All the latest news and tutorials from the BSD world.
NetBSD Security Advisory 2022-002: Coredump credential reference count leak: The coredump handling code always leaks a reference to the dumped processes cred structure. An attacker may cause the reference count to overflow, leading to a use after free (UAF).
As always, it's worth following BSDSec. RSS feed and Twitter account available.
HardenedBSD September 2022 Status Report: HardenedBSD changes in src, ports + upcoming plans.
SCALE19X Conference Report: On July 28th, FreeBSD community and headed to Los Angeles, California for SCALE19X. Being the first in-person conference that the Foundation had attended since the pandemic, all were excited to advocate for FreeBSD face-to-face.
Meet the 2022 FreeBSD Google Summer of Code Students: Christos Margiolis: The FreeBSD Project is proud to have participated in the Google Summer of Code program since its inception in 2005. At the completion of the 2022 season, the Foundation asked a few of our GSoC students to share more about themselves and their experience working with the Project.
OpenBSD.app - search packages: Default search queries OpenBSD 7.2 package sets.
Meet the 2022 FreeBSD Google Summer of Code Students: Jake Freeland: The FreeBSD Project is proud to have participated in the Google Summer of Code program since its inception in 2005. At the completion of the 2022 season, the Foundation asked a few of our GSoC students to share more about themselves and their experience working with the Project.
BSD Now 474: EuroBSDcon 2022 : Deploying FreeBSD on Oracle Cloud, A Tale of 300,000 Imaginary Friends, EuroBSDcon 2022 recap, OpenBSD Mastery: Filesystems” Status Report, OpenBGPD 7.6 Released, immutable userland mappings, Portable OpenSSH commits now SSH-signed, and more.
Announcing the pkgsrc 2022Q3 branch: pkgsrc is available with more than 26,500 packages, and supports 24 platforms, of which 10 are currently known to be working. In total, 167 packages were added, 80 packages were removed, and 1931 package updates (to 1390 unique packages) were processed since the pkgsrc-2022Q2 release.
FreeBSD: Jstats – a resource monitor for Jails: Jstats is a resource monitoring script for Jails. It simply lists RAM, CPU and disk space usage of the jails running in the host system.
OpenBSD: Manage DNS, DNSSEC (to automate TLSA records): How to manage DNSSEC, TLSA records, to validate TLS certificates on OpenBSD with nsd, ldns and others…
Red Hat’s OpenShift vs FreeBSD Jails: Kubernetes has become a hot technology for managing clusters of applications, but it is famously difficult technology to use and understand. RedShift is an Enterprise cloud platform for running and managing Kubes without tying you into a single platform. How does RedShift relate to the technologies that FreeBSD provides and can we create similar environments on top of FreeBSD?
Writing FreeBSD Kernel Modules in Rust: At present all major operating system kernels are written in C/C++, languages which provide no or minimal assistance in avoiding common security problems. Modern languages such as Rust provide better security guarantees by default and prevent many of the common classes of memory safety security bugs. In this post we will take a brief look at existing community efforts towards this goal and build a basic “Hello World” proof-of-concept kernel module for FreeBSD.
Did we miss anything?
This newsletter is made from your content on DiscoverBSD and BSDSec. Submit the stuff we missed so it can appear next time.
Do you have an OSS BSD-related project that you would like to showcase in BSD Weekly? Reply to sender and we can showcase you as a sponsor of an issue (for free).
Do you know anyone who would like this newsletter? Consider forwarding and tell them to subscribe.
Thanks for reading and see you next week! Stay safe!