 18 CVEs for web UI flaws. Each CVE poses medium risk due to input validation issues, all requiring prompt attention to mitigate potential exploits.
👉 Pročitaj original: Cyber Security News
