2010-10-27

Software Version 5.3.5

NAT address rewriting for VPNs as well as new DynDNS updater

• Allows VPNs to be set up in the following cases, among others:
• The remote side uses the same IP range as the own LAN
• Multiple remote sites use the same IP range
• The other side specifies an IP for the VPN that does not match the LAN

New DynDNS updater

• Only one update with the same IP address
• Regular update even behind a router
• Changes to the configuration are executed immediately

Intelligent service management

• Number of started services adapts to memory expansion
• Services are started only when used

Email filter improvements

• Use of four DNS blacklists at SMTP level
• For emails with multiple blocked attachments, all blocked attachments are now replaced
• New Bayesian Spam Database

More improvements

• Backup aborts with warning message when hard disk is full
• Support for new APC UPSs
• MAC addresses in the "messages" log file more readable
• Support for files larger than 2GB in the web proxy
• Improved stability and speed of the proxy antivirus
• XSS security update on the web interface

Improving security on the Linux base system

• (bind-9.6.2-5.P2: CVE-2010-0097, dhcp-4.1.1-17.P1: CVE-2010-2156, ghostscript: CVE-2010-1628, glibc-2.11.2: CVE-2010-3847, gnupg2: CVE-2010-2547, iputils-20071127-12: CVE-2010-2529, libpng-1.2.44: CVE-2010-1205 and CVE-2010-2249, libtiff-3.9.4, nano-2.0.9: CVE-2010-1160 and CVE-2010-1161, openldap-2.4.19: CVE-2010-0211 and CVE-2010-0212, perl-5.10.0-91: CVE-2010-1168 and CVE-2010-1447, perl-libwww-perl: CVE-2010-2253, python-2.6.2-8: CVE-2008-5983, CVE-2010-1634 and CVE-2010-2089, rpm-4.7.2: CVE-2010-2059 and CVE-2010-2198, socat-1.7.1.3: CVE-2010-2799, squid: CVE-2010-3072, IMP webmail: CVE-2010-0463)

Linux basic services update

• (bash-4.0.38, boost-1.44.0, curl-ssl-7.21.0, dbus-glib-0.86, elfutils-0.148, e2fsprogs-1.41.9-8, findutils-4.4.2-8, glib-2.22.5, kernel-2.6.34.7, krb5-1.7.1-13, mc-4.7.4, nss-softokn-3.12.6, nss-3.12.6-7, python-pycurl-7.19.0, sharutils-4.10, strongswan-4.5.0, traceroute-2.0.15, tzdata-2010k, yum-3.2.28)

Back to overview