It is time to release another Core Update for IPFire. It comes with an improved Quality of Service based on CAKE and various bug fixes and a lot of package updates.
Before we talk about what is new, I would like to ask you for your support. IPFire is a small team of people and like many of our open source friends, we’ve taken a hit this year and would like to ask you to help us out. Please follow the link below where your donation can help fund our continued development: https://www.ipfire.org/donate.
Everything is better with CAKE
CAKE comes with a couple of benefits over its predecessor of which requiring less CPU resources, more accurate bandwidth shaping due to working with bytes instead of packets the most important ones. In our experiments in the lab we have found no notable differences for fast lines, but there is a notable improvement of VoIP call quality on slower or saturated lines.
The Quality of Service in IPFire which used to be based on CoDel is now being based on CAKE. Any configuration will be automatically migrated. There are new options in the advanced settings which can be used to select any encapsulation of your internet connection which will help CAKE to more precisely estimate any overhead.
- Support for the i586 architecture has been removed
Passwords for system accounts will now be hashed using YESCRYPT for improved security against brute-force attacks with rainbow tables
- IPsec: Corrupted certificates after download have been fixed
- Booting IPFire on Xen has been fixed
- Updated packages: Apache 2.4.52,
bash5.1.12, cURL 7.80.0,
ncurses6.3, PAM 1.5.2,
pango1.50.0, perl-Date-Manip 6.86, perl-Unix-Syslog 1.1, perl-URI 5.09,
shadow4.9, SQLite 3.37.0,
- Updated packages:
gdb11.1, Git 2.34.1, htop 3.1.2,
nano6.0, pcengines-apu-firmware 22.214.171.124, QEMU 6.1.0,
socat126.96.36.199, Tor 0.4.6.9