All Regions Argentina Australia Austria Belgium (fr) Belgium (nl) Brazil Bulgaria Canada (en) Canada (fr) Catalonia Chile China Colombia Croatia Czech Republic Denmark Estonia Finland France Germany Greece Hong Kong Hungary Iceland India (en) Indonesia (en) Ireland Israel (en) Italy Japan Korea Latvia Lithuania Malaysia (en) Mexico Netherlands New Zealand Norway Pakistan (en) Peru Philippines (en) Poland Portugal Romania Russia Saudi Arabia Singapore Slovakia Slovenia South Africa Spain (ca) Spain (es) Sweden Switzerland (de) Switzerland (fr) Taiwan Thailand (en) Turkey US (English) US (Spanish) Ukraine United Kingdom Vietnam (en) Any Time Past Day Past Week Past Month Past Year

 

 

1.	OpenBSD Journal: A resource for the OpenBSD community
	In what can only be called a great stride forward in routing security, Sebastian Benoit (benno@) announced the availability of rpki-client version 9.0.The announcement reads, Subject: rpki-client 9.0 released From: Sebastian Benoit <benno openbsd ! org> Date: 2024-03-03 17:24:06 rpki-client 9.0 has just been released and will be available in the rpki-client directory of any OpenBSD mirror soon.
	undeadly.org/cgi?action=front    2024-02-29T00:00:00.0000000
2.	OpenBSD 7.3 released
	Calgary and elsewhere, 2023-04-10 : The OpenBSD project today announced the release and general availability of its latest stable version, OpenBSD 7.3 . Eagerly anticipated by users, engineers, enthusiasts and industry pundits all over the world, this release contains a number of improvements over earlier versions, including but not limited to.
	undeadly.org/cgi?action=article;sid=20230410140049    2023-03-06T00:00:00.0000000
3.	Introducing dhcpleased(8)
	Now enabled by default on OpenBSD -current is dhcpleased(8), a dynamic host configuration protocol daemon written by florian@ (Florian Obser), who spoke with us about his work:. I suppose this is either the KAME project's fault, or if we don't want to go that far back, Theo's fault. At g2k16 he floated the idea of a network configuration daemon. It would collect "proposals" for IP addresses ...
	undeadly.org/cgi?action=article;sid=20210722072359
4.	OpenBSD 7.4 Released
	The OpenBSD project has announced the release of OpenBSD 7.4, the 55 th release of the OpenBSD operating system.. The new release contains a number of innovations and improvements across a number of areas, including Mandatory enforcement of indirect branch targets [See earlier report].; viogpu(4), a VirtIO GPU driver [See earlier report]. vmd(8) has moved to a multi-process model for virtio(4 ...
	undeadly.org/cgi?action=article&sid=20231016130614&ref=upstract.com    2023-09-27T00:00:00.0000000
5.	About the OpenBSD Journal
	OpenBSD Journal. Home Archives About Submit Story Create Account Login. About the OpenBSD Journal Purpose. The OpenBSD Journal is a site dedicated to providing news and information of interest to members of the OpenBSD community.. The site is run by a small group of volunteers. Although several OpenBSD developers are registered users of the site, and the site receives frequent contributions ...
	undeadly.org/cgi?action=about
6.	20 years since "and we're just starting": undeadly.org turns 20 (2024 ...
	Contributed by Peter N. M. Hansteen on 2024-04-07 from the 20 years a Puffyist dept. It's been 20 years since the first undeadly.org post appeared. At that point in our history, we had been enjoying frequent updates to the OpenBSD Journal at the deadly.org site for more than four years, and most of us thought it was an April's Fool prank when ...
	undeadly.org/cgi?action=article;sid=20240409044953    2024-04-09T04:52:58.0000000
7.	OpenSSH 9.2/9.2p1 released! - undeadly.org
	OpenSSH 9.2 was released on 2023-02-02. It is available from the mirrors listed at https://www.openssh.com/. As should be of no surprise to undeadly readers, OpenSSH ...
	undeadly.org/cgi?action=article;sid=20230202205608    2023-02-02T00:00:00.0000000
8.	Next steps toward mimmutable, from deraadt@
	In a recent message to the tech mailing list, Theo de Raadt (deraadt@) summarized the state of the new memory protections work.The thread also includes a followup from Otto Moerbeek (otto@) on consequent changes to the memory allocation mechanisms.. Theo writes, From: "Theo de Raadt" <deraadt openbsd ! org> Date: Fri, 18 Nov 2022 03:10:05 +0000 To: openbsd-tech Subject: More on mimmutable ...
	undeadly.org/cgi?action=article;sid=20221120115616    2022-11-19T00:00:00.0000000
9.	OpenBGPD 8.0 released
	The OpenBSD project has released a new version of OpenBGPD, the OpenBSD Border Gateway Protocol (BGP) routing daemon, version 8.0.The announcement reads, From: Claudio Jeker <claudio openbsd ! org> Date: Thu, 04 May 2023 16:24:30 +0000 To: openbsd-announce Subject: OpenBGPD 8.0 released We have released OpenBGPD 8.0, which will be arriving in the OpenBGPD directory of your local OpenBSD mirror ...
	undeadly.org/cgi?action=article;sid=20230505054214
10.	OpenBSD KDE Status Report
	OpenBSD has managed to drop KDE3 and KDE4 in the 6.8 -> 6.9 release cycle. That makes me very happy because it was a big piece of work and long discussions. This of course brings questions: Kde Plasma 5 package missing. After half a year of work, I managed to successfully update the Qt5 stack to the last LTS version 5.15.2. On the whole, the most work was updating QtWebengine.
	undeadly.org/cgi?action=article;sid=20210124113220
11.	RSA/SHA1 signature type disabled by default in OpenSSH
	In a message to tech@ Damien Miller (djm@) explained the consequences of his recent commit: RSA/SHA1, a.k.a the "ssh-rsa" signature type is now disabled by default in OpenSSH. While The SSH protocol confusingly uses overlapping names for key and signature algorithms, this does not stop the use of RSA keys and there is no need to regenerate "ssh-rsa" keys - most servers released in the last ...
	undeadly.org/cgi?action=article;sid=20210830113413
12.	Index for 2022 - undeadly.org
	OpenBSD Journal. Home Archives About Submit Story Create Account Login. Archive Index for 2022. January. DRM updated; LibreSSL update; A proof of concept: running OpenBSD on the PinePhone; February. New 'Reckless guide to OpenBSD' published
	undeadly.org/cgi?action=archive;y=2022
13.	New versions of LibreSSL released
	The LibreSSL project has announced the release of versions 3.6.3 and 3.7.3, and (development) version 3.8.0 of the software. The announcement for versions 3.6.3 and 3.7.3 reads: We have released LibreSSL 3.6.3 and 3.7.3, which will be arriving in the LibreSSL directory of your local OpenBSD mirror soon. They include the following fixes: * Bug fix - Hostflags in the verify parameters would not ...
	undeadly.org/cgi?action=article;sid=20230528115900    2023-05-28T00:00:00.0000000
14.	OpenSSH 9.3/9.3p1 released - undeadly.org
	On 2023-03-15 , the release of version 9.3 of OpenSSH was announced: […] This release fixes a number of security bugs. safety problem. The memory safety problem is not believed to be. security bugs. * ssh-add(1): when adding smartcard keys to ssh-agent(1) with the. per-hop desination constraints (ssh-add -h ...) added in OpenSSH.
	undeadly.org/cgi?action=article;sid=20230316040613    2023-03-15T00:00:00.0000000
15.	viogpu(4), a VirtIO GPU driver, added to -current
	Joshua Stein (jcs@) has committed viogpu(4), which provides support for the virtio(4) GPU interface (provided by QEMU and other virtual machines) to create a wscons(4) console.CVSROOT: /cvs Module name: src Changes by: jcs@cvs.openbsd.org 2023/04/20 13:28:31 Modified files: share/man/man4 : Makefile sys/arch/amd64/conf: GENERIC sys/arch/arm64/conf: GENERIC RAMDISK sys/dev/pv : files.pv virtio ...
	undeadly.org/cgi?action=article;sid=20230421124221    2023-04-21T00:00:00.0000000
16.	EuroBSDCon 2023 presentations
	Coimbra! dept. EuroBSDCon 2023 has now ended, and slides for many of the OpenBSD developer presentations are now available in the usual place. Video of the presentations can be expected somewhat later. Slides from the tutorial "Network Management with the OpenBSD Packet Filter Toolset" are also available. (Comments are closed)
	undeadly.org/cgi?action=article;sid=20230919063240    2023-09-18T00:00:00.0000000
17.	OpenSSH 9.3p2 released
	OpenSSH 9.3p2 released. Contributed by grey on 2023-07-19 from the It's Wednesday, but you should still patch this now. dept. As announced by Damien Miller: "We've just made an OpenSSH release to fix a remotely exploitable RCE vulnerability in ssh-agent's PKCS#11 support (CVE-2023-38408).
	undeadly.org/cgi?action=article;sid=20230719180438    2023-07-19T00:00:00.0000000
18.	Using a Yubikey as smartcard for SSH public key authentication
	It's in -current only, so it will be available in 6.5, out in two months or so. Right now your options are: build it yourself (easy), port the port to 6.4 or upgrade to a snapshot (which is is 6.5-beta since last week).
	undeadly.org/cgi?action=article;sid=20190302235509
19.	OpenSSH U2F/FIDO support in base - undeadly.org
	support to base and tweaked OpenSSH to use them directly. This means. there will be no additional configuration hoops to jump through to use. U2F/FIDO2 security keys. Hardware backed keys can be generated using " ssh-keygen -t ecdsa-sk". (or "ed25519-sk" if your token supports it). Many tokens require to be. touched/tapped to confirm this step.
	undeadly.org/cgi?action=article;sid=20191115064850
20.	HEADS UP: ntpd changing
	The ntpd options -s and -S are going to be removed soon and at startup. with print: -s option no longer works and will be removed soon. Please reconfigure to use constraints or trusted servers. Probably after 6.7 we'll delete the warning. Maybe for 6.8 we'll remove. -s and -S from getopt, and starting with those options will fail.
	undeadly.org/cgi?action=article;sid=20191111075815
21.	Soft updates (softdep) disabled for future VFS work
	A low key leak from the ongoing g2k23 hackathon comes the news that soft updates (aka softdep) will, for now, be a no-op on OpenBSD-current.. The commit message by Bob Beck (beck@) reads, . From: Bob Beck <beck cvs ! openbsd ! org> Date: 2023-07-05 15:13:28 CVSROOT: /cvs Module name: src Changes by: beck@cvs.openbsd.org 2023/07/05 09:13:28 Modified files: sys/kern : vfs_syscalls.c sys/sys ...
	undeadly.org/cgi?action=article;sid=20230706044554    2023-07-06T00:00:00.0000000
22.	Index for 2024 - undeadly.org
	Archive Index for. 2024. January. TSO for em(4) committed to -current. OpenBSD workstation hardening tips. DSA removal from OpenSSH. Effortless OpenBSD Audio and Desktop Screen Recording Guide. pinsyscalls(2) working in anger. KMS for Apple silicon machines.
	undeadly.org/cgi?action=archive
23.	Coming soon to a -current system near you: parallel raw IP input
	The work to improve the capabilities of the network stack is about to take a noticeable step forward. In a message to tech@ titled parallel raw IP input, Alexander Bluhm (bluhm@) posted a patch that he describes as. List: openbsd-tech Subject: parallel raw IP input From: Alexander Bluhm <bluhm openbsd ! org> Date: 2024-04-11 20:24:39 Hi, As mvs@ mentioned, running raw IP in parallel is easier ...
	undeadly.org/cgi?action=article&sid=20240418050520&ref=upstract.com    2024-04-18T00:00:00.0000000