SecureDrop 2.5.1 Released

December 8, 2022

We’re pleased to announce that SecureDrop 2.5.1 has been released. This is a hotfix release that makes user and permissions-related changes, which will be explained in greater detail in a blog post that will be published soon. The changelog can be found on GitHub.

What’s new in SecureDrop 2.5.1?

For administrators

Security: This release makes user- and permissions-related changes on SecureDrop server. (Commits: 1, 2, 3, 4, 5)

What administrators need to do

SecureDrop Application and Monitor Servers will be updated to SecureDrop 2.5.1 automatically within 24 hours of the release. As with previous releases, we recommend that you update your Tails workstations to the latest version of Tails and the latest version of SecureDrop. Please see our upgrade guide for instructions.

Acknowledgements

This release incorporates Freedom of the Press Foundation contributions by: Kunal Mehta (release manager), Kevin O'Gorman (deputy release manager), Nathan Dyer (communications manager), Giulio B., Cory Myers, Rowen S, and Michael Z.

Questions and comments

If you have questions or comments regarding this release, please contact us:

Via our Support Portal, if you are a member (membership is available to SecureDrop administrators on request);
Via securedrop@freedom.press (GPG encrypted) for sensitive security issues (please use judiciously);
Via our community forums.

We also encourage you to file non-sensitive issues you encounter in our GitHub repository (issue report form).

Thank you for using SecureDrop!

Have a document to share?

You are not anonymous while using this browser!

Your Tor security settings are too low!

Set your Tor security level to "Safest" for maximum protection