21 November 2014

Puffy

Undeadly :: BSDNow Episode 064: Rump Kernels Revisited

On this week's episode, the intrepid hosts talk about the import of SipHash to the OpenBSD kernel, Theo de Raadt (deraadt@)'s talk (slides) about arc4random, an interview with Justin Cormack of NetBSD, and videos from MeetBSD coming online.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

20 November 2014

Puffy

Undeadly :: Call for Testing: 64-bit PCI Bridge Support

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Mark Kettenis (kettenis@) wrote a message to tech@ asking for volunteers to test a patch to squash a few bugs in the PCI code:

Hi All,

dlg@ managed to get access to a machine that actually uses 64-bit PCI
addresses behind a bridge.  This triggered some bugs in the so far
untested code.  Quelle suprprise!

I'd appreciate it if some people can verify that this doesn't break
other systems.  In particular I'm looking for testers on server-type
machines, both i386 and amd64.

Thanks,

Mark

If you have such a machine, you should make sure that this doesn't introduce any issues for you. As always, quality releases depend on widespread testing!

18 November 2014

Puffy

Undeadly :: Perl Updated to 5.20.1

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Andrew Fresh (afresh1@) has updated Perl in base to 5.20.1:
CVSROOT:	/cvs
Module name:	src
Changes by:	afresh1@cvs.openbsd.org	2014/11/17 13:53:21

Log message:
    Import perl-5.20.1

Additionally, he wrote in to give us a quick intro to what he thinks are some of the more interesting changes to be found: Read more...

14 November 2014

Puffy

Undeadly :: BSDNow Episode 063: A Man's man(1)

This week, on BSDNow, the hosts talk about the recent MeetBSD, mention chatter on the Tor mailing lists about adding more OpenBSD nodes, interview with Kristaps Džonsons, the original author of mandoc(1), and all the odds and ends in the BSD universe.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

10 November 2014

Puffy

Undeadly :: USB 3.0 Enabled in -current

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

For those of you who missed it on Friday, Martin Pieuchot (mpi@) enabled USB 3.0 support in OpenBSD:

CVSROOT:	/cvs
Module name:	src
Changes by:	mpi@cvs.openbsd.org	2014/11/07 09:44:18

Modified files:
	sys/arch/i386/conf: GENERIC 
	sys/arch/amd64/conf: GENERIC 

Log message:
Enable xhci(4).  Most of the features are here, USB 1.x devices only work
if they are connected to the root hub and isochronous transfers are not
supported for the moment.

Let me know if your controller/device do not work.  In this case attach a
dmesg of a kernel build with XHCI_DEBUG.

ok deraadt@

Not everyone missed it, of course, with problem reports and fixes being seen over the weekend.

For those of you who'd been looking forward to using those blue USB ports of yours, now's the time to plug in as many 3.0 devices as you can find!

Edit: Of course, just about the time we publish this story, USB1.x devices are now supported on a USB3.x controller.

07 November 2014

Puffy

Undeadly :: Improving bcd(6)

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Ted Unangst (tedu@) has written a blog post about fixing bugs in bcd(6), keeping with the recent trend of finding and fixing ancient bugs:

Owing to its BSD heritage, OpenBSD ships with a few games installed in /usr/games. Quite a few, in fact. There are more programs in games (46) than in /bin (43). Some of them aren’t really games, but more like toys, but nevertheless there they are. They aren’t exactly the focus of OpenBSD, but they’re still part of the system and do get the occasional maintenance update.

One such game is bcd, which prints out punch card looking diagrams of input strings. I made a few improvements to it recently.

As they say, read the whole thing.

02 November 2014

Puffy

GCU OpenBSD :: Pruitt Igoe

Derrière ce nom cryptique se cache une métaphore.. ainsi la construction de l’Operating System next-génération-qui-fait-son-bonhomme-de-chemin-tranquillement se poursuit, quand d’autres courent à leur destruction (suivez mon regard).

Aujourd’hui donc est disponible OpenBSD 5.6, avec son thème graphique & lyrique basé sur Apocalypse Now.

La grande nouveauté est l’apparition de LibreSSL, le fork d’OpenSSL. Enormément de commits ont eu lieu pour simplifier, sécuriser et améliorer cette librairie cruciale pour la confidentialité de nos échanges.

Les sets contenant la configuration dans /etc ont été remaniés, et les exemples sont maintenant pour la plupart dans /etc/examples/.

IPv6 est désactivé par défaut sur toutes les interfaces (pas d’IP link-local), comme IPv4 – il faut l’activer explicitement, ca évite les surprises.

Un serveur httpd(8) basique écrit à partir du code de relayd(8) est disponible en tech preview. Il remplacera nginx dans le basesystem en 5.7, son code étant maintenant considéré trop complexe.

OpenSMTPD remplace sendmail comme serveur de mail par défaut.

Un peu de nettoyage dans l’arbre… Kerberos (trop complexe), le support bluetooth (non maintenu), ALTQ (remplacé par HFSC), Apache(remplacé par nginx/httpd), ppp(8), pppoe(8) (utilisez pppd(8)), lynx(1), uucpd(8) et les TCP Wrappers ont été supprimés.

Beaucoup de ciphers/MAC obsolètes/insécures ont été désactivées par défaut dans OpenSSH. Ne vous étonnez pas de ne plus arriver à vous connecter depuis un vieux OpenSSH 4…

Cette nouvelle version peut être commandée sur OpenBSD store (uk), ou récupérée sur un des miroirs le plus proche de chez vous tel que ftp.fr.

Par gaston

01 November 2014

Puffy

Undeadly :: OpenBSD 5.6 Released

November 1st 2014, Calgary, AB, CA and elsewhere -

With reports coming in of pre-ordered CD sets arriving all over the world, the OpenBSD project today released OpenBSD 5.6, the project's 36th release on CD-ROM (37th downloadable).
Read more...

Undeadly :: libressl Renamed to libtls

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

EDIT: as pointed out both in the comments below and privately, this renames not the installed SSL library, but the new "ressl" API library. Our apologies for the confusion.

Joel Sing (jsing@) has renamed the the installed LibreSSL library:

CVSROOT:	/cvs
Module name:	src
Changes by:	jsing@cvs.openbsd.org	2014/10/31 07:46:17

Modified files:
	include        : Makefile 
	lib            : Makefile 
	share/mk       : bsd.README bsd.prog.mk 
Added files:
	lib/libtls     : Makefile shlib_version tls.c tls.h tls_client.c 
	                 tls_config.c tls_init.3 tls_internal.h 
	                 tls_server.c tls_util.c tls_verify.c 
Removed files:
	lib/libressl   : Makefile ressl.c ressl.h ressl_client.c 
	                 ressl_config.c ressl_init.3 ressl_internal.h 
	                 ressl_server.c ressl_util.c ressl_verify.c 
	                 shlib_version 

Log message:
Rename libressl to libtls to avoid confusion and to make it easier to
distinguish between LibreSSL (the project) and libressl (the library).

Discussed with many

31 October 2014

Puffy

Undeadly :: BSDNow Episode 061: IPSECond Wind

On this week's episode of BSDNow, the hosts talk about brave missionaries to the Linux continent, the ongoing auction for the first signed copy of The Book of PF, 3rd Edition, the imminent release of OpenBSD 5.6, and interview John-Marc Gurney about updating the FreeBSD IPSEC stack, wherein he shares his thoughts regarding cross-pollination between the BSD IPSEC stacks.

All that and other odds and ends in the week's BSD news.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

28 October 2014

Puffy

Undeadly :: OpenBSD 5.6 pre-orders arriving

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Fred Crowson wrote in to say:
Hi misc@

Just received my 5.6 disks in the post!

Thanks to all the developers for your continued work in making another 
great OpenBSD release.

Cheers

Fred
--
5.6 in the wild: https://twitter.com/fcbsd/status/525618236667482112

Reports are coming in from all over the world from people getting their CDs early, the obvious benefit to pre-ordering. If you haven't ordered yet, you can still do so over at http://www.openbsdeurope.com/, or if you don't need physical media (you'll miss out on the stickers), you can simply make a donation.

Please also consider getting your employer to order sets or make a donation if you use OpenBSD in your organisation.

26 October 2014

Puffy

Undeadly :: The Book of PF 3rd ed Is Out, Win First Signed Copy by Donating to OpenBSD!

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } As you may have heard elsewhere, The Book of PF is out in its third edition. Now author Peter Hansteen has received his author copies, and he has teamed up with the OpenBSD Foundation to auction off the first ever signed copy of the book.

More details are to be found over at Peter's blog, but the main item is that the first physical copy of the new edition ever touched by and subsequently signed by its author is up on an ebay auction where all proceeds will go to the OpenBSD Foundation. For unsuccessful bidders, Peter urges them to donate the amount of their highest bid to the OpenBSD Foundation.

Read more...

19 October 2014

Puffy

Undeadly :: OpenBSD Passes 300,000 Commits

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Ingo Schwarze (schwarze@) writes in with news that the OpenBSD source tree has seen its 300,000th commit. Ingo writes:

According to http://www.oxide.org/cvs/OpenBSD.html OpenBSD just passed its three hundred thousandth commit.

Read more...

18 October 2014

Puffy

Undeadly :: BSDNow Episode 059: BSDって聞いたことある?

On this week's episode, Kris and Allan interview Hiroki Sato, talk about BSD-related talks at XDC 2014, and all the odds and ends in this week's BSD news.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

Undeadly :: SSL v3

Google's security team released the details of a practical attack on the SSL v3.0 protocol. Commits resolving the issue for relayd, LibreSSL, and httpd (by essentially deprecating the old protocol even further) have been committed.

15 October 2014

Puffy

Undeadly :: ingo@ incorporates man into mandoc

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }
I have integrated the traditional man(1) program - yes, the one to display manual pages - into mandoc(1). For apropos(1), whatis(1), and mandoc(1), the unified interface described below has now been enabled in OpenBSD-current since August 26, 2014.
Read more...

14 October 2014

Puffy

Undeadly :: A Sneak Peek at the Upcoming OpenBSD 5.6 Release

As we get closer to release day (coming on or around November 1st), OpenBSD developer Lawrence Teo (lteo@) writes a nice blog entry about the upcoming 5.6 release.

http://lteo.net/blog/2014/10/01/a-sneak-peek-at-the-upcoming-openbsd-5-dot-6-release/

12 October 2014

Puffy

Undeadly :: LibreSSL 2.1.0 Released

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Bob Beck (beck@) has announced the release of LibreSSL 2.1.0:

We have released LibreSSL 2.1.0 - which should be arriving in the
LIbreSSL directory of an OpenBSD mirror near you very soon.

This release continues on with further work from after OpenBSD 5.6
code freeze. Our intention is to finalize LibreSSL 2.1 with OpenBSD
5.7

As noted before, we welcome feedback from the broader community.

Enjoy,

-Bob

10 October 2014

Puffy

Undeadly :: BSDNow Episode 058: Behind the Masq

In this week's BSD omnibus podcast, the hosts discuss the OpenBSD 5.6 release, talk about the reasons behind portroach, and present a tutorial for blocking web ads on your gateway with Dnsmasq (net/dnsmasq).

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

02 October 2014

Puffy

Undeadly :: Package building without sudo (part 2)

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Christian Weisgerber (naddy@) writes in:
As of September 23, all OpenBSD ports can be individually built without sudo(1).
Read more...

01 October 2014

Puffy

Undeadly :: OpenBSD 5.6 Pre-Orders Available

OpenBSD 5.6 CD sets are available for pre-order

Be the first kid on your block to serve up man pages in a brand-spanking-new httpd(8)!

Undeadly :: EuroBSDCon 2014 Papers Online

25 September 2014

Puffy

Undeadly :: EuroBSDCon 2014 Opens

EuroBSDCon 2014 opened today in Sofia. The schedule includes two days of tutorials, two days of presentations, and plenty of time to exchange ideas and insults.

A live stream of the conference is available.

22 September 2014

Puffy

Undeadly :: Faster snapshots packages synch

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Marc Espie (espie@) wrote to tech@:
I've just committed changes to pkg_create that will help mirrors synch by using much less bandwidth.
Read more...

19 September 2014

Puffy

Undeadly :: BSDNow Episode 055: The Promised WLAN

In this episode of BSDNow, Kris and Allan go over the week's BSD odds and ends, including mention of an interesting article about using a Linux rescue image to bootstrap a headless OpenBSD installation on remote machines. Headlining is an interview with the FreeBSD wireless stack maintainer, Adrian Chadd.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

16 September 2014

Puffy

Undeadly :: Heads Up: Sendmail Removed from Base

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

In the first of several commits, Matthieu Herrb (matthieu@) has removed sendmail from the release:

CVSROOT:	/cvs
Module name:	src
Changes by:	matthieu@cvs.openbsd.org	2014/09/15 16:25:57

Modified files:
	gnu/usr.sbin   : Makefile 

Log message:
Unlink sendmail from the build. ok krw@ ajacoutot@

Users of OpenSMTPd can rejoice in having no work to do; others will have to install sendmail from packages.

12 September 2014

Puffy

Undeadly :: GSoC 2014: Systemd replacement utilities (systembsd)

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Ian Kremlin wrote in with this report on the GSoC he was involved in:
This summer I, along with my mentors Landry Breuil and Antoine Jacoutot, worked on systemd shim-like replacements for four D-Bus daemons systemd provides, namely hostnamed, localed, timedated, and logind.
Read more...

05 September 2014

Puffy

Undeadly :: 2Q Buffer Cache in OpenBSD

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Ted Unangst (tedu@) wrote a blog post about his replacement of the simple LRU buffer cache algorithm with a 2Q-ish one:

Since the dawn of time, the OpenBSD buffer cache replacement algorithm has been LRU. It’s not always ideal, but it often comes close enough and it’s simple enough to implement that it’s remained the tried and true classic for a long time. I just changed the algorithm to one modelled somewhat after the 2Q algorithm by Johnson and Shasha. (PDF)
Read more...

04 September 2014

Puffy

Undeadly :: Persist tmux environment across system restarts

Nagy Gábor writes in with a tip:
Tmux is great, except when you have to restart the computer. You lose all the running programs, working directories, pane layouts etc. There are helpful management tools out there, but they require initial configuration and continuous updates as your workflow evolves or you start new projects.
Read more...

29 August 2014

Puffy

Undeadly :: BSDNow Episode 052: Reverse Takeover

This week on BSDNow, in addition to the week's BSD-flavored odds and ends, Kris and Allan headline with an interview with Shawn Webb about ASLR and PIE on FreeBSD.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

27 August 2014

Puffy

Undeadly :: Heads Up: Nginx Removed From Base

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } With this commit, Robert Nagy (robert@) removed nginx(8) from base:
Log message:
remove nginx from the base system in favor of OpenBSD's own httpd(8)
Read more...

23 August 2014

Puffy

Undeadly :: Heads Up: BIND Disabled in Base

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

After many years of being the default DNS server, BIND has been disabled in OpenBSD base:

Read more...

22 August 2014

Puffy

Undeadly :: BSDNow Episode 051: Engineering Nginx

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

This week the hosts set up SSL on nginx and an interview about the FreeBSD community and utilisation in the commercial server space, along with the week's BSD-world odds and ends.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

Undeadly :: syslogd(8) Now IPv6-Capable

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

With the penultimate in a series of commits, Alexander Bluhm (bluhm@) has added IPv6 support to syslogd(8):

CVSROOT:	/cvs
Module name:	src
Changes by:	bluhm@cvs.openbsd.org	2014/08/21 11:00:34

Modified files:
	usr.sbin/syslogd: privsep.c syslogd.c 

Log message:
Send and receive UDP syslog packets on the IPv6 socket.
OK henning@

20 August 2014

Puffy

Undeadly :: Google offers 5 EuroBSDCon 2014 travel grants for female computer scientists

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Via the EuroBSDCon 2014 organizers comes the news that Google will be sponsoring 5 female computer scientists to attend the EuroBSDCon 2014 conference. The announcement follows:

Google EMEA Women in Tech Conference and Travel grants for female computer scientists

As part of Google's ongoing commitment to encourage women to excel in computing and technology, Google is pleased to offer Women in Tech Travel and Conference Grants to attend the EuroBSDcon 2014 conference.

5 grants, are offered which include:

  • Free registration for the conference
  • Up to 1000 EUR towards travel costs (to be paid after the conference)

Read more...

19 August 2014

Puffy

Undeadly :: Heads up: rcctl(8) the rc.conf.local management tool landing in base soon

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Antoine Jacoutot (ajacoutot@) has just committed committed a tool for managing rc.conf.local(8), in order to make it simpler for automated management systems such as Puppet or Ansible to interface with the operating system configuration:

CVSROOT:	/cvs
Module name:	src
Changes by:	ajacoutot@cvs.openbsd.org	2014/08/19 08:08:20

Added files:
	usr.sbin/rcctl : Makefile rcctl.8 rcctl.sh 

Log message:
Introduce rcctl(8), a simple utility for maintaining rc.conf.local(8).

# rcctl
usage: rcctl enable|disable|status|action [service [flags [...]]]

Lots of man page improvement from the usual suspects (jmc@ and schwarze@)
not hooked up yet but committing now so work can continue in-tree
agreed by several

18 August 2014

Puffy

Undeadly :: Early bird rates for EuroBSDCon 2014 have been extended

As seen on Twitter, the Early Bird rates have been extended until August 25th. As you can tell, there are quite a few delightful talks and tutorials scheduled. Some of your trustworthy Undeadly Editors have already registered, come join us!

EuroBSDCon 2014 Registration

15 August 2014

Puffy

Undeadly :: BSDNow Episode 050: VPN, My Dear Watson

This week the fellas dish interview Robert Watson of FreeBSD, and present a tutorial for getting OpenVPN working, in addition to the weekly odds and ends of the BSD world.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

10 August 2014

Puffy

Undeadly :: mandoc 1.13.1 Released

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Ingo Schwarze writes in with the news of a new and better mandoc release:

after more than seven months of active development including two hackathons, i have just released mandoc = mdocml 1.13.1 on <http://mdocml.bsd.lv/>.

Read more...

Undeadly :: g2k14: Antoine Jacoutot on GNOME, rc(8) and /etc cleanup

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Antoine Jacoutot writes in with this report from the g2k14 hackathon:

Finally a hackathon where I did not have to spend 90% of my time under ports/x11/gnome \o/ (but of course, I had to cd into it anyway...). Besides some regular tweaks and updates in there, I worked on the gnome.port.mk MODULE to make it more generic and allow non-GNOME ports to benefit from some of its goodies (like xdg triggers and such) without ending up with unneeded build dependencies or things being only relevant to GNOME.
Read more...

08 August 2014

Puffy

Undeadly :: LibreSSL 2.0.5 released

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Brent Cook (bcook@) has announced the release of LibreSSL 2.0.5:

We have released LibreSSL 2.0.5, which should be arriving in the LibreSSL directory of an OpenBSD mirror near you.

This version forward-ports security fixes from OpenSSL 1.0.1i, including fixes for the following CVEs:

CVE-2014-3506
CVE-2014-3507
CVE-2014-3508 (partially vulnerable)
CVE-2014-3509
CVE-2014-3510
CVE-2014-3511

LibreSSL 2.0.4 was not found vulnerable to the following CVEs:

CVE-2014-5139
CVE-2014-3512
CVE-2014-3505

We welcome feedback and support from the community as we continue to work on LibreSSL.

Thank you,

Brent

Undeadly :: BSDNow Episode 049: Episode 049: The PC-BSD Tour

On this week's episode of BSDNow, the gang takes us on a whirlwind tour of the GUI tools for PC-BSD, in addition to the usual weekly roundup of rumours and hearsay!

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

07 August 2014

Puffy

Undeadly :: phessler: emergency g2k14 hackathon

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Longtime Undeadly editor, Peter Hessler (phessler@) writes in:
With the g2k14 hackathon starting on tuesday, I saw the commits and chatter from the hackathon. sadly, my original plan was to stay at work mostly since I am out of vacation days for the year. Thursday morning, I see that not only were a few more hackathon shirts being printed for attendees that wanted more, but also last-minute flights to Ljubljana were actually affordable. I nudged claudio@, who works at the desk next to me "hey, want to go to the hackathon for the weekend?"
Read more...

05 August 2014

Puffy

Undeadly :: OpenBSD product distribution will move

After many years of faithfully serving the OpenBSD community, Austin Hook (austin@) will be retiring from mailing you your delicious Puffy-flavored merch. As such, the old stock (CDs, tshirts, baby mulchers) will become unavailable. Order now before they go extinct!

03 August 2014

Puffy

Undeadly :: g2k14: Christian Weisgerber on Package Building without sudo

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Christian Weisgerber wrote in with this report from g2k14:

I updated the gettext port, of course. What'd you think I'd do at a hackathon?

The most interesting thing I worked on at g2k14 started out with a question: Why exactly do we run the fake step as root? (Hint: FreeBSD's corresponding stage infrastructure does not.)

Read more...

01 August 2014

Puffy

Undeadly :: BSDNow Episode 048: Liberating SSL

On this week's episode, the BSDNow crew gabs about the BSD tribe, continues the recursive Undeadly mentions, interviews LibreSSL portable maintainer Brent Cook (bcook@), and Bob Beck (beck@) writes in to let the hosts know about arc4random-related FreeBSD porting issues.

[ Video | HD Video | MP3 Audio | OGG Audio | Torrent ]

31 July 2014

Puffy

Undeadly :: Using ifstated to monitor links and dynamically adjust PF config on event

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Sevan Janiyan writes:

It’s possible to misuse NAT to load balance outbound traffic across multiple internet connections from different service providers,see the Load Balance Outgoing Traffic section of PF FAQ.

The shortfall with this configuration is when implemented alongside unstable links, forwarding will continue to be attempted over the links which are down, this will cause issues such as long hangs for users behind the NAT while connections time out. To mitigate this, ifstated can be used to smooth things over.

Read the rest at geeklan.co.uk, Sevan's blog site.

29 July 2014

Puffy

Undeadly :: Call for Testers: radeondrm(4) updates

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

Jonathan Gray (jsg@) posted a call for testers for radeondrm(4) updates:

I'm looking for a few people to test some additional radeondrm fixes from the recently released Linux 3.8.13.27: https://lkml.org/lkml/2014/7/25/621

In particular on newer asics with displayport/eDP as I can only test on r100/lvds at the moment.

Undeadly :: g2k14: Ted Unangst on the Art of the Tedu

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; } Ted Unangst (tedu@) talks about teduing a goodly amount of code, among other things:

Despite being in the same room as many other LibreSSL developers for the first time (since the beginning of LibreSSL at least), I didn't do too much work on that front. I did remove the compression feature (as made famous by the CRIME attack; not all protocols or deployments are vulnerable, but we're also aiming for a simpler feature set overall) and made a few other cleanups. While it's very helpful to be in the same room as other hackers to exchange ideas, having everyone pounding on the source at the same time is a little troublesome so I elected to stay out of the way.

Read more...

28 July 2014

Puffy

Undeadly :: Ingo Schwarze Interviewed on BSDTalk

td>p,td>ul,td>blockquote,td>font {margin-left:0.5ex;} a:visited {color:#303030!important;} p {margin-top:1ex;margin-bottom:0;} blockquote>p:first-child {margin-top:0;} blockquote>p:last-child {margin-bottom:0;} blockquote { background-color:#e0e0e0; padding:0.5ex 0.5ex 0.5ex 0.5ex; margin:0 0 0 3ex !important; } p+ul,p>ul {margin:0.5ex 0 0 0;} pre {margin:0;} tt {background-color:#f0f0f0; padding:0px; font-weight:500;} .bqcode { background-color: #ffffff; border:1px solid #999; padding: 0px; padding-left: 1em; }

The latest episode of BSDTalk involves our very own Ingo Schwarze (schwarze@):

bsdtalk243 - mandoc with Ingo Schwarze

Interview about mandoc with Ingo Schwarze. The project webpage describes mandoc as "a suite of tools compiling mdoc, the roff macro language of choice for BSD manual pages, and man, the predominant historical language for UNIX manuals."

Recorded at BSDCan 2014.