Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    pfSense Plus version 22.01 and pfSense CE version 2.6.0 Software are Now Available!

    Scheduled Pinned Locked Moved Messages from the pfSense Team
    28 Posts 20 Posters 25.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • R
      rcoleman-netgate Netgate @guardian
      last edited by rcoleman-netgate

      @guardian try running

      /etc/rc.initial
      

      to get the menu. Only 'admin' gets the menu by default. If you have disabled this account it is now reflective in the SSH connection with the 2.6 update.

      Ryan
      Repeat, after me: MESH IS THE DEVIL! MESH IS THE DEVIL!
      Requesting firmware for your Netgate device? https://go.netgate.com
      Switching: Mikrotik, Netgear, Extreme
      Wireless: Aruba, Ubiquiti

      1 Reply Last reply Reply Quote 0
      • R
        robbyjhons540
        last edited by

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • J
          jwg014
          last edited by

          HI,

          any Idea how to deal with CVE-2022-0778 in the case e.g. HaProxy use inside pfSense?
          BR Johannes

          jimpJ 1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate @jwg014
            last edited by

            @jwg014 said in pfSense Plus version 22.01 and pfSense CE version 2.6.0 Software are Now Available!:

            any Idea how to deal with CVE-2022-0778 in the case e.g. HaProxy use inside pfSense?

            HAProxy would only be affected if you have it configured to accept client certificates as a form of authentication. Which is possible, but rare in practice. If you have concerns about that, move the service inside a VPN where it's much more protected. As far as we can tell so far, VPNs are not likely to be as much of an issue as there are other hurdles attackers would have to overcome before the certificates come into play (e.g. TLS key protecting OpenVPN in addition to certificate auth.), and several VPN types and configs don't use certificates at all (e.g. WireGuard). We're still checking into it and keeping an eye on what people find, though.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 2
            • D
              doppyforever79
              last edited by

              This post is deleted!
              1 Reply Last reply Reply Quote 1
              • D
                doppyforever79
                last edited by

                This post is deleted!
                1 Reply Last reply Reply Quote 0
                • M mleighton unpinned this topic on
                • U
                  urbanovits @mleighton
                  last edited by

                  @mleighton Were to report a security issue ?
                  Need a contact info, I'm not going to put on public.

                  jimpJ 1 Reply Last reply Reply Quote 0
                  • jimpJ
                    jimp Rebel Alliance Developer Netgate @urbanovits
                    last edited by

                    @urbanovits said in pfSense Plus version 22.01 and pfSense CE version 2.6.0 Software are Now Available!:

                    @mleighton Were to report a security issue ?
                    Need a contact info, I'm not going to put on public.

                    https://www.netgate.com/security has the relevant contact information and procedures for reporting security issues.

                    Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

                    Need help fast? Netgate Global Support!

                    Do not Chat/PM for help!

                    1 Reply Last reply Reply Quote 0
                    • First post
                      Last post
                    Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.