OpenBSD Journal

OpenBSD Journal

OpenBSD 6.4 Released

Contributed by rueda on from the When-I'm-6.4 dept.

The release of OpenBSD 6.4 has been announced:

We are pleased to announce the official release of OpenBSD 6.4.
This is our 45th release.  We remain proud of OpenBSD's record of more
than twenty years with only two remote holes in the default install.
[…]

Rather than reproducing the full list of new features here, we refer readers to the official OpenBSD 6.4 page.

Selected highlights include:

  • Support has been added for qcow2 images and external snapshots in vmm(4)/vmd(8).
  • "join" has been added for Wi-Fi networks.
  • Security enhancements include unveil(2), MAP_STACK, and RETGUARD. Meltdown/Spectre mitigations have been extended further, and SMT is disabled by default.
  • rad(8) has replaced rtadvd(8).
  • bgpd(8) has undergone numerous improvements, including the addition of support for BGP Origin Validation (RFC 6811).
  • smtpd.conf(5) uses a new, more flexible grammar.
  • For the first time, there are more than 10,000 (binary) packages (for amd64 and i386).

Those upgrading from version 6.3 should read the upgrade guide.

Readers are encouraged to show their appreciation in the conventional manner.

n2k18 Hackathon report: Ken Westerback (krw@) on disklabel(8) work, dhclient(8) progress

Contributed by Peter N. M. Hansteen on from the hackers on a train dept.

Fresh from the just concluded n2k18 hackathon comes this report from Ken Westerback (krw@), who writes:

How to travel from Dresden to Usti nad Labem for free!

No drama flying to Dresden, from which a train would take me to n2k18's home in Usti nad Labem. Other than being puzzled that it costs less to fly YYZ -> FRA -> DRS than it costs to fly YYZ -> FRA.

Read more…

OpenBSD Foundation gets first 2018 Iridium donation!

Contributed by rueda on from the tremor-of-77 dept.

Ken Westerback (krw@ when wearing his dev hat) wrote in with some great news:

The OpenBSD Foundation is excited to announce that it has received the first 2018 Iridium level donation. This year the first $100K+ donation came from Handshake (https://www.handshake.org).

We thank Handshake for its very generous support! This donation will no doubt fund many exciting projects in the coming years.

Congratulations to all concerned.

Of course, this donation does not preclude others from contributing ;-)

Disable SMT/Hyperthreading in all Intel BIOSes

Contributed by rueda on from the all-your-benchmarks-are-belong-to-us dept.

In a message to tech@, Theo de Raadt (deraadt@) gives an update on the state-of-play regarding processor vulnerabilities:

Two recently disclosed hardware bugs affected Intel cpus:

	 - TLBleed

	 - T1TF (the name "Foreshadow" refers to 1 of 3 aspects of this
	         bug, more aspects are surely on the way)

Solving these bugs requires new cpu microcode, a coding workaround,
*AND* the disabling of SMT / Hyperthreading.

Read more…

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

OpenBSD Errata

OpenBSD 6.4

None yet

Unofficial RSS feed of OpenBSD errata

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve: RSS feed

Options are available.

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]