OPNsense security update is here, you can apply for BSDCan travel grant, and more as always.
Releases
OPNsense 23.1.1 released: Apart from security updates for operating system and third party software this mainly fixes issues with the initial 23.1 release. IPsec and Unbound components in particular receive a number of improvements being the more prominent areas of work for this series. Unbound also gained a SafeSearch option and the new reporting database CPU usage should be much lower and easier to use.
BSDSec
FreeBSD Security Advisory FreeBSD-SA-23:03.openssl: Multiple vulnerabilities in OpenSSL: CVE-2023-0286, CVE-2023-0215, CVE-2022-4450, CVE-2022-4304.
FreeBSD Security Advisory FreeBSD-SA-23:02.openssh: A flaw in the backwards-compatibility key exchange route allows a pointer to be freed twice. A remote, unauthenticated attacker may be able to cause a denial of service, or possibly remote code execution. Note that FreeBSD 12.3 and FreeBSD 13.1 include older versions of OpenSSH, and are not affected. FreeBSD 13.2-BETA1 and later include the fix.
As always, it’s worth following BSDSec. RSS feed and Twitter account available.
News
Low-latency game streaming on NetBSD (Video): Moonlight has been ported to NetBSD, which means NetBSD machines can now connect to Sunshine servers for low-latency gaming and remote desktop applications.
BSD Now 494: Unix workstation extinction : Mass extinction of UNIX workstations, Determine Who Can Log In to an SSH Server, Factors When Considering FreeBSD vs. Linux Packages, A Visual Guide to SSH Tunnels, Harvesting the Noise While it’s Fresh, Bastille - The Jail Manager on FreeBSD, and more.
BSDCan 2023 Travel Grant Application Now Open: The FreeBSD Foundation can help you attend BSDCan through our travel grant program. Travel grants are available to FreeBSD developers and advocates who need assistance with travel expenses for attending conferences related to FreeBSD development. BSDCan 2023 applications are due April 5, 2023.
Tutorials
Privilege drop, privilege separation, and restricted-service operating mode in OpenBSD: Detailed article about privilege drop, privilege separation, and restricted-service operating mode in OpenBSD.
Nextcloud + OpenBSD = Love: The author maintain the nextcloud port since ever, and using since then, to be honest it’s pretty cool and handy, despite all the php slowness and other flavors the system has and the OpenBSD’s issues as client and server, it works really really well in every way he use it…
Cloning a System With Ansible: A small Python script for FreeBSD and OpenBSD to generate an Ansible playbook out of an existing system, so that setup can be duplicated elsewhere.
Did we miss anything?
This newsletter is made from your content on DiscoverBSD and BSDSec. Submit the stuff we missed so it can appear next time.
Do you have an OSS BSD-related project that you would like to showcase in BSD Weekly? Reply to sender and we can showcase you as a sponsor of an issue (for free).
Do you know anyone who would like this newsletter? Consider forwarding and tell them to subscribe.
Thanks for reading and see you next week! Stay safe!