Security

A Look at BSD Rootkits 98

Posted by Zonk from the under-the-devil's-horns dept.
blackbearnh writes "Windows has a reputation for being easily exploited by rootkits, but just because you're using Linux or BSD doesn't mean you're safe from infection. In an interview on O'Reilly's ONLamp site, Joseph Kong (author of Designing BSD Rootkits ), talks about how to build and defend against Rootkits under BSD. 'I know a lot of people who refer to rootkits and rootkit-detectors as being in a big game of cat and mouse. However, it's really more like follow the leader — with rootkit authors always being the leader. Kind of grim, but that's really how it is. Until someone reveals how a specific (or certain class of) rootkit works, nobody thinks about protecting that part of the system. And when they do, the rootkit authors just find a way around it. This is what I meant earlier when I said rootkit hunting is hard — as you really have to validate the integrity of the entire system.'"
Operating Systems

OpenBSD 4.1 Released 218

Posted by kdawson from the hot-bits dept.
adstro writes to quote from the BSD mailing list: "We are pleased to announce the official release of OpenBSD 4.1. This is our 21st release on CD-ROM (and 22nd via FTP). We remain proud of OpenBSD's record of ten years with only two remote holes in the default install. As in our previous releases, 4.1 provides significant improvements, including new features, in nearly all areas of the system."
Operating Systems

Submission + - OpenBSD 4.1 Released

Submitted by adstro
adstro writes: Fresh off the announce mailing list... "We are pleased to announce the official release of OpenBSD 4.1. This is our 21st release on CD-ROM (and 22nd via FTP). We remain proud of OpenBSD's record of ten years with only two remote holes in the default install. As in our previous releases, 4.1 provides significant improvements, including new features, in nearly all areas of the system."
Wireless Networking

GPL Code Found In OpenBSD Wireless Driver 671

Posted by kdawson from the cross-licensing dept.
NormalVisual writes "The mailing lists were buzzing recently when Michael Buesch, one of the maintainers for the GPL'd bc43xx Broadcom wireless chip driver project, called the OpenBSD folks to task for apparently including code without permission from his project in the OpenBSD bcw project, which aims to provide functionality with Broadcom wireless chips under that OS. It seems that the problem has been resolved for now with the BSD driver author totally giving up on the project and Theo De Raadt taking the position that Buesch's posts on the subject were 'inhuman.'" More commentary from the BSD community is over at undeadly.org.
Operating Systems

Submission + - GPL Code Found In OpenBSD Wireless Driver

Submitted by NormalVisual
NormalVisual writes: The mailing lists were buzzing recently when Michael Buesch, one of the maintainers for the GPL'd bc43xx Broadcom wireless chip driver project, called the OpenBSD folks to task for apparently including code without permission from his project in the OpenBSD bcw project, which aims to provide functionality with Broadcom wireless chips under that OS. It seems that the problem has been resolved for now with the BSD driver author totally giving up on the project and Theo De Raadt taking the position that Buesch's posts on the subject were "inhuman".
GNU is Not Unix

Submission + - OpenBSD in a GPL violation?

Submitted by
Yenya
Yenya writes: "In a message sent to OpenBSD developers as well as the linux-wireless and bcm43xx-devel lists, Michael Buesch, the main developer of the Linux bcm43xx driver for Broadcom WiFi devices, wrote:

[...]We believe that you might have directly copied code out of bcm43xx (licensed under GPL v2), without our explicit permission, into bcw (licensed under BSD license). There are implementation details in bcm43xx that appear exactly the same in bcw. These implementation details clearly don't come from the open specifications at bcm-specs.sipsolutions.net or bcm-v4.sipsolutions.net.
The bcm43xx driver is being developed as a clean room design, based on the reverse-enginered specs, created by another team. As it seems now, the bcw driver in question might just be removed from the OpenBSD source."
Upgrades

Making OpenBSD Binary Patches With Chroot 66

Posted by kdawson from the sometimes-a-cigar-is-just-a-stogie dept.
Lawrence Teo writes "Unlike other operating systems, patches for the OpenBSD base system are distributed as source code patches. These patches are usually applied by compiling and installing them onto the target system. While that upgrade procedure is well documented, it is not suitable for systems that don't have the OpenBSD compiler set installed for whatever reason, such as disk-space constraints. To fill this gap, open source projects like binpatch were started to allow administrators to create binary patches using the BSD make system. This article proposes an alternative method to build binary patches using a chroot environment in an attempt to more closely mirror the instructions given in the OpenBSD patch files."
Upgrades

Submission + - Making OpenBSD Binary Patches with Chroot

Submitted by
Lawrence Teo
Lawrence Teo writes: "Unlike other operating systems, patches for the OpenBSD base system are distributed as source code patches. These patches are usually applied by compiling and installing them onto the target system. While that upgrade procedure is well-documented, it is not always suitable for certain systems that do not have the OpenBSD compiler set installed for various reasons such as disk space constraints. To fill this gap, open source projects like binpatch were started to allow administrators to create binary patches using the BSD make system. This article from Calyptix Security proposes an alternative method to build binary patches using a chroot environment in an attempt to more closely mirror the instructions given in the OpenBSD patch files."
Security

Remote Exploit Discovered for OpenBSD 338

Posted by samzenpus from the patch-it-up dept.
An anonymous reader writes "OpenBSD is known for its security policies, and for its boast of "only one remote exploit in over 10 years". Well, make that two, because Core Security has found a remotely exploitable buffer overflow in the OpenBSD kernel. Upgrade your firewalls as soon as possible."
BSD

Debugging the FreeBSD Kernel Transparently 55

Posted by kdawson from the deep-juju dept.
An anonymous reader writes "To debug the FreeBSD kernel core dump efficiently, it is best to set up a remote debugging session between a development machine and the target machine, and remotely debug the kernel using serial communication. This article shows you how you can debug as many kernel images as you want; it becomes transparent to users once debugging starts, and your system's performance is not affected at all."
X

XFCE Adds Icons, Switches to Thunar in v4.4 83

Posted by timothy from the longtime-companion dept.
b100dian points out yesterday's release of XFCE 4.4, writing "If you have already followed the release candidates, you know that XFCE is really evolving. Besides adding desktop icons, introducing Thunar (in lieu of xffm) and MousePad, applications that are as simple as they are effective, and Terminal, which has built-in support for desktop composition (supported by the window manager out-of-the-box), it also introduced (finally!) a shortcut for the pop-up menu (you can see in the tour that Ctrl-Esc is bound to this menu). Congratulations for the lightest and slickest window manager ever:)" I've been using Thunar a lot lately (mostly under Gnome) because the renaming feature is powerful but reasonably intuitive -- very handy for cleaning up digicam photo names.
The Courts

Dispelling BSD License Misconceptions 202

Posted by ScuttleMonkey from the deflating-the-demons dept.
AlanS2002 writes "Groklaw is hosting an article by Brendan Scott which looks at the misconceptions surrounding the BSD license. From the article: 'We observe that there exists a broad misconception that the BSD permits the licensing of BSD code and modifications of BSD code under closed source licenses. In this paper we put forward an argument to the effect that the terms of the BSD require BSD code and modifications to BSD code to be licensed under the terms of the BSD license. We look at some possible consequences and observe that this licensing requirement could have serious impacts on the unwary.'"
The Courts

Submission + - The BSD license and the law

Submitted by
AlanS2002
AlanS2002 writes: "Groklaw is hosting an article by Brendan Scott which looks at what misconceptions exist in regards to the BSD license, from the article "We observe that there exists a broad misconception that the BSD permits the licensing of BSD code and modifications of BSD code under closed source licenses. In this paper we put forward an argument to the effect that the terms of the BSD require BSD code and modifications to BSD code to be licensed under the terms of the BSD license. We look at some possible consequences and observe that this licensing requirement could have serious impacts on the unwary.""
Operating Systems

FreeBSD 6.2 Released To Mirrors 168

Posted by kdawson from the come-and-get-it dept.
AlanS2002 writes "FreeBSD 6.2 has been released to mirrors. The release notes for your specific platform are also available. FreeBSD is an advanced operating system for x86 compatible (including Pentium and Athlon), amd64 compatible (including Opteron, Athlon64, and EM64T), ARM, IA-64, PC-98, and UltraSPARC architectures. It is derived from BSD, the version of UNIX developed at the University of California, Berkeley. It is developed and maintained by a large team of individuals. Additional platforms are in various stages of development."

Slashdot Top Deals