h0r14 is a user on bsd.network. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

💡 rename "man.openbsd.org" to "woman.openbsd.org"

WoMan = Wonderful Manual

h0r14 boosted

Colin Percival tweeted a short thread on the “Lazy FPU” vulnerability that was just disclosed (CVE-2018-3665).

Colin credits his learning about it to Theo de Raadt. Took him ~5 hours to come up with working exploit code.

twitter.com/cperciva/status/10

More info on seclists.org and discussion on lobste.rs.

seclists.org/oss-sec/2018/q2/1

lobste.rs/s/qotnxq/confirmed_s

I'm looking for free hosts, with slave zones and DNSSEC support.

Which are your favorites?

> If you disable the redesign, you unflag your comments from being shown in the main threads of popular posts (from others browsing with the redesign) reddit.com/r/Economics/comment

redesigns auto-playing video ads redditblog.com/2018/06/12/nati

h0r14 boosted

@vi I wish OpenBSD would buy the little project DragonFly is

h0r14 boosted
Mastodon is being removed from the FreeBSD ports tree. Too damn hard to package. Not worth the effort.

Bravo, good job. :bravo:

https://svnweb.freebsd.org/ports?view=revision&revision=470717

🔑 5.1 adds support for Web Key Directory openkeychain.org

Hopefully, K-9 Mail will support Web Key Service soon!

h0r14 boosted

Apparently there are rumors that FPU state is affected by Spectre as well (h/t @mlarkin on the birdsite):

“post-Spectre rumors suggest that the %cr0 TS flag might not block speculation, permitting leaking of information about FPU state (AES keys?) across protection boundaries.”

marc.info/?l=openbsd-cvs&m=152

h0r14 boosted

The PINE64 people have come up with the necessary accessories to the Rock64Pro board which includes a PCI-e slot:

* RockPro64: pine64.org/?page_id=61454
* PCI-e to dual SATA II: pine64.org/?product=rockpro64-
* Prototype NAS case: forum.pine64.org/showthread.ph

things are starting to warm up dramatically. My plan remains to migrate to a ClusterBoard-based design with SOPINE modules "per-machine" but now the NAS feeding them NFS need not be a Synology…

h0r14 boosted
h0r14 boosted

so, OpenBSD folks...my i386 machine has a crooked setting somewhere and my console (X is fine) doesn't use the full screen. wsconsctl (manually or conf) doesn't allow to set display.width or height because: read only

help?!

h0r14 boosted

Happy to share my first technical post on my : Setup a Radicale server on greinbold.github.io/setup-radi Comments & Boost are welcome! 👍

h0r14 boosted

Nice: DNS-Lookup from inside Firefox:

URL "about:networking" , select "DNS Lookup" and fire a DNS query

Tested with firefox 60

Also works with DNS-over-HTTPS (Doh)
gist.github.com/bagder/5e29101

h0r14 boosted

Parmi les nouveautés d'Unbound 1.7.1, l'ajout de nouvelles pour authentifier un résolveur accessible via DNS-sur-TLS

« Can set tls authentication with forward-addr: IP#tls.auth.name And put the public cert bundle in tls-cert-bundle: "ca-bundle.pem". such as forward-addr: 9.9.9.9@853#dns.quad9.net or 1.1.1.1@853#cloudflare-dns.com »

unbound.net/download.html