Freebsd-based Opnsense Firewall Released For Security Issues And...

OPNsense has released an update focused on eliminating security vulnerabilities and improving firewall performance.

The latest version includes third-party security updates, firewall improvements, and fixes that make the system more reliable for network administrators and security professionals.

The development team has made eliminating unsafe shell usage a primary focus. This is important because shell execution has historically been the source of multiple security problems in the project.

These changes strengthen the firewall’s overall security posture. By removing unsafe shell commands from the backend, OPNsense reduces the risk of attackers exploiting these vulnerabilities.

A security researcher at Pellera Technologies, working with the Trend Zero Day Initiative, reported an issue that helped guide these improvements.

The update also includes securing execution commands in recovery scripts and implementing safer file handling through the file_safe() function across various system components.

Based on user feedback from the previous 25.7.6 release, the team has significantly improved the firewall live log feature.

These improvements include faster data rendering, optimized view buffering, and fixed data ordering issues.

The system now prevents unnecessary repeated host lookups, speeding up the display of logged network traffic for administrators monitoring it in real time.

Additional performance enhancements include improved grid responsiveness in the user interface and better keyboard shortcuts for advanced settings and help sections.

Source: Cybersecurity News