@kellerfuchs @phessler Or maybe just not moving the goal posts on disclosure? #OpenBSD *did* honor the original embargo. They did not agree to another extension. Even so, they left out parts of the patch that explained it until the extension ended.
Good grief. Internal team at Microsoft has been trying to port OpenSSH to Windows for over two years now.
This latest 2 year stretch is their third attempt. 3RD ATTEMPT.
No wonder none of the alternatives out there seem able to pull it off reliably. Mind you, the alternatives all seem to be able to do the server listening to a port part well enough. It's verifying passwords and/or UX they can't manage.
Still, Microsoft is two years into their third attempt to do this.
Geebuz.
Trolling Conglomerates #MPEGLA and #Fortress Are Plotting to Start Another Round of #Patent Shakedowns http://techrights.org/2017/09/30/mpegla-and-fortress/
vm-bhyve makes configuring #bhyve so much easier.
The #FreeBSD #Mastodon package has been upgraded to version 1.6.0. Installing and upgrading will be easier now.
Installing: http://ftfl.ca/blog/2017-05-23-mastodon-freebsd.html
Upgrading: http://ftfl.ca/blog/2017-05-27-mastodon-freebsd-upgrade.html
Thank you to @saper for his upstream node patches and general node support.
Thank you to all the Mastodon developers.
Ok. Apparently this broke longer ago than I thought. esp_* used to set klen and key on the crypto op structure, but now apparently expects those to be saved as part of the crypto session structure (which is device specific, and apparently does not always save these). Not sure if the fix is to have hifn preserve or to have esp repopulate them 🤔
Ok #freebsd peeps. Before i go diving toooo deep into kernel code, can anyone think why the hifn crypto card stopped working in 11.1? The driver itself hasn't changed in forever, the specific failure I am seeing cannot be hardware related (its a software assert)
Mastodon 1.6.0 running on #freebsd 😈upgrade ✅
I love the way we've architected HardenedBSD's features.
I just set up GitLab in a jail. GitLab causes ruby23 to mprotect(RW -> RX), which is a violation of the strict default W^X policy in HardenedBSD.
So, I set up secadm in the jail to disable mprotect restrictions just for ruby23 in the jail. GitLab is happy again.
ruby23 in the host is still fully restricted.
This is exactly how exploit mitigations should be developed. We've done a spectacular job in #HardenedBSD.
When you think you have seen the worst of systemd, the ugly beats just raises its head and bite you…
FreeBSD enthusiast and regular contributor. I have opinions!