|
Post by active on Jun 14, 2018 9:22:33 GMT
Hi
I have been using Smallwall since 2015 an it has been absolutely rock solid but I noticed that there haven't been any updates in a long time. Is this project still being developed?
Thanks
|
|
|
Post by Lee Sharp on Jun 14, 2018 11:42:55 GMT
Yes? I have been very bad about updates as it seems to work fine. But I do need to do some. Sorry. 
|
|
|
Post by active on Jun 14, 2018 14:12:05 GMT
I'm not in need of updates as the functionality is sufficient and it is very stable but I wanted to be sure that there would be security patches if/when necessary. Thanks for the reply.
|
|
|
Post by Lee Sharp on Jun 14, 2018 14:56:48 GMT
Absolutely! That is one thing that would motivate me quickly! That said, the https still allows older and outdated protocols, but since most new browsers block them, it is mostly a non-issue.
|
|
jake
New Member
Posts: 1
|
Post by jake on Jun 17, 2018 12:14:44 GMT
Nice! It has performed flawless for me as well, kudos !!
|
|
|
Post by reach on Feb 22, 2020 21:01:17 GMT
I came here in the search for a successor of my m0n0wall. My m0n0wall also works flawlessly, but I don't feel well in the fast changing IT world to have a firewall from 2015. Do I get it right that the current Smallwall is also from 2015? Is this still considered safe? Pardon my question, but would it even be worth the effort to move from m0n0- to Smallwall if all I'd like is a "more recent" firewall?
|
|
|
Post by Lee Sharp on Feb 22, 2020 23:09:13 GMT
The adds from the last m0n0wall are some l2tp fixes and additional drivers. As for security, all of the big front page exploits are in new features of the components of Smallwall that we do not use.  It is amusing to me that when you get into the older versions, things are much more secure because they are not pushing out new features to exploit. What you use is of course your call, and I am getting the hint that I should pick things up again. But I have no worries about security at all!
|
|
|
Post by knightmb on Feb 25, 2020 0:44:02 GMT
You could do just some yearly "cycle" updates that maybe tweak the theme or use some new HTML features for the GUI just to fill that physiological barrier some have when they see "last update was 2015!!!!111" knee-jerk reactions, LOL. I like being able to brag that the last time I rebooted my firewall was the last time an update was released.
|
|
|
Post by Lee Sharp on Feb 25, 2020 2:43:50 GMT
Not a bad plan...
|
|
|
Post by knightmb on Mar 18, 2020 14:47:36 GMT
I've noticed now that browsers complain about SmallWall using older TLS protocols for the SSL connection. Is there any problem with the older ones that would affect SmalWall security wise?
|
|
|
Post by Lee Sharp on Mar 18, 2020 17:37:16 GMT
Sigh... I am growing to hate the browsers... Yes, TLS 1.0 and 1.1 are less secure than 1.2, but it is still some encryption. I just wish the browsers companies were not in the business of deciding for us when we need to replace out network equipment and printers. I guess I really do need to push an update now.
|
|
|
Post by knightmb on Mar 22, 2020 15:06:32 GMT
Sigh... I am growing to hate the browsers... Yes, TLS 1.0 and 1.1 are less secure than 1.2, but it is still some encryption. I just wish the browsers companies were not in the business of deciding for us when we need to replace out network equipment and printers. I guess I really do need to push an update now. I agree, but it does give a convenient excuse to push out an update. I read here about the captive portal design contest, is that included in the current release or was planned for future releases?
|
|
|
Post by Lee Sharp on Mar 22, 2020 15:55:43 GMT
It did not actually get a lot of result. And the one I liked I could not get an official license to.  But yeah, I need to push an update. Now to find time. I have a lot of clients needed to set up or expand the ability to work remotely. I have probably dropped a dozen OpenVPN servers at clients last week.  But I will try and find some time to update TLS anyway.
|
|