OpenBSD Journal

OpenBSD Journal

OpenBSD crossed 400,000 commits

Contributed by rueda on from the that's what we call commitment dept.

Theo de Raadt (deraadt@) posted to tech@:

Sometime in the last week OpenBSD crossed 400,000 commits (*) upon all
our repositories since starting at 1995/10/18 08:37:01 Canada/Mountain.
That's a lot of commits by a lot of amazing people.

(*) by one measure.  Since the repository is so large and old, there are
a variety of quirks including ChangeLog missing entries and branches not
converable to other repo forms, so measuring is hard.  If you think
you've got a great way of measuring, don't be so sure of yourself -- you
may have overcounted or undercounted.

Congratulations and thanks to all who contributed!

OpenBSD moving towards 6.6

Contributed by rueda on from the getting-closer dept.

Theo de Raadt (deraadt@) has changed newvers.sh to 6.6:

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2019/10/01 11:19:04

Modified files:
	sys/conf       : newvers.sh 

Log message:
stop this -current stuff

When updating packages on -current, pkg_add -D snap is now needed.

Theo also rolled the errata pages [which is why Undeadly's Errata listing is empty at the time of writing].

This serves as another excellent reminder to test both base and ports, and to report problems.

Support for the sgi platform discontinued

Contributed by rueda on from the ravages-of-time dept.

Support for the sgi hardware platform has been discontinued:

CVSROOT:	/cvs
Module name:	www
Changes by:	deraadt@cvs.openbsd.org	2019/09/25 05:28:00

Modified files:
	.              : plat.html 

Log message:
discontinue sgi.

(On the o350 (where builds happened for years) there is a dma / disk
controller bug which was never fully diagnosed and fixed in the driver.
it locks up the vfs layer after a while, and sometimes causes quite
catastrophic filesystem layout.  I have tired of repairing these situation.
The octeon platform is becoming more viable as a mips64 canarie, so we'll
carry on using it)

Setting up a mail server with OpenSMTPD, Dovecot and Rspamd

Contributed by rueda on from the Puffy delivers dept.

On his blog, Gilles Chehade (gilles@) has written a very detailed article on running an OpenSMTPD mail server.

The article begins:

TL;DR:
- NO TL;DR: this time, I spent hours writing, you should spend minutes reading.
- OK... I explain in WAY TOO MUCH details how to setup a mail server

So if you have an interest in running your own mail service, you now have an excellent reference as a starting point.

DoH disabled by default in Firefox

Contributed by Paul 'WEiRD' de Weerd on from the put-your-names-in-the-crypt dept.

On Monday, Otto (otto@) committed a small but significant change to the Firefox port.

Date: Mon, 9 Sep 2019 12:50:35 -0600 (MDT)
From: Otto Moerbeek <otto@[elided]>
To: ports-changes@openbsd.org
Subject: CVS: cvs.openbsd.org: ports
Sender: owner-ports-changes@openbsd.org

CVSROOT:        /cvs
Module name:    ports
Changes by:     otto@cvs.openbsd.org    2019/09/09 12:50:35

Modified files:
        www/mozilla-firefox: Makefile
        www/mozilla-firefox/files: all-openbsd.js

Log message:
Disable DoH by default.  While encrypting DNS might be a good thing,
sending all DNS traffic to Cloudflare by default is not a good idea.
Applications should respect OS configured settings.
The DoH settings still can be overriden if needed. ok landry@ job@

If you are running your own DNS over HTTPS (DoH) server, you may want to point Firefox at it using the network.trr.uri configuration option in about:config, and overriding the network.trr.mode setting from Otto's change to 3. For more details on how to configure Firefox's use of DoH, please see their wiki.

Donate!

Donate to OpenBSD

Features

We are constantly on the lookout for stories of how you put OpenBSD to work. Please submit any informative articles on how OpenBSD is helping your company.

OpenBSD Errata

OpenBSD 6.6

None yet

Unofficial RSS feed of OpenBSD errata

XML/RSS/RDF

Users wishing RSS/RDF summary files of OpenBSD Journal can retrieve: RSS feed

Options are available.

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]