Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    System Patches package version 2.2.6

    Scheduled Pinned Locked Moved
    pfSense Packages
    1
    1
    1.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • jimpJ
      jimp Rebel Alliance Developer Netgate
      last edited by

      A new version of the System Patches package is up, version 2.2.6

      This version adds a recommended patch entry for https://redmine.pfsense.org/issues/9889 which fixes a bug in the upstream library we use to generate CRLs. With the patch applied, it's now possible to properly utilize CRLs for intermediate CAs.

      The most common way users seem to have this problem is for validation of CRL entries for OpenVPN in SSL/TLS mode if OpenVPN is using an intermediate CA for validating client certificates.

      Not a lot of people use intermediate CAs for that purpose since RA OpenVPN setups are usually self-contained and do not depend on other CAs, but if you do happen to be affected, it's enough to apply the patch and then edit/save any OpenVPN entries using a CRL for an intermediate CA. You can reboot if you want, but it shouldn't be necessary.

      Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

      Need help fast? Netgate Global Support!

      Do not Chat/PM for help!

      1 Reply Last reply Reply Quote 6
      • jimpJ jimp pinned this topic on
      • jimpJ jimp referenced this topic on
      • jimpJ jimp unpinned this topic on
      • First post
        Last post