IPFire 2.29 - Core Update 193 is available for testing

IPFire 2.29 - Core Update 193 is now available for testing, introducing support for Post-Quantum Cryptography in IPsec tunnels, a new toolchain, along with various bug fixes and security enhancements. IPsec tunnels now facilitate key exchanges utilizing the post-quantum Module-Lattice-Based Key-Encapsulation Mechanism (ML-KEM), which is considered secure against threats posed by adversaries with access to quantum computing technology. This decision guarantees the utilization of modern cryptography whenever possible, while ensuring that IPFire maintains compatibility with legacy solutions from various vendors. The standard configuration for new tunnels has been revised to incorporate AES-256 in either GCM or CBC mode, or ChaCha20-Poly1305 as the default option. The toolchain update incorporates security fixes for INTEL-SA-01166, INTEL-SA-01213, INTEL-SA-01139, INTEL-SA-01228, and INTEL-SA-01194. Furthermore, a resolution has been implemented for the issue concerning the incorrect serial number, along with enhancements to the visual design of the Firewall Groups page. The update encompasses enhancements to significant components of the distribution, including Apache, autoconf, BIND, binutils, and additional add-ons.

Read more @ Linux Compatible