Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?

Submission Summary: 0 pending, 31 declined, 19 accepted (50 total, 38.00% accepted)

Slashdot Deals: Cyber Monday Sale Extended! Courses ranging from coding to project management - all eLearning deals 20% off with coupon code "CYBERMONDAY20". ×

Submission + - Coming Soon to OpenBSD/amd64: A Native Hypervisor (undeadly.org)

badger.foo writes: Earlier today, Mike Larkin (mlarkin@) published a teaser for something he's been working on for a while. Then a little later in the day, an announcement appeared on tech@:

TL;DR — a native hypervisor is coming. stay tuned.

For the last few months, I've been working on a hypervisor for OpenBSD. The idea for this started a few years ago, and after playing around with it from time to time, things really started to take shape around the time of the Brisbane hackathon earlier this year. As development accelerated, the OpenBSD Foundation generously offered to fund the project so that I could focus on it in more earnest.

See the full story over on the OpenBSD Journal news site.

Submission + - The OpenSSH Bug That Wasn't (blogspot.ca)

badger.foo writes: Get your facts straight before reporting, is the main takeaway from Peter Hansteen's latest piece, The OpenSSH Bug That Wasn't. OpenSSH servers that are set up to use PAM for authentication and with a very specific (non-default on OpenBSD and most other places) setup are in fact vulnerable, and fixing the configuration is trivial.

Submission + - Solaris 11.3 Onwards Will Feature OpenBSD's PF Packet Filter (blogspot.no)

badger.foo writes: In his most recent article, Solaris Admins: For A Glimpse Of Your Networking Future, Install OpenBSD, Peter Hansteen points to leaked information (via a patch to a mailing list) that Oracle's Solaris from version 11.3 (expected this year) onwards is joining the ranks of OSes using the OpenBSD PF firewall. From version 12 onwards, PF will be the only packet filter, replacing the legacy IPF system. Which was the software PF was designed to replace, due to performance and rather nasty licensing reasons.

Submission + - The Password? You Changed It, Right? (blogspot.no)

badger.foo writes: Right at this moment, there's a swarm of little password guessing robots trying for your router's admin accounts. Do yourself a favor and do some logs checking right away. Some European ISPs have been forced to do some ad-hoc reconfigs to end user equipment recently, so do check you equipment. And of course, this turned up in my lap while I was on my way back from a most enjoyable passwords conference — traces of what appears to be a distributed password guessing efforts. Read on for data and the beginnings of analysis.

Submission + - Password Gropers Hit Peak Stupid, Take the Spamtrap Bait (blogspot.ca) 1

badger.foo writes: Peter Hansteen reports that a new distributed and slow-moving password guessing effort is underway, much like the earlier reports, but this time with a twist: The users they are trying to access do not exist. Instead, they're take from the bsdly.net spamtrap address list, where all listed email addresses are guaranteed to be invalid in their listed domains. There is a tiny chance that this is an elaborate prank or joke, but it's more likely that via excessive automation, the password gropers have finally Peak Stupid.

Submission + - Have you changed your password lately? Does it even matter? (blogspot.no)

badger.foo writes: Do frequent password changes actually matter security wise? Or do they just make us pick the minimum complexity password the system will accept? I want your opinion. In his latest piece, Peter Hansteen wants your opinion on common security enforcement practices and even offers a poll about enforced password changes. Let loose the debate rage!

Submission + - What is it that you want to learn about OpenBSD 5.5? (blogspot.ca)

badger.foo writes: In the upcoming OpenBSD 5.5 release there will be a number of improvements, including a whole new traffic shaping system, automatic installer improvements and the switch to 64-bit time_t.

But OpenBSD has been the source of lots of innovation and improvements in BSD and Unix in general over the years, and in preparation for his two BSDCan tutorials, Peter Hansteen asks, What do you want to learn about OpenBSD 5.5 (and possibly future directions)?

Submission + - Yes, You Too Can Be An Evil Network Overlord - On The Cheap With OpenBSD, pflow (blogspot.ca)

badger.foo writes: Have you ever wanted to know what's really going on in your network? Some free tools with surprising origins can help you to an almost frightening degree. Peter Hansteen shares some monitoring insights, anecdotes and practical advice in his latest column on how to really know your network. All of it with free software, of course.

Submission + - Effective Spam and Malware Countermeasures Using Free Tools (blogspot.ca)

badger.foo writes: In the seemingly never-ending fight against spam and malware, are the free tools really better? In a recent article titled Effective Spam and Malware Countermeasures — Network Noise Reduction Using Free Tools, Peter Hansteen offers a strong argument that free tools, with emphasis on the ones supplied by OpenBSD, are indeed better performing and significantly more cost effective than commercial counterparts. The article also has a history of malware and spam with chuckleworthy anecdotes.

Submission + - The UK "Porn" Filter Blocks Kids' Access To Tech, Civil Liberties Websites (blogspot.ca)

badger.foo writes: It fell to the UK Tories to actually implement the Nanny State. Too bad Nanny Tory does not want kinds to read up on tech web sites such as slashdot.org, or civil liberties ones such as the EFF or Amnesty International. Read on for a small sample of what the filter blocks, from a blocked-by-default tech writer.

Submission + - Modern Microsoft Word Does Not Reliably Read Earlier Formats: A 1989 Print Test (blogspot.ca)

badger.foo writes: Prompted by a fabulous rant by Charlie Stross named Why Microsoft Word must Die, Peter Hansteen dug out from his archives the simplest possible 1989-vintage Microsoft Word .DOC document, and has the data to prove that newer versions or Microsoft Word do in fact not reliably read files from earlier versions. Case in point: An ASCII table print test generated and saved as .DOC in 1989.

Submission + - The Hail Mary Cloud And The Lessons Learned (blogspot.ca)

badger.foo writes: Against ridiculous odds and even after gaining some media focus, the botnet dubbed The Hail Mary Cloud apparently succeeded in staying under the radar and kept compromising Linux machines for several years. This article sums up the known facts about the botnet and suggests some practical measures to keep your servers safe.

Submission + - The Term Hackathon Has Been Trademarked In Germany (blogspot.ca)

badger.foo writes: Trademarking somebody else's idea is behind their back is both a bad idea and highly immoral. If it wasn't your idea, you don't trademark and you don't patent. It really is that simple, people.

The news that the term hackathon had been trademarked in Germany reached me late last week, via this thread on openbsd-misc. The ideas sounded pretty ludicrous ... (see the rest at http://bsdly.blogspot.ca/2013/05/the-term-hackathon-has-been-trademarked.html)

Submission + - Keep smiling, waste spammers' time with OpenBSD tools (blogspot.ca)

badger.foo writes: When you're in the business of building the networks people need and the services they need to run on them, you may also be running a mail service. If you do, you will sooner or later need to deal with spam. This article is about how to waste spammers' time and have a good time while doing it, using the free tools OpenBSD offers to do your greylisting and greytrapping before any content filtering. It's fun and easy.

If it's worth hacking on well, it's worth hacking on for money.