OpenBSD Journal

Tartalom átvétel OpenBSD Journal
The OpenBSD Community.
Frissült: 2 nap 15 óra

Heads Up: Nginx Removed From Base

sze, 2014-08-27 08:41
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } With this commit, Robert Nagy (robert@) removed nginx(8) from base:
Log message:
remove nginx from the base system in favor of OpenBSD's own httpd(8)
Read more...
Kategóriák: *BSD

Heads Up: BIND Disabled in Base

szo, 2014-08-23 08:39
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

After many years of being the default DNS server, BIND has been disabled in OpenBSD base:

Read more...

Kategóriák: *BSD

BSDNow Episode 051: Engineering Nginx

p, 2014-08-22 15:48
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

This week the hosts set up SSL on nginx and an interview about the FreeBSD community and utilisation in the commercial server space, along with the week's BSD-world odds and ends.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

Kategóriák: *BSD

syslogd(8) Now IPv6-Capable

p, 2014-08-22 11:14
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

With the penultimate in a series of commits, Alexander Bluhm (bluhm@) has added IPv6 support to syslogd(8): CVSROOT: /cvs Module name: src Changes by: bluhm@cvs.openbsd.org 2014/08/21 11:00:34 Modified files: usr.sbin/syslogd: privsep.c syslogd.c Log message: Send and receive UDP syslog packets on the IPv6 socket. OK henning@

Kategóriák: *BSD

BSDNow Episode 043: Package Design

k, 2014-07-01 13:42
BSDNow interviews OpenBSD's own Marc Espie about his work on the ports and package system.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent | YouTube | Show Notes ]

Kategóriák: *BSD

PF Tutorial Rolls Past 200,000 Unique Visitors

sze, 2014-06-18 12:09
As you may have heard via Twitter, the PF tutorial by Peter N. M. Hansteen -- a BSD conferences favorite and the predecessor of The Book of PF (with the third edition soon to be in "early access" availability) -- just saw its 200,000th unique visitor and has had somewhat in excess of 3 million page views.

Author Peter Hansteen comments, "It's good to see that the thing is still widely read and referenced. I'll keep working on that and the book for as long at is makes sense.", and continues, "But please do remember that I would have had noting to write about without a vital OpenBSD project producing high quality stuff. Please remember to not just buy the book, but also donate to the project to help keep it running."

You heard the man, now go ahead, read and donate!

Kategóriák: *BSD

BSDNow Episode 041: Commit This Bit

p, 2014-06-13 18:49

The folks at BSDNow interview Benedict Reuschling of FreeBSD and provide their take on the week's BSD news.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

Kategóriák: *BSD

OpenSSL Releases Bugfixes, Advance Notice To Some Vendors But Not OpenBSD

cs, 2014-06-05 22:09
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Earlier today the OpenSSL project released multiple upgrade versions with fixes for several recently reported bugs in their code base.

The most noteworthy thing is not that the OpenSSL project fixes bugs, but rather that information about the bugs had been privately communicated to a list of vendors that did not include OpenBSD. A seclist discussion reveals the full timeline, while the OpenBSD community's reaction can be gauged by this thread on misc@.

Kategóriák: *BSD

sendmail(8) Patch In -stable Fixes Local Snooping Vulnerability

cs, 2014-06-05 17:54
For those of you who are still using sendmail(8) on OpenBSD 5.4 or 5.5, it's patch and update time.

The vulnerability known as CVE-2014-3956 could allow local users to interfere with open SMTP connections, and it is strongly advised that any sendmail users out there patch their systems without undue delay.

Patches are available for OpenBSD 5.4 and OpenBSD 5.5 as patch 011 and patch 007 respectively.

It is worth noting that from OpenBSD 5.6 onwards (to be released November 1st, 2014), OpenSD's own OpenSMTPD will be the default MTA.

Kategóriák: *BSD

BSDCan 2014 Videos Online (Updated)

k, 2014-06-03 22:53

Via the fine folks at BSDNow, videos from BSDCan are finally being made available (Updated): Read more...

Kategóriák: *BSD

Call for Testing: ld.so Malloc Improvements

k, 2014-06-03 10:49
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Otto Moerbeek (otto@) continues his mastery of all things memory allocation, extending some of the libc malloc features to ld.so(1):

ld.so has a very basic malloc. This diff changes it to use a (somewhat stripped) libc malloc with all the randomization and other goodness. Read more...

Kategóriák: *BSD

BSDNow Episode 039: The Friendly Sandbox

p, 2014-05-30 19:04

In this week's episode of BSDNow, the fellas interview John Anderson about capsicum sandboxing, present a tutorial about securing DNS lookups, and go over the weeks' news and events.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

Kategóriák: *BSD

Theo de Raadt and Bob Beck to Present at the Calgary UUG

k, 2014-05-27 08:03
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

A bit late ourselves on a late announcement, but Theo de Raadt (deraadt@) and Bob Beck (beck@) will be giving a presentation in Calgary:

I'm sorry for the late public announcement...

Tomorrow (Tuesday) Bob Beck will be hurtling down the Highway from Edmonton to Calgary.

Then in the evening, he and I will present at the local calgary unix group meeting about recent changes in LibreSSL, OpenBSD, and how the OpenBSD Foundation fits into this.

http://www.cuug.ab.ca/

Anyone in the area who is able to attend probably should.

Kategóriák: *BSD

BSDNow Episode 38: A BUG's life

p, 2014-05-23 20:11

In the latest episode of BSDNow, A BUG's Life, the hosts are back from BSDCan (or the fateful attempt to get there) and turn their attention to FreeBSD 11, OpenBSD honeypots with Kippo, and doing cool stuff with rdomains on OpenBSD, among others.

In the title segment, Brian Callahan (bcallah@) of NYC*BUG and Aaron Bieber (abieber@) of CoBUG are interviewed (starting at 34:15) about the wheres and whyfors of setting up a local BSD User Group. Sadly, only one has a rockin' beard. But I'm sure Brian has many other qualities to recommend him! If you're wondering how to share your love of OpenBSD with others, finding or founding a BUG is a good way to meet others who share your obsession.

Unfortunately, the linked article covering creating an encrypted NAS on OpenBSD uses the now-removed RAIDFrame code; for those wanting to use a more-modern setup, softraid(4) is the supported method of encrypting disks.

Available audio and video recordings:
Video | HD Video | MP3 Audio | OGG Audio | Torrent

Kategóriák: *BSD

OpenBSD Webcast on O'Reilly

sze, 2014-05-21 12:02
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Michael W. Lucas, author of the books SSH Mastery, Sudo Mastery, DNSSEC Mastery, and Absolute OpenBSD, writes in to let us know that he'll be talking OpenBSD up on the interwebs:

I'll be doing a webcast on O'Reilly's community site called "Beyond Security: OpenBSD's Real Purpose." This will go out live on Tuesday, 27 May, 1PM EDT. I'll take questions at the end.

The talk will focus on OpenBSD as a pressure cooker to change the world. If only I had a really good example of this whole "pressure cooker" idea from, say, the last month or so, then the talk would feel really current and attract a lot of interest from the outside world.

If only, indeed!

Kategóriák: *BSD

EuroBSDCon 2014 submissions deadline extended until June 2nd, 2014

sze, 2014-05-21 10:07
td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Co-editor and writer of many words about OpenBSD, Peter Hansteen, who is also on the EuroBSDCon 2014 program committe, wrote in to tell us that the deadline for submissions to the EuroBSDCon 2014 conference has been extended until June 2nd 2014.

Read more...

Kategóriák: *BSD

OpenBSD Presentations from BSDCan Online

k, 2014-05-20 12:10

Another BSDCan has come and gone, and for those of you who missed the fun, the OpenBSD presentations are now online:

Kategóriák: *BSD

The First Ever LibreSSL Status Report (the first 30 days)

v, 2014-05-18 13:56
The BSDCan conference in Ottawa, Canada was the venue for the first ever formal status summary for the LibreSSL project.

Head code flenser Bob Beck (beck@) gave a presentation that is well worth your time reading and when the recording turns up, check that out too.

For now, most easily found via the BSDCan website, sure to be on every major news outlet soon.

Update: The actual presentation is now available here.

Update 2: Jason Tubnor's video shows it as it really happened. Enjoy!

Kategóriák: *BSD

BSDCan 2014 Day 2: LibreSSL, mandoc

szo, 2014-05-17 19:04
Day 2 of BSDCan 2014 is in progress, with more news from OpenBSD developers. In addition to the crowd-pleasing LibreSSL talk by Bob Beck (beck@) we covered already, the other OpenBSD item of the day was Ingo Schwarze's presentation on new trends in mandoc. This is certain to make your favorite operating system's documentation even more useable.

There is also a lunchtime OpenBSD, libressl and stuff BOF session that may produce interesting results.

Kategóriák: *BSD

BSDCan 2014 Day 1: Octeon Progress, OpenBGPD 10 Years, A Year of bgp-spamd

szo, 2014-05-17 17:26
After the tutorial days warmup round, BSDCan 2014 had its first day of talks, including Paul Irofti (pirofti@) on Progress in the Octeon port, Peter Hessler (phessler@) on bgp-spamd's first year and Henning Brauer (henning@) on 10 years of OpenBGPD.

Slides for the talks should be visible via links in there referenced pages, and the talks were recorded, so video should turn up soon.

Kategóriák: *BSD