pfSense » pfSense Packages

12/04/2023

05:57 PM Bug #15061 (New): acme.sh nsupdate with challengealias is failing in certain cases

When using nsupdate with challengealias the wrong filename is used, therefore the script fails.... Seyfidin Hamraoui

05:38 PM Feature #14630 (New): FRR script hook for clearing states on routing changes

Marcos M

04:25 PM Feature #14630 (Duplicate): FRR script hook for clearing states on routing changes

Though the behavior can be worked around in FRR specifically with a script hook, the issue itself is more general and... Marcos M

12/03/2023

05:19 PM Regression #14452: Prometheus node_exporter generates errors with the default config

I enabled FreeBSD repos on 23.09 and installed node_exporter-1.6.1. Same error, does not resolve the issue. Craig Coonrad

01:31 AM Todo #15058 (Resolved): Remove Zabbix 4 Agent and Proxy

Zabbix 4 is EOL and the packages will be removed upstream in a few weeks. We should remove these from the repos in a... Kris Phillips

01:24 AM Bug #14913: [Security] Zabbix packages need updating bec. of recent critical security CVEs

There are also updated versions of zabbix-agent6, zabbix-proxy6, zabbix-agent5, zabbix-proxy5, zabbix-agent4, zabbix-... Kris Phillips

01:07 AM Bug #14913 (Confirmed): [Security] Zabbix packages need updating bec. of recent critical security CVEs

Confirmed that the version in Plus 23.09, 23.09.1, and 2.7.X are all the vulnerable 6.4.5 version.
Freshports has ... Kris Phillips

01:10 AM Bug #14926 (Rejected): Squid Proxy contains critical vulnerabilities

Squid is deprecated as a package in pfSense CE and Plus. It's recommended that users remove this package as soon as ... Kris Phillips

12:56 AM Feature #14999 (Rejected): Feature Request: Update Squid Package to Version 6.5 this was released on updated Nov 6

Squid is planned to be removed as an available package in the next version of pfSense CE and Plus.
https://www.n... Kris Phillips

12/02/2023

03:30 AM Bug #14523: PHP error when using an unsupported alias type in Advanced Rule Settings

I have narrowed it down to situation where 'Custom Source' alias name cannot be saved when using 'Host' type aliases ... Sengor K

12/01/2023

08:32 PM Feature #15056: Feature Request: Donate to Package Maintainer Button

https://forum.netgate.com/topic/184100/how-are-packages-supported
Lots of talk has started on this today, and man... Jonathan Lee

08:31 PM Feature #15056 (New): Feature Request: Donate to Package Maintainer Button

Maybe the packages, should have a button so donate button to send some money to maintainers. I recently learned that ... Jonathan Lee

11/29/2023

08:27 PM Regression #14452: Prometheus node_exporter generates errors with the default config

Still not working with pfSense 23.09 and node_exporter-1.5.0_6. I tested FreeBSD 14.0-RELEASE w/node_exporter-1.6.1. ... Craig Coonrad

03:30 PM Bug #11802: FreeRADIUS sync

A checkbox list like the one under the system's High Availability setup interface would be ideal. This behavior chang... Ansley Barnes

11:23 AM Bug #11802: FreeRADIUS sync

We're also hit by the same issue after pfSense upgrade, and that's pretty annoying. Our certificate configs are getti... Yury Zaytsev

09:47 AM Bug #15048 (New): Snort large memory consumption when updating

Snort since the last updates uses a lot of memory when updating and it has a big impact. Can this be improved?
T... Ricardo ot

05:01 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

I wonder if this will fix the slow startup time for pfBlockerNG-dev with RAM disks enabled.
There's a long delay (... Loh Phat

01:26 AM Bug #14491: FRR not starting with AgentX enabled

I see this issue is now assigned, just for reference here are some probably heavily related tickets:
https://gith... Yif Swery

11/28/2023

07:53 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

Jordan G wrote in #note-21:
> quite similar, both ends of the spectrum though - https://redmine.pfsense.org/issues/1... Loh Phat

11/27/2023

09:50 PM Bug #14861: PHP error when pings are enabled but no ping hosts are defined

Hi, not sure what to tell you. I was using the telegraf plugin on 2.7.x sending stats to an influxdb. I don't recall ... David Bowen

08:37 PM Bug #14287 (Resolved): pfBlockerNG does not uninstall cleanly when using RAM disks

Fixed in version 3.2.0_7: https://github.com/pfsense/FreeBSD-ports/commit/bd3ae22c8740dad7db80a893038990c83b55700f Marcos M

02:06 PM Todo #12806 (Closed): Update node_exporter to 1.3.1

Jim Pingle

02:05 AM Todo #12806: Update node_exporter to 1.3.1

Logan Marchione wrote:
> Sorry if this isn't the right place to ask. I wasn't sure if pfSense published package upda... Logan Marchione

02:06 PM Bug #14986 (Resolved): Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

Jim Pingle

01:51 PM Bug #15028 (Not a Bug): OpenVPN + FRR BGP routing failure(Unable to contact daemon/Service not running?)

That is the kind of error you'll get if there is a conflicting route already in the table which prevents it from conf... Jim Pingle

07:26 AM Bug #15018: Suricata 7.0.2 service stop problem

Service_Watchdog is not (and was never) installed on affected systems. What I don't understand how can a "suricata.sh... Robert Karsai

11/26/2023

11:04 PM Bug #14986: Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

The fix has deployed in package updates to both CE 2.7.1 and Plus 23.09. User feedback on the Netgate Forum indicates... Bill Meeks

10:59 PM Bug #15033: Suricata rule lists can't be manually updated unless the ETOpen Emerging Threats list is enabled

Verified.
The check for enabled rules currently only checks for ET Open, Snort VRT, ET Pro, and Extra Rules as shown... Bill Meeks

02:11 AM Bug #15033 (Resolved): Suricata rule lists can't be manually updated unless the ETOpen Emerging Threats list is enabled

To reproduce on a system that's never had Suricata installed before:
- Install it, enable an interface and start the... Chris W

10:52 PM Bug #15018: Suricata 7.0.2 service stop problem

Robert Karsai wrote in #note-4:
> Hello Bill, Thanks for looking into this issue. I've managed to reproduce the probl... Bill Meeks

09:48 PM Bug #15018: Suricata 7.0.2 service stop problem

Hello Bill, Thanks for looking into this issue. I've managed to reproduce the problem on a Netgate 4100 cluster maste... Robert Karsai

04:53 PM Bug #15018: Suricata 7.0.2 service stop problem

Continuing to try and gather data about this issue. I have not been able to reproduce it in my local testing machines... Bill Meeks

04:00 AM Bug #15018: Suricata 7.0.2 service stop problem

Editing redmine to correct title. Kris Phillips

05:27 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

quite similar, both ends of the spectrum though - https://redmine.pfsense.org/issues/13679
can I ask if you have IPv... Jordan G

03:56 AM Bug #14861 (Incomplete): PHP error when pings are enabled but no ping hosts are defined

Tested on 2.7.1. I'm still not able to recreate this bug report. Marking as Incomplete until exact replication step... Kris Phillips

11/23/2023

06:40 PM Bug #14668: FRR BGP route is not making into kernel route table after WireGuard's peer change is applied

updated to CE 2.7.1, FRR 2.0.2, WireGuard 0.2.1 - the issue is still persist. Oleksii Tucha

06:26 PM Bug #15028 (Not a Bug): OpenVPN + FRR BGP routing failure(Unable to contact daemon/Service not running?)

Up to version 2.6.0, it works normally without bugs. The new versions 2.7.0 and 2.7.1 report inconsistency according ... Thiago Orico

12:36 PM Bug #15027 (Resolved): Bind DNS Server cannot reorder zones

Hello all,
Since 23.09 and 23.05 re-ordering zones and saving has no effect, returning to the zone definitions aft... Eric Nguyen

11/21/2023

10:29 AM Bug #14986: Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

The relevant changes have been merged to 2.7.1 and 23.09.
The 23.09 build is currently failing due to unrelated ch... Kristof Provost

11/20/2023

09:59 PM Bug #15018: Suricata 7.0.2 service stop problem

The Subject is "Suricata 7.0.2 service stop problem" not "Suricata 7.0.12" of course Robert Karsai

08:22 PM Bug #15018 (New): Suricata 7.0.2 service stop problem

Hello,
I can't reliably stop Suricata service using Services / Suricata / Interfaces / <interface> / stop icon. I'... Robert Karsai

11/19/2023

06:38 AM Bug #14861: PHP error when pings are enabled but no ping hosts are defined

Tested upgrade from 2.6.0 to 2.7.0 with installed telegraf 0.9_6, no issue
2.6.0-RELEASE (amd64)
built on Mon Jan ... aleksei prokofiev

01:55 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

RAM disks are in use in my environment, for the record. Loh Phat

12:37 AM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

are you testing with RAM disks enabled prior to installing pfBlockerNG? that seems to be the necessary catalyst to re... Jordan G

01:53 AM Feature #14468: pass along ntopng professional license key

Mike
No, wrong link, go to this one.
https://packages.ntop.org/FreeBSD/
As mentioned, use Putty as admin, cu... Russ Reynolds

11/18/2023

06:11 PM Feature #14468: pass along ntopng professional license key

Found this link here in the documentation
Is this what you mean?
https://www.ntop.org/guides/ntopng/third_party_... Mike Moore

05:45 AM Feature #14468: pass along ntopng professional license key

Mike, I can send details no problem at all, however, pfsense have released an updated Plus Version 23.09 based on the... Russ Reynolds

03:07 AM Todo #14795: Transition to nut-devel

If it will work, I have a PR prepared: https://github.com/pfsense/FreeBSD-ports/pull/1329. Thanks. Denny Page

11/17/2023

11:31 PM Feature #14468: pass along ntopng professional license key

Russ - Can you provide the documentation on how you did it?
There really needs to be an "approved" Netgate way of ... Mike Moore

10:44 PM Todo #14795: Transition to nut-devel

Are you saying that if we republish the package as 2.8.1_2 it would work, even though a 2.8.2 has been previously pub... Denny Page

09:19 PM Todo #14795: Transition to nut-devel

I missed that since the dependency tracking version is by git commits (which don't necessarily align with the release... Marcos M

08:37 PM Todo #14795: Transition to nut-devel

I'm sorry, but the minor version bump was not correct. The pfSense package numbering is intended to align with the NU... Denny Page

05:48 PM Todo #14795 (Resolved): Transition to nut-devel

The minor version bump is correct; the version needed to be bumped for the notification tweak to be picked up. There'... Marcos M

04:53 PM Todo #14795: Transition to nut-devel

Guys, the version number for the released package is wrong. It's not in my original PR, but when the notification twe... Denny Page

10:28 PM Bug #15008: SID MGMT list action to download a single conf file leads to a 502 Bad Gateway error

This issue is revolved in the pull request posted for review and merge here: https://github.com/pfsense/FreeBSD-ports... Bill Meeks

10:11 PM Bug #15008 (Resolved): SID MGMT list action to download a single conf file leads to a 502 Bad Gateway error

When attempting to download a single SID MGMT conf file using the action icon, a 502 Bad Gateway error is encountered. Bill Meeks

10:08 PM Bug #14995: SID Management List Actions download leads to 502 Bad Gateway

The fix for this issue is posted in pull request https://github.com/pfsense/FreeBSD-ports/pull/1327.
Once the pull... Bill Meeks

09:02 PM Bug #14898: Suricata core dumps with signal 11

This bug has likely been traced to the particular version of the @libpfctl@ library bundled with pfSense CE 2.7.0, 2.... Bill Meeks

08:59 PM Bug #14986: Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

This bug has likely been traced to the particular version of the @libpfctl@ library bundled with pfSense CE 2.7.0, 2.... Bill Meeks

03:40 PM Bug #14748: FRR reload script is not executed properly

Mike Moore wrote in #note-12:
> I did add the sym link as suggested earlier up in the thread: ln -s /usr/local/sbin/... Jim Pingle

03:35 PM Bug #14748: FRR reload script is not executed properly

I did add the sym link as suggested earlier up in the thread: ln -s /usr/local/sbin/frr-reload.py /usr/local/lib/frr/... Mike Moore

03:22 PM Bug #14748 (Feedback): FRR reload script is not executed properly

The upstream fix was merged/picked and should be in package repositories for 23.09 and 2.7.1 Jim Pingle

02:13 PM Bug #14730: FreeRADIUS package has wrong/old internal_name specified in backup xml causing package reinstall failure on backup restore

Jim Pingle wrote in #note-6:
> For what it's worth, I just restored a backup on 23.09 which had FreeRADIUS3 installe... Luca Piccirillo

01:13 PM Feature #14997 (Rejected): Feature Request: Snort *.so.rules should also function on ARM architecture processors

Jim Pingle

03:31 AM Feature #14997: Feature Request: Snort *.so.rules should also function on ARM architecture processors

The SO rules are not available on ARM hardware because the Snort Vulnerability Research Team does not produce the pre... Bill Meeks

11/16/2023

11:38 PM Feature #14998: Feature Request: Quick Create Splice Rule options in Squid Package

This would make SSL inspection easy for small office networks. Tools like this would break the caste system of enterp... Jonathan Lee

11:28 PM Feature #14998 (New): Feature Request: Quick Create Splice Rule options in Squid Package

Lot's of enterprise class firewalls have certificate issued proxy use for deep packet inspections/submissions.
Squ... Jonathan Lee

11:36 PM Feature #14999 (Rejected): Feature Request: Update Squid Package to Version 6.5 this was released on updated Nov 6

Can we please get the Squid package to use the latests version of Squid??
This version has many security fixes
Jonathan Lee

11:07 PM Bug #14993: Snort *.so.rules will not down

https://redmine.pfsense.org/issues/14997 Jonathan Lee

11:02 PM Bug #14993: Snort *.so.rules will not down

Thanks I did not know that. So it has no code to work with ARM processors yet...
I should make this a feature requ... Jonathan Lee

03:15 PM Bug #14993 (Not a Bug): Snort *.so.rules will not down

Jim Pingle

02:36 PM Bug #14993: Snort *.so.rules will not down

This is not a bug. This behavior is expected and per design.
The user has an SG-2100 MAX appliance which uses an ARM... Bill Meeks

06:55 AM Bug #14993: Snort *.so.rules will not down

usr/local/etc/snort/rules
Contains no so.rules on 2100 max anymore for some reason. No custom scrips used. Jonathan Lee

06:51 AM Bug #14993 (Not a Bug): Snort *.so.rules will not down

Working with Bill on this today we found that *.so.rulea are not downloading into the rule set folder. Jonathan Lee

11:07 PM Feature #14997 (Rejected): Feature Request: Snort *.so.rules should also function on ARM architecture processors

I just learned that *.so.rules or shared object rules do not function on ARM architecture appliances.
The SG-2100... Jonathan Lee

09:58 PM Todo #14795: Transition to nut-devel

Thank you kindly Denny Page

06:51 PM Todo #14795: Transition to nut-devel

The updated package with the revised date format should be available in 23.09/2.7.1 soon. Marcos M

05:19 PM Bug #14986: Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

This bug is still under active investigation. I have experienced it three times over two days of running Snort in a C... Bill Meeks

06:48 AM Bug #14986: Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

pid 56711 (snort), jid 0, uid 0: exited on signal 11 (core dumped)
Also occurs on SG2100 Max now
Jonathan Lee

05:12 PM Bug #14898: Suricata core dumps with signal 11

Kris Phillips wrote in #note-5:
> Users on the forums seem to have worked around the issue and seem to believe it's a... Bill Meeks

04:18 PM Bug #14898 (Confirmed): Suricata core dumps with signal 11

Users on the forums seem to have worked around the issue and seem to believe it's a Hyperscan issue.
https://for... Kris Phillips

03:23 PM Bug #14994 (Not a Bug): mailreport - authentication failure

Jim Pingle

10:25 AM Bug #14994: mailreport - authentication failure

Error fixed. In my postfix, the authentication mechanisms was : CRAM-MD5 DIGEST-MD5 LOGIN PLAIN. Normally, authentica... lc 63

07:58 AM Bug #14994 (Not a Bug): mailreport - authentication failure

Hello,
I use pfSense 23.05.1-RELEASE and mailreport 3.6.4_1 package.
I first configured SMTP (System | Advanced... lc 63

10:51 AM Bug #14995 (Resolved): SID Management List Actions download leads to 502 Bad Gateway

If I try to download SID Management Configuration Lists in the WebUI, it will bring up an error page with nginx "502 ... Bob Dig

12:12 AM Bug #11970: Netgate Firmware Upgrade Doesn't Work on XG-2758 (ADI/coreboot)

Issue still present on 23.09 of Plus. Customer reported this issue today on the latest Plus release. Kris Phillips

11/15/2023

11:11 PM Bug #14287: pfBlockerNG does not uninstall cleanly when using RAM disks

I tested this both on 23.05.1 and 23.09 but have not managed to replicate it. Both of the reported errors
> PHP ERROR... Marcos M

02:21 AM Bug #14986 (Resolved): Snort's Legacy Blocking Mode custom plugin code causes a Signal 11 and core dump when "kill states" option is enabled

It appears the changes in this commit approximately two weeks ago: https://github.com/pfsense/FreeBSD-ports/commit/4f... Bill Meeks

11/14/2023

09:50 PM Bug #14748: FRR reload script is not executed properly

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=275095 Christian McDonald

05:54 PM Bug #14748: FRR reload script is not executed properly

We are looking into it here. Christian said he sees the issue in port and is looking into a fix. Jim Pingle

04:51 PM Bug #14748: FRR reload script is not executed properly

Im impacted as well
Jim - Who is supposed to follow up with any upstream issue? Mike Moore

04:07 PM Bug #14748: FRR reload script is not executed properly

Looks like that's an upstream bug in the @frr9@ or @frr9-pythontools@ port(s).
The script at @/usr/local/sbin/frr-... Jim Pingle

12:19 PM Bug #14748: FRR reload script is not executed properly

We had the same issue when using FRR OSPF. It seems that the "frr-reload" script that is used to communicate config c... Steffen S

04:39 PM Todo #14795: Transition to nut-devel

Hey all, I've got a good dozen testers that have reported successful results with 2.8.1. Reported tests include local... Denny Page

04:31 PM Bug #14979 (Resolved): Snort generates an invalid $EXTERNAL_NET variable in snort.conf due to a missing escape character in the PHP code

PR Merged, thanks! Jim Pingle

12:55 AM Bug #14979: Snort generates an invalid $EXTERNAL_NET variable in snort.conf due to a missing escape character in the PHP code

Two different pull requests have been submitted to correct this bug: 1 each for the 2.7.0 CE Release and 2.8.0 CE DEV... Bill Meeks

12:27 AM Bug #14979 (Resolved): Snort generates an invalid $EXTERNAL_NET variable in snort.conf due to a missing escape character in the PHP code

The recent 4.1.6_12 Snort GUI package update contained a typo in @/usr/local/pkg/snort/snort_generate_conf@ . A backs... Bill Meeks

11/13/2023

07:49 PM Bug #14956 (Resolved): Suricata GUI generates invalid syslog priority values in suricata.yaml file for some drop-down list values

PR merged, thanks! Jim Pingle

07:48 PM Bug #14955 (Resolved): Suricata GUI throws a PHP error when creating an EventTime object for use on the ALERTS or BLOCKS tabs if there is a malformed log file entry

PR merged, thanks! Jim Pingle

07:48 PM Feature #14954 (Resolved): Add GUI option to Suricata interface settings for logging of Ethernet (MAC) addresses to the EVE JSON log

PR merged, thanks! Jim Pingle

07:48 PM Bug #14961 (Resolved): Snort package issue in snort_Getdirsize() function due to behavior change in PHP 8.x

PR merged, thanks! Jim Pingle

07:48 PM Bug #14645 (Resolved): Snort interface "External Net" (EXTERNAL_NET) custom IP list should have negation when expanded

PR merged, thanks! Jim Pingle

06:34 PM Bug #14645: Snort interface "External Net" (EXTERNAL_NET) custom IP list should have negation when expanded

Hi Bill,
main problem is when you have some static IPs outside of your network (let's say your work IPs or your VP... Dzmitry Kazei

01:45 PM Todo #14971: Add text about the limit to use only Network type alias for Custom Destination

Thanks.
I think it will be good to add a category of UI, for both the text and visuals of UI. Wolfgang Thegreat

01:41 PM Todo #14971: Add text about the limit to use only Network type alias for Custom Destination

Wolfgang Thegreat wrote in #note-2:
> I didn't find a more suitable place to ask for it. Can you direct me?
It's ... Jim Pingle

01:32 PM Todo #14971: Add text about the limit to use only Network type alias for Custom Destination

I didn't find a more suitable place to ask for it. Can you direct me? Wolfgang Thegreat

01:24 PM Todo #14971: Add text about the limit to use only Network type alias for Custom Destination

This is asking for a change to the GUI, not the documentation. Jim Pingle

01:23 PM Bug #14638 (Closed): Upgrading from Tailscale 0.1.3.1 to 0.1.4 does not start tailscale after upgrading

Jim Pingle

11/12/2023

01:06 AM Regression #13970 (Feedback): PHP error in apcupsd widget from UTF-8 string handling

The widget has the following for the default entries in the warning/critical values by default, or possibly from a pr... Jordan G

11/11/2023

11:56 PM Regression #14764: HAProxy local syslog not working

Discussion thread: https://forum.netgate.com/topic/182508/haproxy-local-syslog-not-working Michael Vincent

11:46 PM Bug #14364: APCUPSD unable to process date string

Not sure where the date format is being pulled from, I'm using an older bn700 APC UPS and my date format is mm/dd/yyy... Jordan G

09:45 PM Todo #14971 (New): Add text about the limit to use only Network type alias for Custom Destination

Hello,
At the UI path of pfBlockerNG > IP > IPv4 > edit of a table object > the section of "Advanced Inbound Firew... Wolfgang Thegreat

09:56 AM Bug #14638: Upgrading from Tailscale 0.1.3.1 to 0.1.4 does not start tailscale after upgrading

I couldn't replicate it either.
There are no complaints from anyone else.
As a result, I recommend that we pro... Danilo Zrenjanin

11/10/2023

02:02 AM Bug #14645: Snort interface "External Net" (EXTERNAL_NET) custom IP list should have negation when expanded

This issue is corrected by Snort package update 4.1.6_12 posted for review and merge here: https://github.com/pfsense... Bill Meeks

12:40 AM Bug #14645: Snort interface "External Net" (EXTERNAL_NET) custom IP list should have negation when expanded

Sorry to be late replying to this ticket.
First, the double brackets is a bug and will be corrected in a forthcoming... Bill Meeks

02:01 AM Bug #14961: Snort package issue in snort_Getdirsize() function due to behavior change in PHP 8.x

This issue is corrected by Snort package update 4.1.6_12 posted for review and merge here: https://github.com/pfsense... Bill Meeks

12:46 AM Bug #14961 (Resolved): Snort package issue in snort_Getdirsize() function due to behavior change in PHP 8.x

Beginning with PHP 8.x specific ASCII control characters should be wrapped with @chr()@ to insure they are interprete... Bill Meeks

11/09/2023

10:20 PM Feature #14954: Add GUI option to Suricata interface settings for logging of Ethernet (MAC) addresses to the EVE JSON log

The requested feature has been added in code associated with Pull Request 1313 posted here for review and merge: http... Bill Meeks

01:44 AM Feature #14954: Add GUI option to Suricata interface settings for logging of Ethernet (MAC) addresses to the EVE JSON log

I am working on adding this feature to a forthcoming GUI package update. Bill Meeks

01:31 AM Feature #14954 (Resolved): Add GUI option to Suricata interface settings for logging of Ethernet (MAC) addresses to the EVE JSON log

Add an option to the INTERFACE SETTINGS tab to allow the use to enable or disable Ethernet (MAC) addresses to the EVE... Bill Meeks

10:18 PM Bug #14955: Suricata GUI throws a PHP error when creating an EventTime object for use on the ALERTS or BLOCKS tabs if there is a malformed log file entry

This issue is resolved by Pull Request 1313 posted for review and merging here: https://github.com/pfsense/FreeBSD-po... Bill Meeks

01:44 AM Bug #14955: Suricata GUI throws a PHP error when creating an EventTime object for use on the ALERTS or BLOCKS tabs if there is a malformed log file entry

I will address this problem in a forthcoming GUI package update. Bill Meeks

01:36 AM Bug #14955 (Resolved): Suricata GUI throws a PHP error when creating an EventTime object for use on the ALERTS or BLOCKS tabs if there is a malformed log file entry

A line containing a number of consecutive spaces in either the @alerts.log@ or @blocks.log@ files will cause a fatal ... Bill Meeks

10:17 PM Bug #14956: Suricata GUI generates invalid syslog priority values in suricata.yaml file for some drop-down list values

This issue is resolved with Pull Request 1313 posted for review and merge here: https://github.com/pfsense/FreeBSD-po... Bill Meeks

01:45 AM Bug #14956: Suricata GUI generates invalid syslog priority values in suricata.yaml file for some drop-down list values

I am addressing this problem in a forthcoming GUI package update. Bill Meeks

01:42 AM Bug #14956 (Resolved): Suricata GUI generates invalid syslog priority values in suricata.yaml file for some drop-down list values

The Suricata GUI code generates invalid syslog priority values in the @suricata.yaml@ file for several drop-down list... Bill Meeks

08:58 PM Bug #14898: Suricata core dumps with signal 11

I may have found the culprit here (quite by accident I will admit). I think this commit by @kprovost might have fixed... Bill Meeks

04:43 AM Bug #14898: Suricata core dumps with signal 11

I have not been able to reliably reproduce this crash, but I am testing on pfSense 2.7.0 CE with the latest Suricata ... Bill Meeks

05:16 PM Todo #14795: Transition to nut-devel

Thank you! Denny Page

05:15 PM Todo #14795: Transition to nut-devel

Sure, see attached. Marcos M

03:09 AM Todo #14795: Transition to nut-devel

Thank you Marcos. Can you also post the ARM version please?
Denny Page

12:33 AM Todo #14795 (Feedback): Transition to nut-devel

# Install @nut@ from the package manager GUI
# Upload the attached file to the firewall
# Remove the old dependency... Marcos M

11/08/2023

03:09 PM Bug #14898: Suricata core dumps with signal 11

Thank you Marcos for the hint about the VIP. I am investigating. The crash is happening within a portion of the custo... Bill Meeks

01:51 PM Bug #14951 (Duplicate): Tripplite Smart1500LCD UPS

Almost certainly the same as other similar recent reports. Some driver/OS change is causing this device to need root ... Jim Pingle

04:19 AM Bug #14951 (Duplicate): Tripplite Smart1500LCD UPS

I wanted to create this incident ticket to advise the pfsense development team that when I had pfsense version 2.6, I... Adam Di Vizio

12:15 AM Todo #14073: Shalla block list is offline but still available in pfBlocker

Can we get this package cleaned up at least with the removal of the list.
Its causing confusion from users. Mike Moore

11/07/2023

04:48 PM Bug #14932: mailreport 3.6.4_1 doesn't handle name address format "Name <email@domain.com>" in sender

From examining mail server logs it looks like mailreport sends the email but it sets the from address in the header t... Andrew Dakin

11/06/2023

08:58 PM Feature #14712: CrowdSec package

I created a PR for the package at https://github.com/pfsense/FreeBSD-ports/pull/1311
Marco Mariani

01:08 AM Bug #14926: Squid Proxy contains critical vulnerabilities

Pretty sure there isnt an official maintainer for Squid in pfSense. Assume that the package will not receive any bug ... Mike Moore

11/05/2023

06:40 AM Bug #14836: squid and capitive portal integration bug

Tested on
23.05.1-RELEASE (amd64)
built on Wed Jun 28 03:57:27 UTC 2023
FreeBSD 14.0-CURRENT
I can confirm such... aleksei prokofiev

06:31 AM Bug #14932: mailreport 3.6.4_1 doesn't handle name address format "Name <email@domain.com>" in sender

Tested on
23.05.1-RELEASE (amd64)
built on Wed Jun 28 03:57:27 UTC 2023
FreeBSD 14.0-CURRENT
mailreport 3.6.4... aleksei prokofiev