FreeBSD-based OPNsense Firewall Released for Security Issues and Improvements
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
OPNsense has released an update focused on eliminating security vulnerabilities and improving firewall performance.<\/p>\n
The latest version includes third-party security updates, firewall<\/a> improvements, and fixes that make the system more reliable for network administrators and security professionals.<\/p>\n The development team has made eliminating unsafe shell usage a primary focus. This is important because shell execution has historically been the source of multiple security problems in the project.<\/p>\n These changes strengthen the firewall\u2019s overall security posture. By removing unsafe shell commands from the backend, OPNsense reduces the risk of attackers exploiting these vulnerabilities.<\/p>\n A security researcher at Pellera Technologies, working with the Trend Zero Day <\/a>Initiative, reported an issue that helped guide these improvements.<\/p>\n The update also includes securing execution commands in recovery scripts and implementing safer file handling through the file_safe() function across various system components.<\/p>\n Based on user feedback from the previous 25.7.6 release, the team has significantly improved the firewall live log feature.<\/p>\n These improvements include faster data rendering, optimized view buffering, and fixed data ordering issues.<\/p>\n The system now prevents unnecessary repeated host lookups, speeding up the display of logged network traffic <\/a>for administrators monitoring it in real time.<\/p>\n Additional performance enhancements include improved grid responsiveness in the user interface and better keyboard shortcuts for advanced settings and help sections.<\/p>\n The OPNsense team continues prioritizing security and stability for network protection. The release<\/a> includes updated versions of essential security tools.<\/p>\n Suricata has been upgraded to version 8.0.2 for improved intrusion detection capabilities, while Unbound reaches version 1.24.1 for enhanced DNS security<\/a>.<\/p>\n PHP, SQLite, and StrongSwan have also received security updates to maintain system integrity.<\/p>\n The team is working on several exciting features coming to version 25.7.x, including a neighbor watch daemon for network monitoring, a new NDP proxy plugin for IPv6 networks<\/a>, and a community-created theme option.<\/p>\n A hotfix release was also issued to address a high-availability synchronization issue in specific edge cases, ensuring smoother deployments for users running multiple firewalls in failover configurations.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post FreeBSD-based OPNsense Firewall Released for Security Issues and Improvements<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nAddressing Security Concerns Through Code Improvements<\/strong><\/h2>\n