Changelog

• 1.6.2 Attitude Adjustment 12.09 Final SVN r42171
• 1.6.1 Attitude Adjustment 12.09 Final SVN r40431
• 1.6.0

New in 1.6.2:

• OpenSSL updated again, with some more critical fixes
• OpenWRT version updated to include latest fixes in Attitude Adjustment branch
• Some minor tweaks to enhance wireless performance – ANI is now disabled by default, and dissoc_low_ack set to 0
• Search results from thepiratebay torrent tracker added to web search monitoring tool (thanks to Kim Bratzel for this patch)
• Update Dropbear SSH server to latest version
• Fix removal of hostname when static IP addresse is removed in DHCP section
• Alix builds now boot with GRUB2 instead of GRUB

Version 1.6.1 is primarily a bugfix release. A fix for the recent heartbleed openssl bug is included, along with several other non-security related fixes and improvements.

Only routers that were using the Tor or OpenVPN functionality in Gargoyle were vulnerable to the heartbleed bug. Anyone who is using either of these applications is strongly advised to upgrade.

Also, functionality to clear out old OpenVPN keys and certificates has been introduced (disable OpenVPN, then click “Clear All Existing OpenVPN keys”). It is strongly recommended that anyone running an OpenVPN server on a router that was potentially vulnerable to heartbleed, take advantage of this functionality and regenerate all of their keys and certificates. The primary reason for the slight delay in this release from when heartbleed was first disclosed was to implement this functionality. Since OpenVPN is one of only two vulnerable applications, it made sense to make sure the ability to clear old, vulnerable keys was implemented along with the fix for the bug itself.

New in 1.6.1: Fixes “heartbleed” bug in OpenSSL, OpenSSL upgraded to 1.0.1g which is not vulnerable Ability to clear old keys and certificates when OpenVPN is disabled implemented New option to explicitly block nonOpenVPN traffic in OpenVPN Client, preventing problems if OpenVPN connection dies Notice of OpenVPN status added to login page when OpenVPN client is active Fixes implementation of DMZ, should now work with port forwarding again Improved identification of default ping target for QoS ACC Tor version upgraded to latest stable 0.2.4.21 Add German Translation (Thanks to Thomas Knepper)

New in 1.6.0:

• New Norwegian Translation
• Multiple improvements to other translations, in particular to plugin translations
• Support for TP-Link WR1043ND v2 including support for access via WAN port in failsafe mode
• Support for 16MB/64MB Hornet Board, branded Gargoyle Pocket Router v2
• New Dynamic DNS Providers strato.com, oray.com and 3322.org were added to those available
• Display Drive Name as well as device path in USB storage Configuration
• Fixes display/redirect of root login page in Chrome when connecting via https
• Fix display of incorrect key size of Blowfish Ciphers in OpenVPN client configuration