OpenBSD Journal
Contributed by rueda on from the Immutable synthetics dept.
We recently
reported
that Theo de Raadt (derradt@)
was scheduled to present at
CanSecWest.
That's now happened, and
slides
of Theo's presentation,
Synthetic Memory Protections,
can be found in the
usual place.
Video is
available
on the bird site.
Contributed by rueda on from the rebounded routing dept.
Version 7.9 of OpenBGPD has been released:
We have released OpenBGPD 7.9, which will be arriving in the
OpenBGPD directory of your local OpenBSD mirror soon.
This release includes the following changes to the previous release:
* Include OpenBSD 7.2 errata 023:
Incorrect length checks allow an out-of-bounds read in bgpd(8).
Contributed by rueda on from the bonus-gifts dept.
In a late-stage addition prior to the release of
OpenBSD 7.3,
Mark Kettenis (kettenis@) has
committed
[more] aggressive randomisation of the stack location
for all 64-bit architectures except alpha:
Contributed by Peter N. M. Hansteen on from the routed and keyed in dept.
The announcement reads,
Subject: rpki-client 8.3 released From: Sebastian Benoit <benno () openbsd ! org> Date: 2023-03-19 12:46:27 rpki-client 8.3 has just been released and will be available in the rpki-client directory of any OpenBSD mirror soon. rpki-client is a FREE, easy-to-use implementation of the Resource Public Key Infrastructure (RPKI) for Relying Parties (RP) to facilitate validation of BGP announcements. The program queries the global RPKI repository system and validates untrusted network inputs. The program outputs validated ROA payloads, BGPsec Router keys, and ASPA payloads in configuration formats suitable for OpenBGPD and BIRD, and supports emitting CSV and JSON for consumption by other routing stacks.
Contributed by rueda on from the here-we-go-again dept.
With the following
commit,
Theo de Raadt (deraadt@) moved -current to version 7.3:
CVSROOT: /cvs Module name: src Changes by: deraadt@cvs.openbsd.org 2023/03/17 16:52:22 Modified files: sys/conf : newvers.sh Log message: remove -beta tag
For those unfamiliar with the process: this is not the 7.3 release, but is part of the standard build-up to the release.
Contributed by grey on from the preventing leaks isn't just for plumbing dept.
Contributed by Peter N. M. Hansteen on from the libretto warmup dept.
openbsd-announce and other lists, Brent Cook (bcook@) announced the release of LibreSSL 3.7.1, with numerous improvements.
It is worth noting that this is the final version to be released before the upcoming OpenBSD 7.3 release.
The announcement reads,
Subject: LibreSSL 3.7.1 Released From: Brent Cook <busterb () gmail ! com> We have released LibreSSL 3.7.1, which will be arriving in the LibreSSL directory of your local OpenBSD mirror soon. This is the final development release for the 3.7.x branch, and we appreciate additional testing and feedback before the stable release coming soon with OpenBSD 7.3
Contributed by rueda on from the hot on the heels of π day dept.
On , the release of version 9.3 of OpenSSH was announced:
Contributed by grey on from the the Best Coast's best compsec conference. dept.
Donate to OpenBSD
We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.
OpenBSD 7.3
None yet
Users wishing RSS/RDF summary files of OpenBSD Journal
can retrieve:
Options are available.
Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]