Hi there,
Small 19.1 series update mainly focusing on LDAP group synchronisation and assorted OpenVPN improvements. Two regressions of previous versions have been fixed as well.
Here are the full patch notes:
- system: add LDAP group synchronisation feature
- system: allow an arbitrary group for sudo like ssh login
- system: stop using a lock around resolv.conf handling
- system: rename a number of service-related functions
- system: login not using cache-safe image yet
- system: add pluginctl -s support
- system: restyle config backup page
- system: fix log split view regression of 19.1.8
- interfaces: remove DHCPv6 on delete and clear config on IPsec assignment
- interfaces: small VIP restructure and IPv6 alias to IPv6 device
- interfaces: subtle changes in IPv6 and variable naming
- interfaces: add missing does_interface_exist() checks
- firewall: support multiple interfaces per NAT port forward rule
- captive portal: use "onestop" to stop service
- intrusion detection: missing header ID in alerts tab
- ipsec: remove remnants of gateway group interface selection
- ipsec: use indirect plugin calls in interface code
- openvpn: add live-search to longer lists in server page
- openvpn: support --cryptoapicert export (sponsored by m.a.x. it[1])
- opnevpn: correctly check for translation in get_carp_interface_status()
- openvpn: use waitforpid() to properly wait for instanes to come up
- openvpn: translate GUI error values when returning them
- openvpn: revamp status page
- unbound: leases watcher file rotation issue
- web proxy: squid log in readable date format (contributed by nhirokinet)
- web proxy: fix non-local authentication regression of 19.1.7
- plugins: os-bind 1.5[2]
- plugins: os-clamav 1.7[3]
- plugins: os-dnscrypt-proxy 1.4[4]
- plugins: os-dyndns clouldflare wildcard domain support
- plugins: os-nginx 1.13[5]
- plugins: os-openconnect 1.4.0[6]
- plugins: os-redis 1.1[7]
- plugins: os-rspamd 1.6[8]
- plugins: os-theme-cicada 1.18 (contributed by Team Rebellion)
- plugins: os-theme-tukan 1.18 (contributed by Team Rebellion)
- ports: curl 7.65.0[9]
- ports: lighttpd 1.4.54[10]
- ports: python 3.7.3[11]
- ports: openssl 1.0.2s[12]
- ports: php 7.2.19[13]
Stay safe,
Your OPNsense team