Sophos has already released a fix for the KRACK vulnerability in WIFI networks, get it here: ftp://ftp.astaro.com/UTM/v9/up2date/u2d-sys-9.504001-505004.tgz.gpg Release notes: Up2Date 9.505004 package description: Remarks: System will be rebooted Connected APs will perform firmware upgrade Connected REDs will perform firmware upgrade News: Security Release Bugfixes: Fix [NUTM-8984]: [RED] WPA2 KRACK vulnerability fixes for RED15w Fix [NUTM-8789]: [Wireless] WPA2 KRACK vulnerability fixes RPM packages contained: firmwares-bamboo-9400-0.273856001.gc09c1ec.rb1.i586.rpm red-firmware2-5123-0.273833046.g1919632.noarch.rpm red15-firmware-5123-0.273832838.g2f85ff1.noarch.rpm ep-release-9.505-4.noarch.rpmRead More Sophos UTM: Up2date 9.505-4 released
If you have a user on Plesk, that has his own mailserver, and when sending mails from Plesk, you will get errors, because Plesk thinks it’s responsible for handling mail for the domain, you can disable mail for the domain via SSH:
# /usr/local/psa/bin/domain -u example.com -mail_service false
Sophos has released a minor fix, but an important on today as GA: Release notes: Up2Date 9.504001 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade News: Security Release Bugfixes: Fix [NUTM-8851]: [Basesystem] System doesn’t boot if Posgtresql database cannot start Fix [NUTM-7240]: [RED] RED 50 loosing ARP entries of internal machines Fix [NUTM-8782]: [RED] RED10, RED15, RED50: Update OpenSSL and TCPdump to most current version… Sophos UTM: Up2date 9.504-1 releasedRead More Sophos UTM: Up2date 9.504-1 released
Hooray! Finally it’s there, are you ready to onboard? I think they have gone a long way, but it looks promising, even though I am a faithfully UTM user, I just have to admit, that Sophos is not planning to make the UTM live very much longer, 9.6 and 9.7 on the road map, but all the new stuff, including security heartbeat, is only going to be featured in XG. Read more here: XG Firewall… Sophos XG Firewall v17 Release Candidate is out now!Read More Sophos XG Firewall v17 Release Candidate is out now!
Finally XG 17 is moving towards something useable, beta2 has been released, and you now get a somewhat stable environment now: Read all about it here: https://community.sophos.com/products/xg-firewall/sophos-xg-beta-programs/sfos-v170-beta/f/sfos-v170-beta-feedback/96596/sfos-v17-0-beta2-released UTM config conversion tool, will maybe be available in November 2017, after XG 17 beta is finished.Read More Sophos XG firewall: SFOS v17.0 beta2 released
Sophos has released a new update GA, which will fix some minor issues with SUM. Release notes: Up2Date 4.306003 package description: Remark: System will be rebooted News: Maintenance Release Bugfix: Fix [NSU-245]: [accd] SUM is accepting weak ciphers on port 4433 which fails PCI compliance scan RPM packages contained: u2d-tib-9-13659.i686.rpm chroot-bind-9.10.4_P8-0.258574549.g00918f3.rb7.i686.rpm cm-chroot-accd-4.28-177.g66520c5.i686.rpm ep-release-4.306-3.noarch.rpmRead More Sophos SUM: Update 4.306-3 released
When you have your Remote Desktop farm spinning with connection broker and the right certificates, all should be over with the certificate warnings…..ehh should?? You create a RDP profile for your users, so they have a shortcut on their desktops for the RD farm, but they get this screen: But did i just not install certificates on my connection broker and all my RDS hosts?! YES But when I just open the remote desktop connection… Remote Desktop: How and why you want to sign your RDP fileRead More Remote Desktop: How and why you want to sign your RDP file