BSD

Four New Security Advisories Released for NetBSD 18

Posted by michael from the patches-for-everyone dept.
Dan writes "The NetBSD security team has issued Four NetBSD Security Advisories. (1) Format string vulnerability in zlib gzprintf(): a buffer overflow can result in arbitrary code execution. (2) RSA timing attack in OpenSSL code can enable remote recovery of private keys, from a host with low-latency access to the server - such as the local host, or a host on the LAN. (3) Encryption weakness in OpenSSL code enables an attacker to perform crypto operations using server's private keys. Finally (4), faulty length checks in xdrmem_getbytes (within libc) are susceptible to integer overflows that affect memory allocation in their local buffers."
BSD

OpenBSD 3.3 Pre-Orders Available 36

Posted by michael from the be-a-good-consumer dept.
CoryBenny writes "The OpenBSD project has just started taking pre-orders for its 3.3 release. This release contains the new pro-police stack protection and lots of other new features! The OpenBSD Journal are running a story here. Pre-orders can be made here and just check out their cool new t-shirts!!"
Security

OpenBSD Packet Filter Ported To NetBSD, FreeBSD 48

Posted by timothy from the undetectable-natting dept.
honold writes "just read this on deadly.org (from Pyun YongHyeon): "Hello there. I have ported pf to FreeBSD 5.0 Currently it works well, though many nice features of pf not tested. I have ported to make FreeBSD users know there is an another excellent stateful packet filter with BSD license. URL is the following. ftp://ftp.kr.freebsd.org/pub/FreeBSD-kr/misc/pf_fr eebsd_0.3.tar.bz2 Thanks." netbsd has a port as well Where are you, Linux?"
Mozilla

Mozilla 1.3 Port Available For FreeBSD 23

Posted by timothy from the arrr dept.
Dan writes "Joe Marcus Clarke announces the availability of Mozilla 1.3 port for FreeBSD. Windows, MacOSX and Linux versions of Mozilla 1.3 were originally released on March 13. Although the port is scheduled to be committed as part of FreeBSD 4.8 Release, diffs for 1.3 are readily available. Galeon2 diff has also been updated for the Mozilla port. Key enhancements include junk mail filtering and API for rich text editing."
GUI

XFree86 DRI on NetBSD 28

Posted by timothy from the bare-metal dept.
Dan writes "Erik Reid has been working on adding DRI support for NetBSD. Direct Rendering Infrastructure, also known as the DRI Project, is a framework for allowing direct access to graphics hardware in a safe and efficient manner. Some of Erik's work has been imported into XFree86 4.3.0 which is now in xsrc tree. He has subsequently put together a fairly large patch which compiles and works on his NetBSD/i386 1.6P system with a matrox g450. Try out the patch and give him some feedback!"
Announcements

NetBSD Celebrates Its 10th Anniversary 100

Posted by timothy from the chooses-energizer-bunny-as-new-logo dept.
jschauma writes "This week marks the tenth anniversary of the beginning of development of the NetBSD Operating System. The very first commit to the NetBSD source tree (src/Makefile) was by Chris Demetriou on Friday 21 March, 1993. Parties are being held in various cities around the world, see the press release for more details. Happy 10th Birthday, NetBSD!"
BSD

BSD User Groups? 32

Posted by timothy from the quest-for-bugs dept.
*no comment* writes "Deadly.org has an article running that started out as a call for Seattle OpenBSD people to start a local usergroup, but has since turned into a thread for people all over the country looking for people."
BSD

miniBSD - reducing FreeBSD 39

Posted by michael from the size-is-everything dept.
dnaumov writes "miniBSD - reducing FreeBSD is a great guide, which explains in great detail, how you can create a truly small installation of FreeBSD on your system, completely by yourself. There is also the PicoBSD project, which has similar goals, but it's based on an outdated version of FreeBSD and is considered to be way too minimalistic (2 floppies) by many. The guide will walk you through things like creating the directory tree inside a chroot jail, rebuilding the bootloader and everything else needed to create a FreeBSD install that takes just around 20 MB of space."
Announcements

Ever More NetBSD Packages 22

Posted by timothy from the running-away-with-your-hardware dept.
Dan writes "Alistair Crooks says that by his calculations, at the end of January 2003, there were 3461 packages in the NetBSD Packages Collection, up from 3402 the previous month, a rise of 59. The package of the month award goes to rdesktop (pkgsrc/net/rdesktop), nominated by Andrew Brown and Ross Harvey. Rdesktop is a "dependency-free" utility to manage a session on a Windows box in an X window."
Announcements

January-February 2003 FreeBSD Status Report 23

Posted by timothy from the truth-in-advertising dept.
Dan writes "FreeBSD's Scott Long provides the Jan-Feb 2003 bi-monthly FreeBSD status report. Highlights include focus on making 5.0 faster via more fine-grained locking, adding high-end features like memort support for i386. FreeBSD 5.1 is expected to ship in late May, early June, with 5.2 following end of summer with significant speed and stability improvements over 5.0. FreeBSD 4.8 release due shortly adds XFree86 4.3.0 and intel hyperthreading support. Major FreeBSD project statuses are also provided in this report."
BSD

FreeBSD 4.8 Release Delayed Until Mar 24 58

Posted by timothy from the when-it's-ready-it'll-be-ready dept.
Dan writes "FreeBSD Release Engineering Team's Murray Stokley indicates in his email that the latest FreeBSD 4.8 release will need to be postponed until March 24 in order to include suggested fixes related to the XFree86 4.3.0 port. After a complete package rebuild, they plan to release FreeBSD 4.8 RC2 first. Murray requests everyone to continue testing the XFree86 4.3.0 port to ensure a quality release."
Books

OpenBSD Books On The Way 41

Posted by timothy from the tightly-closed-fully-open dept.
*no comment* writes "Well with all the advancements in PF and secure code wouldn't it be nice if someone would write a book on OpenBSD??? Oh wait, someone is. A guy named Jacek Artymiak is doing just that. The OpenBSD Gazetteer is scheduled for release shortly after the release of what may be the best release ever of OpenBSD (IMHO). Vastly improved PF, ALTQ, and BIND 9 is now default, not to mention procop stack protection. Out of the box it's ready to go as a firewalling packet-filtering bandwidth-throttling machine. A thread had started to pick up over at deadly.org."
BSD

Linux JVMs Running Under BSD? 41

Posted by Cliff from the can-you-do-that dept.
Mock asks: "I work for a web services company, and so part of our business process involves setting up web servers for our customers that include a JVM for running our software. Although I've found FreeBSD to be rock-solid for server applications and the quickest to fix security issues, the JVM support has been lagging behind other systems, for some time now. I would like to know if it is wise, or even possible, to run the Linux JVM under BSD? Are there other alternatives I'd be better off considering (besides using a different operating system)?"
Security

Test OpenSSH 3.6 Snapshots 23

Posted by timothy from the good-seats-are-still-available dept.
Dan writes "OpenBSD's Markus Friedl is requesting everyone to test the latest OpenSSH 3.6 nightly snapshots to help ensure a quality final release. The OpenSSH Portability Team takes the pure OpenSSH version and adds portability code so that OpenSSH can run on many other operating systems. Folks, download snapshots for your OS from one of these mirrors."
Java

FreeBSD/Java Native Port Hits Beta 55

Posted by michael from the mmm,-java dept.
drdink writes "The long awaited FreeBSD/Java port has hit beta. The port was committed yesterday afternoon by Alexey Zelkin. 'This is complete and close to production quality native JDK with both working client and server native JVMs. Local micro benchmarks shown very little difference between Linux and FreeBSD JVMs in speed.' And more importantly, 'we are very close to passing of Sun TCK tests. Currently about 20 of >27000 tests are known to be broken (tests were run at -STABLE).'"
The Internet

Better Bandwidth Utilization 196

Posted by michael from the neat-hack dept.
jtorin writes "Daniel Hartmeier (of OpenBSD fame) has written a short but interesting article which explains how to better utilize available bandwidth. In short it gives priority to TCP ACKs over other types of traffic, thereby making it possible to max both upload and download bandwidth simultaenously. Be sure to check ot the nice graphs! Also note the article on OpenBSD Journal. OpenBSD 3.3 beta is now stable enough for daily use, so why not download a snapshot from one of the mirrors and try it out?"

Slashdot Top Deals