Todo #7545
closed
OpenVPN 2.4.2
0%
Description
Hi there,
I am unsure whether the pfSense 2.4 version will include the OpenVPN 2.4.2 version or just 2.4. However, in light of this recent investigation:
http://blog.quarkslab.com/security-assessment-of-openvpn.html
I think it would be in all our interests to have pfSense 2.4 roll out with OpenVPN 2.4.2 which contains fixes for all the security risks mentioned in that audit - some of which are quite severe.
I would like to know thoughts :)
James
Updated by Jim Pingle almost 7 years ago
- Assignee set to Renato Botelho
Yep, that's already on our to-do list. It was just updated in the FreeBSD ports tree late last night.
The export package already has 2.4.2, so just the base system needs bumped.
Updated by Jim Pingle almost 7 years ago
I just cherry-picked the OpenVPN 2.4.2 port update commit to the ports branch for pfSense 2.4 snapshots, so the next new snapshot should have it. I'll leave this assigned to Renato so he can check it and make sure it was done properly (he's a bit busy right this moment).
Updated by James Webb almost 7 years ago
Great - I'll be sure to check it out when it's compiled into a snapshot.
Thanks Jim
Updated by Bipin Chandra almost 7 years ago
new snap has upgraded openvpn now and works well, this can be closed