OpenBSD Foundation on HTTPS

Hello, Just noticed that the: http://www.openbsdfoundation.org/ doesn't supports HTTPS, while in 2017 Dec, ~70% of the websites does: https://letsencrypt.org/stats/#percent-pageloads Can we have HTTPS for the OpenBSD Foundation? Which Official OpenBSD related domain hasn't got HTTPS yet? I whish

Best testcases for SSHD when fuzzing with afl?

Hello, So far I found these testcases for the input directory of afl when I am fuzzing the OpenBSD OpenSSHD: git clone https://github.com/openbsd/src.git find src/ -type f | grep -i regress | grep -i ssh | grep -i testdata But the question: does anybody have more? Or better? Any idea how to

Disabling message CRCs in SSHD

Based on the: http://www.vegardno.net/2017/03/fuzzing-openssh-daemon-using-afl.html I tried to search for these code pieces (I know he was using openbsd-compat and not the original OpenSSH code) but didn't found it, didn't even find similar for disabling message CRCs: in the (

Re: /etc/netstart - order of operations (lo vs physical interfaces)

who is "jmc" in the header? can someone cc him? or the people who are doing the doc? :) Many thanks. > Sent: Friday, April 27, 2018 at 3:28 PM > From: "Amelia A Lewis" > To: misc@openbsd.org > Subject: Re: /etc/netstart - order of operations (lo vs physical interfaces) >

Re: Disabling message CRCs in SSHD

Thanks. Appreciate it!! :) > Sent: Saturday, April 28, 2018 at 11:11 AM > From: "Darren Tucker" <dtuc...@dtucker.net> > To: "Hess THR" <hessnovth...@mail.com> > Cc: "OpenBSD Misc List" <misc@openbsd.org> > Subject: Re: Disabli

Re: OpenBSD Foundation on HTTPS

this? we live in a perfect world without bad people! yay pink ponies! troll off > Sent: Tuesday, February 06, 2018 at 12:23 PM > From: "Ian Sutton" <i...@openbsd.org> > To: "Hess THR" <hessnovth...@mail.com> > Cc: "misc@OpenBSD.org" <misc@openb

Re: OpenBSD Foundation on HTTPS

n the base? > Sent: Friday, December 15, 2017 at 12:11 PM > From: "Vivek Vinod" <vi...@icanconnect.com> > To: "Hess THR" <hessnovth...@mail.com> > Subject: Re: OpenBSD Foundation on HTTPS > > 1) Why do you want https support? > 2) Most websi

OpenBSD Memory protection mechanisms that are not enabled by default?

Hello! Besides the "S" option for malloc.conf and increasing kern.stackgap_random and removing the wxallowed mount option, what else memory-related hardening mechanism are in OpenBSD that can be turned on and it is not enabled by default? Even options would be useful if we have to re-compile

Re: OpenBSD Foundation on HTTPS

Hello, https://security.googleblog.com/2018/02/a-secure-web-is-here-to-stay.html "Beginning in July 2018 with the release of Chrome 68, Chrome will mark all HTTP sites as “not secure”." so: http://www.openbsdfoundation.org/ http://firmware.openbsd.org/firmware/ any mirror that still uses

noob question: driver separation?

Hello, are there any (at least on plan or theoretical level) that drivers will be/are/would be separated? ex.: - touchpad drivers shouldn't have to do anything with network access - wireless drivers shouldn't be able to touch anything from ex.: /home - graphics/wireless/sound/disk/etc.

Re: noob question: driver separation?

diot ideas, but maybe 1 great, who knows. > Sent: Monday, February 19, 2018 at 8:58 PM > From: "Hess THR" <hessnovth...@mail.com> > To: misc@OpenBSD.org > Subject: Re: noob question: driver separation? > > Hello, > > nono, just in theory.. or it doesn't worth it

Re: noob question: driver separation?

Hello, nono, just in theory.. or it doesn't worth it? > Sent: Monday, February 19, 2018 at 11:05 AM > From: "Boudewijn Dijkstra" <mailinglists.boudew...@indes.com> > To: misc@openbsd.org > Subject: Re: noob question: driver separation? > > Op Fri, 16 Feb 20

How to disable privilege separation mode in SSHD? - for testing

Hello, What is the method to do a "UsePrivilegeSeaparation=no" on source code level? Is it the following?: sed -i 's/^int use_privsep = -1;$/int use_privsep = 0;/g' /home/user/src/usr.bin/ssh/sshd.c or am I wrong? only for testing purposes! cannot check childs. Many thanks.

door opening sensor HW for OpenBSD?

Hello, I have an OpenBSD amd64 notebook running 24h next to a door, ~50cm. Can you please recommend any hardware, that I could plug in to the notebook and though I could send a warning mail when the door was moved (open/closed). I can do the scripting part, but I just don't know where to

Re: door opening sensor HW for OpenBSD?

Thanks :) > Sent: Saturday, March 24, 2018 at 11:50 PM > From: Robert <info...@die-optimisten.net> > To: misc@openbsd.org > Subject: Re: door opening sensor HW for OpenBSD? > > On Sat, 24 Mar 2018 22:32:02 +0100 > "Hess THR" <hessnovth...@mail.com> wrote

UNIX Stackexchange - Community Promotion Ads - 2018

Hello, already got 2 upvotes, 4 more needed to be on the main page: https://unix.meta.stackexchange.com/a/4801/277781 If anyone wants to upvote it :)

https://www.openbsd.org/ftp.html

Hello, I can see that ftp.fsn.hu is available over HTTPS, but isn't listed in the HTTPS part of the ftp.html How can we reach the maintainer of the ftp.html? Thanks.

noip freezes my 6.0

Hello, pkg_add ...pub/OpenBSD/6.0/packages/amd64/no-ip-2.1.9p4.tgz enable it with rcctl .. ok, it works! heading for a sleep. but in the morning: the OpenBSD router was not responding. ok, omg, power off/on. don't know what happened, nothing in the logs. ok, next day, the same, during the

sudoedit for doas?

Hello, hmm, I went through the relevant man pages: https://man.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man1/doas.1 https://man.openbsd.org/doas.conf.5 but I cannot find a sudoedit alternative for the "doas". Are there any? Many thanks.