If you experience any difficulty in accessing content on our website, please contact us at 1-866-333-8917 or email us at support@chicagovps.net and we will make every effort to assist you.

June 14, 2024

IPFire Linux Firewall Introduces Experimental Btrfs Support and Intel RFDS Mitigations

The IPFire Project released today a new update to their hardened open-source GNU/Linux distribution that primarily performs as a router or firewall, IPFire 2.29 Core Update 186, with various changes, experimental support for the Btrfs file system, and updated components.

The IPFire 2.29 Core Update 186 release introduces an updated kernel based on Linux 6.6.30 LTS, which includes mitigations for the latest Register File Data Sampling (RFDS) vulnerability a.k.a. CVE-2023-28746 affecting Intel processors, CPU frequency scaling support for Raspberry Pi, and improved CPU graph support for processors when some virtual cores are offline.

IPFire 2.29 Core Update 186 also introduces Spamhaus EDROP support into DROP as a replacement for Alienvault, Linux Landlock support in the Suricata open-source network analysis and threat detection software to protect your IPFire installations against any unauthorized file system access from exploits, as well as experimental support for the Btrfs file system.

“Currently this has been implemented to test out what benefits IPFire could draw from this new design of a filesystem. It enables compression of all data it holds and allows to create snapshots which might become useful for the development process and enable easier rollbacks,” said IPFire developer Michael Tremer.

Other noteworthy changes in the IPFire 2.29 Core Update 186 release include a patched Unbound/DHCP Leases bridge to avoid unnecessary reloads of the Unbound DNS resolver, a quieter boot process by removing unnecessary warnings, as well as the removal of broken sslh add-on and the Icinga open-source computer system and network monitoring application as there’s no interest in it from IPFire users.

Under the hood, IPFire 2.29 Core Update 186 comes with various updated packages, including Apache2 2.4.59, BIND 9.16.49, kmod 32, libhtp 0.5.48, SQLite 3.45.3, squid 6.9, strongSwan 5.9.14, Suricata 7.0.5, Bacula 13.0.4, dnsdist 1.9.3, Lynis 3.1.1, mympd 14.1.2, Tor, and tzdata 2024a.

Check out the release announcement page for more details about the changes included in IPFire 2.29 Core Update 186, which you can download right now for x86_64 (Intel/AMD 64-bit) and AArch64 (ARM64) architectures from the official website as ISO and USB images.

Image credits: The IPFire Project (edited by Marius Nestor)

Last updated 7 hours ago

ChicagoVPS is your gateway to unparalleled hosting solutions. Our state-of-the-art datacenters and powerful network ensures lightning-fast speeds and uninterrupted connectivity for your websites and applications. Whether you’re a startup looking for scalable resources or an enterprise in need of enterprise-grade hosting, our range of plans and customizable solutions guarantee a perfect fit. Trust in ChicagoVPS to deliver excellence, combining unmatched reliability and top-tier support.

For Inquiries or to receive a personalized quote, please reach out to us through our contact form here or email us at sales@chicagovps.net.

Subscribe Email