Home

Release Notes for ufdbGuard version 1.25

Previous versions of ufdbGuard had various problems with correctly detecting applications that use the HTTPS port.  The HTTPS port, port 443, is used by SSL-encrypted HTTP sessions, various types of tunnels, Skype chat, Google Talk, AIM, Live Messenger (a.k.a. MSN) and a set of tunneling applications.  This release fixes various problems with detection of application protocols over HTTPS and it is highly recommended to upgrade.

Fixes

  • SSH tunnel detection was sometimes skipped
  • unknown protocols on HTTPS port 443 were always blocked.  A new parameter controls the behaviour of ufdbguardd: block or allow (default)
  • reset status of a SSL-based URL after a new configuration has been loaded.
  • set error status for monitor when ufdbguardd aborts immediately at startup
  • do not reset license status to "unknown" when the status is already known.  This fixes incorrect monitor events.
  • a missing #include statement caused compilation failures on BSD systems

Changes

  • a new URL category Social Networks is released.  Read the release note here.
  • error messages are more compact for modes transparent and simple-red

Enhancements

  • the installation procedure updates the configuration for a new URL category "social networking"
  • ufdbguardd now also detects the Google talk application
  • the Reference Manual has a new section about blocking and allowing chat applications, and a section on how to gain performance on systems with many users
  • ufdbhttpd produces messages for blocked URLs.  ufdbhttpd produces compacter messages for the modes simple-red and transparent.  ufdbhttpd has an improved mechanism to determine the object type of a blocked URL which sometimes improves the visual layout of web pages with a mix of allowed and blocked content and, depending on the browser, makes browsing faster.
  • a new parameter "interface" defines on which interface ufdbguardd listens
  • the external status monitor has new -v option
  • remove UNIX socket /tmp/ufdbguardd-[0-9][0-9][0-9][0-9][0-9] after /etc/init.d/ufdb kill or stop
  • ufdbGenTable supports the new TLD .xxx
  • the list of SafeSearch search engines is extended with trovator.com, wotbox.com and yauba.com
  • support for old pthread libs on FreeBSD 4.11 is added

Downloads

The new software and its Reference Manual can be downloaded here.