Re: Removing FUSE would theoretically make a system more secure?

2018-01-28 Thread who one
Hello, "> And what are you defending against?" there was/is a great guy that investigated the security of the BSDs, reported a few bugs too: https://www.youtube.com/watch?v=rRg2vuwF1hY=youtu.be=1522 that lead to ex.:

Removing FUSE would theoretically make a system more secure?

2018-01-27 Thread who one
Hello, afaik if I would remove the lines that contains "FUSE" and "fuse" from /sys/conf/GENERIC and re-compile the kernel, that would mean, there will be no more FUSE support in my kernel after reboot. If so, would this step help to make my system more secure? Ex.: from a future FUSE related

Re: OpenBSD !HTTPS websites - why?

2018-01-24 Thread who one
Subject: Re: OpenBSD !HTTPS websites - why? > > On 2018-01-15, who one <whoonet...@mail.com> wrote: > > Hello, > > > > http://www.openbsdfoundation.org/ > > http://firmware.openbsd.org/firmware/ > > > > When can we have HTTPS connection on these

Re: Kernel panic with openbsd 6.2

2018-01-24 Thread who one
Could it be related to: https://newsroom.intel.com/news/root-cause-of-reboot-issue-identified-updated-guidance-for-customers-and-partners/ ? > Sent: Friday, January 19, 2018 at 9:50 PM > From: "Mik J" > To: Misc > Subject: Kernel panic with openbsd 6.2 >

Re: History documentation

2018-01-24 Thread who one
Hey, strange, there is 5.3 in https://cloudflare.cdn.openbsd.org/pub/OpenBSD/doc/history/ is this still maintained? Many thanks. > Sent: Saturday, January 20, 2018 at 1:21 PM > From: mazocomp > To: misc@openbsd.org > Subject: History documentation > > Hi! > Both

OpenBSD !HTTPS websites - why?

2018-01-15 Thread who one
Hello, http://www.openbsdfoundation.org/ http://firmware.openbsd.org/firmware/ When can we have HTTPS connection on these websites? What website remains that doesn't have HTTPS yet and related to OpenBSD? Security should be in layers, HTTPS is one additional layer. 70% of the websites in

Re: Community-driven OpenBSD tutorials wiki?

2018-01-05 Thread who one
imho use the official documentation, not separated wiki. this is the right way. > Sent: Friday, January 05, 2018 at 8:32 PM > From: "Karel Gardas" > To: "Andreas Thulin" > Cc: "misc@openbsd.org" > Subject: Re: Community-driven

Re: Kernel memory leaking on Intel CPUs?

2018-01-05 Thread who one
sorry, didn't sent my original mail in plaintext Google came out with a more detailed explanation: https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html Any hardening setting should be enabled? Or code needs to be updated? What is the advise for OpenBSD?

Kernel memory leaking on Intel CPUs?

2018-01-03 Thread who one
https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/ "It is understood the bug is present in modern Intel processors produced in the past decade. It allows normal user programs – from database applications to JavaScript in web browsers – to discern to some extent the layout or contents