We’re pleased to announce that SecureDrop 2.11.1 has been released. This is a hotfix for a bug in this week’s 2.11.0 release that caused multiple spurious OSSEC alerts (“systemd OK: no failed units”) to be sent to administrators. Servers will be updated with this fix automatically on their next nightly reboot. We apologize for any inconvenience caused.
What administrators need to do
SecureDrop Application and Monitor Servers will be updated to SecureDrop 2.11.1 automatically within 24 hours.
Please follow our upgrade guide, and get in touch with us if you require assistance.
Acknowledgments
This release incorporates Freedom of the Press Foundation (FPF) contributions by Nathan Dyer, communications manager; Kunal Mehta, deputy release manager; Erik Moeller; Cory Francis Myers; Kevin O’Gorman, release manager; Francisco Rocha; and Rowen S.
Questions and comments
If you have questions or comments regarding this release, please contact us:
- Via our Support Portal, if you are a member (membership is available to SecureDrop administrators on request);
- Via securedrop@freedom.press (PGP encrypted) for sensitive security issues (please use judiciously), or submit a report via Bugcrowd;
We also encourage you to file nonsensitive issues you encounter in our GitHub repository (issue report form).
Thank you for using SecureDrop!