1. |
OpenBSD Journal: A resource for the OpenBSD community
|
|
The work to improve the capabilities of the network stack is about to take a noticeable step forward. In a message to tech@ titled parallel raw IP input, Alexander Bluhm (bluhm@) posted a patch that he describes as. List: openbsd-tech Subject: parallel raw IP input From: Alexander Bluhm <bluhm openbsd ! org> Date: 2024-04-11 20:24:39 Hi, As mvs@ mentioned, running raw IP in parallel is easier ...
|
|
undeadly.org/cgi?action=front
2024-05-06T00:00:00.0000000
|
|
|
2. |
20 years since "and we're just starting": undeadly.org turns 20 (2024 ...
|
|
Contributed by Peter N. M. Hansteen on 2024-04-07 from the 20 years a Puffyist dept. It's been 20 years since the first undeadly.org post appeared. At that point in our history, we had been enjoying frequent updates to the OpenBSD Journal at the deadly.org site for more than four years, and most of us thought it was an April's Fool prank when ...
|
|
undeadly.org/cgi?action=article;sid=20240409044953
2024-04-07T00:00:00.0000000
|
|
|
3. |
Demise of Nagle's algorithm (RFC 896 - Congestion Control) predicted ...
|
|
A recent post on tech@ titled Add sysctl to disable Nagle's algorithm ( RFC 896 - Congestion Control) from Job Snijders ( job@) with a patch to implement the disabling sysctl indicates that some at least think that deprecation is in order. The message leads in, List: openbsd-tech. Subject: Add sysctl to disable Nagle's algorithm ( RFC 896 ...
|
|
undeadly.org/cgi?action=article;sid=20240514075024
2024-05-14T00:00:00.0000000
|
|
|
4. |
OpenSSH 9.2/9.2p1 released! - undeadly.org
|
|
OpenSSH 9.2 was released on 2023-02-02. It is available from the mirrors listed at https://www.openssh.com/. As should be of no surprise to undeadly readers, OpenSSH ...
|
|
undeadly.org/cgi?action=article;sid=20230202205608
2023-02-02T00:00:00.0000000
|
|
|
5. |
OpenSSH 9.3p2 released
|
|
OpenSSH 9.3p2 released. Contributed by grey on 2023-07-19 from the It's Wednesday, but you should still patch this now. dept. As announced by Damien Miller: "We've just made an OpenSSH release to fix a remotely exploitable RCE vulnerability in ssh-agent's PKCS#11 support (CVE-2023-38408).
|
|
undeadly.org/cgi?action=article;sid=20230719180438
2023-07-19T00:00:00.0000000
|
|
|
6. |
OpenBSD 7.4 Released
|
|
The OpenBSD project has announced the release of OpenBSD 7.4, the 55 th release of the OpenBSD operating system.. The new release contains a number of innovations and improvements across a number of areas, including Mandatory enforcement of indirect branch targets [See earlier report].; viogpu(4), a VirtIO GPU driver [See earlier report]. vmd(8) has moved to a multi-process model for virtio(4 ...
|
|
undeadly.org/cgi?action=article&sid=20231016130614&ref=upstract.com
2023-09-27T00:00:00.0000000
|
|
|
7. |
LibreSSL version 3.9.2 released
|
|
The LibreSSL project has announced the release of [bugfix] version 3.9.2 of the software: We have released LibreSSL 3.9.2, which will be arriving in the LibreSSL directory of your local OpenBSD mirror soon. It includes the following change from LibreSSL 3.9.1: * Bugfixes - OpenBSD 7.5 errata 003.A missing bounds check could lead to a crash due to dereferencing a zero-sized allocation.
|
|
undeadly.org/cgi?action=article;sid=20240512115958
2024-05-12T00:00:00.0000000
|
|
|
8. |
KDE Plasma now linked to packages build on -current
|
|
KDE Plasma is now fully functional on OpenBSD and available via the package system. To install, a simple $ pkg_add kde-plasma is sufficient (also see the twitter post and the final commits here and here).. Congratulations to Rafael Sadowski (rsadowski@) on the completion of this mammoth effort.
|
|
undeadly.org/cgi?action=article;sid=20231227120851
2023-12-26T00:00:00.0000000
|
|
|
9. |
By default, scp(1) now uses SFTP protocol
|
|
scp(1) now uses. SFTP. protocol. Contributed by rueda on 2021-09-09 from the saner-future-than-past dept. Thanks to a commit by Damien Miller ( djm@ ), scp(1) (in -current) now defaults to using the SFTP protocol: usr.bin/ssh : scp.1 scp.c. Use the SFTP protocol by default. The original scp/rcp protocol remains.
|
|
undeadly.org/cgi?action=article;sid=20210910074941
|
|
|
10. |
OpenSSH 9.3/9.3p1 released - undeadly.org
|
|
On 2023-03-15 , the release of version 9.3 of OpenSSH was announced: […] This release fixes a number of security bugs. safety problem. The memory safety problem is not believed to be. security bugs. * ssh-add(1): when adding smartcard keys to ssh-agent(1) with the. per-hop desination constraints (ssh-add -h ...) added in OpenSSH.
|
|
undeadly.org/cgi?action=article;sid=20230316040613
2023-03-15T00:00:00.0000000
|
|
|
11. |
Using a Yubikey as smartcard for SSH public key authentication
|
|
It's in -current only, so it will be available in 6.5, out in two months or so. Right now your options are: build it yourself (easy), port the port to 6.4 or upgrade to a snapshot (which is is 6.5-beta since last week).
|
|
undeadly.org/cgi?action=article;sid=20190302235509
|
|
|
12. |
LibreSSL versions 3.8.3 and 3.9.0 released
|
|
The LibreSSL project has announced the release of version 3.8.3, and (development) version 3.9.0 of the software. The announcement for version 3.8.3 reads: WWe have released LibreSSL 3.8.3, which will be arriving in the LibreSSL directory of your local OpenBSD mirror soon. This is the second stable release for the 3.8.x branch.
|
|
undeadly.org/cgi?action=article;sid=20240310090659
2024-03-10T00:00:00.0000000
|
|
|
13. |
OpenBSD KDE Status Report
|
|
OpenBSD has managed to drop KDE3 and KDE4 in the 6.8 -> 6.9 release cycle. That makes me very happy because it was a big piece of work and long discussions. This of course brings questions: Kde Plasma 5 package missing. After half a year of work, I managed to successfully update the Qt5 stack to the last LTS version 5.15.2. On the whole, the most work was updating QtWebengine.
|
|
undeadly.org/cgi?action=article;sid=20210124113220
|
|
|
14. |
About the OpenBSD Journal
|
|
OpenBSD Journal. Home Archives About Submit Story Create Account Login. About the OpenBSD Journal Purpose. The OpenBSD Journal is a site dedicated to providing news and information of interest to members of the OpenBSD community.. The site is run by a small group of volunteers. Although several OpenBSD developers are registered users of the site, and the site receives frequent contributions ...
|
|
undeadly.org/cgi?action=about
|
|
|
15. |
Index for 2024 - undeadly.org
|
|
Archive Index for. 2024. January. TSO for em(4) committed to -current. OpenBSD workstation hardening tips. DSA removal from OpenSSH. Effortless OpenBSD Audio and Desktop Screen Recording Guide. pinsyscalls(2) working in anger. KMS for Apple silicon machines.
|
|
undeadly.org/cgi?action=archive
|
|
|
16. |
OpenSSH U2F/FIDO support in base - undeadly.org
|
|
support to base and tweaked OpenSSH to use them directly. This means. there will be no additional configuration hoops to jump through to use. U2F/FIDO2 security keys. Hardware backed keys can be generated using " ssh-keygen -t ecdsa-sk". (or "ed25519-sk" if your token supports it). Many tokens require to be. touched/tapped to confirm this step.
|
|
undeadly.org/cgi?action=article;sid=20191115064850
|
|
|
17. |
EuroBSDCon 2023 presentations
|
|
Coimbra! dept. EuroBSDCon 2023 has now ended, and slides for many of the OpenBSD developer presentations are now available in the usual place. Video of the presentations can be expected somewhat later. Slides from the tutorial "Network Management with the OpenBSD Packet Filter Toolset" are also available. (Comments are closed)
|
|
undeadly.org/cgi?action=article;sid=20230919063240
2023-09-19T00:00:00.0000000
|
|
|
18. |
OpenBSD -current drops -beta tag, goes to 7.5
|
|
A clear sign that the OpenBSD 7.5 release cycle is entering the final phases just emerged.. In this commit, Theo de Raadt (deraadt@) changed the version string to 7.5:. From: Theo de Raadt <deraadt cvs ! openbsd ! org> Date: 2024-02-29 17:05:10 CVSROOT: /cvs Module name: src Changes by: deraadt@cvs.openbsd.org 2024/02/29 10:05:10 Modified files: sys/conf : newvers.sh Log message: move from 7.5 ...
|
|
undeadly.org/cgi?action=article;sid=20240301064504
2024-02-29T00:00:00.0000000
|
|
|
19. |
HEADS UP: ntpd changing
|
|
The ntpd options -s and -S are going to be removed soon and at startup. with print: -s option no longer works and will be removed soon. Please reconfigure to use constraints or trusted servers. Probably after 6.7 we'll delete the warning. Maybe for 6.8 we'll remove. -s and -S from getopt, and starting with those options will fail.
|
|
undeadly.org/cgi?action=article;sid=20191111075815
|
|
|
20. |
Getting OpenBSD running on Raspberry Pi 3 - undeadly.org
|
|
On OpenBSD the "c" partition of a hard disk refers to the entire disk, so we use "rsd1c". doas dd bs=1m if=miniroot61.fs of=/dev/rsd1c. Now remove the uSD card from your computer and insert it into the uSD slot on the back of the RPI3 card. connect the serial cable between your computer and the rPI3.
|
|
undeadly.org/cgi?action=article&sid=20170409123528
|
|
|
21. |
Stupid SSH Tricks: ProxyCommand
|
|
Suppose there is an SSH server inside a remote network that does not have its SSH port exposed to the Internet (named "internal.hostname.tld"). If there is an SSH gateway host that you can SSH to (that has the ability to reach "internal"'s SSH port), you can use the netcat command with ProxyCommand in ~/.ssh/config to proxy your SSH session to "internal" through "gateway".
|
|
undeadly.org/cgi?action=article&sid=20070925181947
|
|
|
22. |
wiconfig - simplifies the configuration of wireless interfaces
|
|
Hi Matthias--appreciate you peeking at the script and exposing the issue. For what it's worth, the script doesn't automatically connect to the strongest network it finds until you configure a specific network, so you'd have to tell it to connect to `rm /etc/wiconfig`, which is akin to someone typing ifconfig iwi0 nwid "`rm /etc/wiconfig`".
|
|
undeadly.org/cgi?action=article&sid=20120113172334
|
|
|
|