OpenBSD Journal
Contributed by Paul 'WEiRD' de Weerd on from the public service announcement dept.
After our article on TLS 1.3 server support in LibreSSL, we have decided to upgrade the machine running the undeadly website to newer LibreSSL.
Since earlier today the site supports TLS 1.3. Undeadly still gets an A+ on Qualys' SSL Labs.
(Comments are closed)
Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]
By Will Backman (bitgeist) bitgeist@yahoo.com on http://bsdtalk.blogspot.com
How complex were the changes? Easy process?
Comments
By Paul 'WEiRD' de Weerd (weerd) weerd@weirdnet.nl on https://undeadly.org
No configuration changes were necessary (at all). All that was done was upgrade to a more recent snapshot:
[weerd@undeadly] $ sysctl kern.version kern.version=OpenBSD 6.7-current (GENERIC) #182: Wed May 13 18:14:01 MDT 2020 deraadt@amd64.openbsd.org:/usr/src/sys/arch/amd64/compile/GENERICNote that Undeadly runs mostly with base software (httpd(8) with all the libressl bits from the OS and acme-client(1)), the undeadly code itself works with kcgi.