Issue 31
Published August 05, 2020

There have been new Erratas (ximcp and dix) for OpenBSD last week and OPNsense release. Then we take a look at the rest of BSD world with latest news and tutorials.

Releases

OPNsense® 20.7 “Legendary Lion” released: For five and a half years, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, HardenedBSD security, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. 20.7, nicknamed “Legendary Lion”, is a major operating system jump forward on a sustainable firewall experience. This release adds DHCPv6 multi-WAN, custom error pages for the web proxy, Suricata 5, HardenedBSD 12.1, netstat tree view, basic firewall API support (via plugin) and extended live log filtering amongst others.

BSDSec

OpenBSD Errata: July 31st, 2020 (ximcp): Errata patches for libX11 have been released for OpenBSD 6.6 and 6.7. Malformed messages can cause heap corruption in the X Input Method client implementation in libX11. Binary updates for the amd64, i386, and arm64 platforms are available via the syspatch utility.

OpenBSD Errata: July 31st, 2020 (dix): Errata patches for Xorg have been released for OpenBSD 6.6 and 6.7. Pixmaps inside the xserver were an info leak. Binary updates for the amd64, i386, and arm64 platforms are available via the syspatch utility.

As always, it’s worth following BSDSec. RSS feed and Twitter account available.

News

FreeBSD Foundation got a new look: The Foundation team is excited to announce a new look for heir website. They hope you’ll find the new site easier to read and navigate. They’ve also added a FreeBSD Resources section that includes links to how-to guides and other community training resources.They’re also unveiling a 20th Anniversary logo.

libressl updated in DragonFly: In Daniel Fojt’s ongoing series of third-party software upgrades, he’s moved libreSSL in DragonFly up a major version, from 2.9.1 to 3.1.3. This includes TLS 1.3, among other features.

DragonFlyBSD Pulls In AMD Temperature Driver, SMN Support From FreeBSD: DragonFlyBSD has been generally working out well for AMD Zen systems sans a few motherboard specific woes, but now is getting even better thanks to importing some new drivers from FreeBSD. Most exciting is the amdtemp driver now being imported from FreeBSD to DragonFlyBSD. This driver allows for temperature monitoring on AMD Family 0Fh, 10h, 11h, 12h, 14h, 15h, 16h, and 17h processors. The AMD Family 17h support covers Zen 1 as well as Zen 2, including the likes of Threadripper and EPYC. Also imported from FreeBSD is the amdsmn driver. This driver is for the AMD System Management Network (SMN) support on AMD Zen systems.

Tutorials

Testing Linux Steam Proton on GhostBSD (FreeBSD) with BSD linuxulator: BSD user tries running windows games with linux steam. There’s audio but obs cannot record it. 64 bit games are running nicely with performance similar to linux. Due to obs, there’s fps drop.

FreeBSD Virtual Data Centre with Potluck: DevOps & Infrastructure as Code: One of the main complaints about FreeBSD is the lack of Docker and Kubernetes, which in turn is seen as inability to use FreeBSD as a platform for bleeding edge concepts like micro services and scale-out container orchestration. This article series shows that FreeBSD also contains (more than) a complete selection of tools required to run a Virtual Datacenter (vDC). Beside showcasing the power of FreeBSD as a platform, this article series should give an idea of the concept of Potluck. While admittedly it is still in very early stages, it has the potential to be to complex container images and sets of different interdependent container images (like nomad, consul and traefik) what the FreeBSD package collection is to individual applications: Depending on your network speed, setting up the core configuration of consul, nomad and traefik in step 3 with the Potluck images will only take a few minutes.

Updating pkg when pkg is broken: Have you ever broke a pkg on DragonFly machine? Well, if you do, you can use pkg-static to fix it.

More

As always, there are more sources of BSD goodness. Latest BSD Now talks about Emulex: The Cheapest 10gbe for Your Homelab, In Search of 2.11BSD, as released, Fakecracker: NetBSD as a Function Based MicroVM, First powerpc64 snapshots available for OpenBSD, OPNsense 20.1.8 released, and more.

The Valuable News weekly series is dedicated to providing summary about news, articles and other interesting stuff mostly but not always related to the UNIX or BSD systems. The latest is from 2020-08-03.

In Other BSDs for 2020/08/01 is out, too.

Did we miss anything?

This newsletter is made from your content on DiscoverBSD and BSDSec. Submit the stuff we missed so it can appear next time.

Do you know anyone who would like this newsletter? Consider forwarding and tell them to subscribe.

Thanks for reading and see you next week! Stay home and stay safe!

Become a Sponsor! Become a Patron!

We won't spam you. Unsubscribe any time.