OpenBSD Journal

Fresh in from u2k20 is this report from Tracey Emery, who visited the hackathon in Uckermark, Germany after getting invited by Stefan Sperling (stsp@):

The first report from the just concluded u2k20 hackathon comes from Alexandr Nedvedicky (sashan@), who writes:

An update has now been committed to the -stable branch for the latest firefox version, and the package is available for updating!

Tom Smyth writes in about an interview he did with Theo de Raadt in between g2k19, the general hackathon in Ottawa, and BSDCAN 2019:

Next up from the snowy Elk Lakes area with his Hackathon Report is Stefan Sperling (stsp@):

TheInternet Security Research Groupand partnershave announcedthat Claudio Jeker (claudio@) is the thirdRadiant Awardrecipient.From theannouncement:

Alexandr Nedvedicky (sashan@)wrote to tech@regarding a recent significantchange:

Fresh from the just concluded e2k19 hackathon, Claudio Jeker (claudio@) writes in:

Theo de Raadt (deraadt@) hascommittedcode for a new exploit-prevention mechanism:

Florian Obser (florian@) hascommittedcode to giveunwind(8)a flexible approach to resolving strategies:

Next up in our hackathon series from p2k19 is one from Stefan Sperling (stsp@),who writes:

Next up in the series of p2k19 reports is Ken Westerback (krw@), who writes:

Our next p2k19 report comes from Jeremy Evans (jeremy@):

Fresh from the just concluded p2k19 hackathon comes this report from Landry breuil (landry@), who writes:

Fresh from Bucharest is this story from Martin Pieuchot (mpi@) with his experience from p2k19:

Damien Miller (djm@)posted to tech@:

The first p2k19 hackathon report comes from Marc Espie (espie@), who writes:

Theo de Raadt (deraadt@)postedto tech@:

DNSSEC validation has been enabled in the defaultunbound.conf(5)in -current.The relevant commits werefromJob Snijders (job@)

In amessageto the openssh-unix-dev mailing list,Damien Miller (djm@) wrote:

The EuroBSDCon channel at YouTube now has the EuroBSDCon 2019 videos online. One excellent way to start is with Patricia Aas' excellent keynote Embedded Ethics and just go on, but you could also go directly to the OpenBSD related talks:

A new OpenBSD store has been started, for those looking for OpenBSD swag now that the project no longer produces CDs. If you like the artwork that comes with the releases, this is a great way to support it. Quoting the about page:

In amessageto relevant mailing lists,Theo de Raadt (deraadt@) announced that theOpenBSD project's 47 release,OpenBSD 6.6,is now available frommirror sitesworldwide.Rather than reproducing here the full list of new features,we refer readers to the officialOpenBSD 6.6 page,and the detailedchangelog.Notable changes include but are not limited to:

Theo de Raadt (deraadt@)posted to tech@:

In a move bound to be greeted with great enthusiasm, the newly-releasedPatch 012for OpenBSD 6.5 addssysupgrade(8)to the system.Readers are encouraged to show their appreciation bydonating!

Theo de Raadt (deraadt@)has changednewvers.shto6.6:

Support forthe sgi hardware platformhas been discontinued:

EuroBSDcon 2019has concluded, and materials for the OpenBSD-related talks can be found inthe usual place.At the time of writing, official video recordings are not yet available,but the organisers assure us that they will be as soon as the editing is done.

Mark Kettenis (kettenis@) has recentlycommittedchangeswhich restore a certain amount ofstartx(1)/xinit(1)functionality for non-root users.The commit messages explain the situation:Read more…

On hisblog,Gilles Chehade (gilles@) has writtena very detailed article on running anOpenSMTPD mail server.The article begins:

On Monday, Otto (otto@) committed a small but significant change to the Firefox port.

The arm64 architecture hasjoinedamd64 and i386in having -stable package updatesavailable.

In a very welcome development, Solene Rapenne (solene@) announced that binary package updates for the most popular platforms will be available for the latest OpenBSD release.The announcement reads:

Theo de Raadt (deraadt@)has justtagged6.6-beta:

Stefan Sperling (stsp@) is developing a version control system,"Game of Trees".From <https://gameoftrees.org/>:

Martijn van Duren (martijn@) hascommitteda newSimple Network Management Protocol(SNMP) client,snmp(1):

David Gwynne (dlg@) has committed to -current another new network driver -an 802.1Q Two-Port MAC Relay driver,tpmr(4).Themain commit messageexplains the raison d'être:

On hisblog,Joshua Stein (jcs@) has written an[another!]excellent article on an involved investigation into a complex issue:the non-arrival of interrupts for certain touchpad devices.

Claudio Jeker (claudio@) hasannouncedthe release of a new version ofOpenBGPD:

Andrew Fresh (afresh1@)hascommittedOpenBSD::Unveil(3p),a Perl interface tounveil(2):

David Gwynne (dlg@) hascommitted to -currenta dedicatedLink Aggregation (EEE 802.1AX)driver,aggr(4).Themain commit messageexplains the raison d'être:

Ken Westerback wrote in with some good news:

Ted Unangst (tedu@)postedto the tech@mailing list regardingrecent changes to environment handling indoas(in -current):

Damien Miller (djm@) has just committed a new feature for SSH that should help protect against all the various memory side channel attacks that have surfaced recently.

Otto Moerbeek (otto@) has writtenan updateon his recent ntpd(8) work to the tech@ mailinglist:

Job Snijders (job@) hasimportedKristaps Dzonsons'rpki-client(discussed previously)into the tree:

Videos of presentations atBSDCan 2019are now (becoming) available from theYouTube channel.Links to the videos can now also be found in the usual place.

Our next hackathon report comes from Stefan Sperling (stsp@):

Florian Obser (florian@) hascommittedthe changes required to moveacme-client(1)in -current to theRFC 8555protocol used by theLet's Encrypt v02 API:

IntroductionThere have been some recent securityinnovationspreviously unreported here: