Skip to content

Piero Bosio Social Web Site Personale Logo Fediverso

Social Forum federato con il resto del mondo. Non contano le istanze, contano le persone
  1. Home
  2. Categories
  3. Uncategorized
  4. If you're running #Hollo, please update to version 0.6.12 as soon as possible.

If you're running #Hollo, please update to version 0.6.12 as soon as possible.

Uncategorized
5 2 17
Log in to reply

Feed RSS
If you're running #Hollo, please update to version 0.6.12 as soon as possible.

Gli ultimi otto messaggi ricevuti dalla Federazione
@pierobosio@soc.bosio.info
Post suggeriti
  • soatok@furry.engineerundefined

    Moving Beyond the NPM elliptic Package

    Uncategorized npm crypto cryptography elliptic security infosec cve mitigation
    1
    0 Votes
    1 Posts
    10 Views
    soatok@furry.engineerundefined
    Moving Beyond the NPM elliptic PackageIf you're in a hurry, head on over to soatok/elliptic-to-noble and follow the instructions in the README in order to remove the elliptic package from your project and all dependencies in node_modules. Art: CMYKat Why replace the elliptic package? Yesterday, the Trail of Bits blog published a post about finding cryptographic bugs in the elliptic library (a Javascript package on NPM) by using the Wycheproof.http://soatok.blog/2025/11/19/moving-beyond-the-npm-elliptic-package/#npm #crypto #cryptography #elliptic #security #infosec #cve #mitigation #appsec #javascript #js #npm #npmsecurity #npmpackages
  • r1w1s1@snac.bsd.cafeundefined

    🧱 First real sandboxing arrives on #NetBSD

    Uncategorized netbsd bubblewrap bsd security
    1
    0 Votes
    1 Posts
    7 Views
    r1w1s1@snac.bsd.cafeundefined
    🧱 First real sandboxing arrives on #NetBSD!A GSoC 2025 project brings Linux-style namespaces (UTS + mount) to the kernel, paving the way for real isolation.https://blog.netbsd.org/tnf/entry/gsoc2025_bubblewrap_sandboxing#Bubblewrap #BSD #Security
  • teajaygrey@snac.bsd.cafeundefined

    I submitted a Pull Request to update MacPorts' OpenSSH to 10.1p1 here:https://github.com/macports/macports-ports/pull/28592GitHub Continuous Integration checks passed OK

    Uncategorized openssh macports secureshell macos encryption security infosec
    1
    0 Votes
    1 Posts
    16 Views
    teajaygrey@snac.bsd.cafeundefined
    I submitted a Pull Request to update MacPorts' OpenSSH to 10.1p1 here:https://github.com/macports/macports-ports/pull/28592GitHub Continuous Integration checks passed OK!Alas, the agent.patch that iamGavinJ had created, doesn't apply cleanly, in large part because ssh-agent.c has been reworked significantly with this release.Subsequently, I closed this previous Pull Request: https://github.com/macports/macports-ports/pull/28592 not because I didn't want to restore that functionality to launchd, but because it will require more effort than I can give such things at this time.But, check out these improvements to ssh-agent from the OpenSSH 10.1 release notes:"ssh-agent(1)](https://man.openbsd.org/ssh-agent.1), sshd(8): move agent listener sockets from /tmp tounder ~/.ssh/agent for both ssh-agent(1) and forwarded socketsin sshd(8).This ensures processes that have restricted filesystem accessthat includes /tmp do not ambiently have the ability to use keysin an agent.Moving the default directory has the consequence that the OS willno longer clean up stale agent sockets, so ssh-agent now gainsthis ability.To support $HOME on NFS, the socket path includes a truncatedhash of the hostname. ssh-agent will, by default, only clean upsockets from the same hostname.ssh-agent(1) gains some new flags: -U suppresses the automaticcleanup of stale sockets when it starts. -u forces a cleanupwithout keeping a running agent, -uu forces a cleanup that ignoresthe hostname. -T makes ssh-agent put the socket back in /tmp."Anyway, I updated this as well:https://trac.macports.org/ticket/72482I should probably actually close this ticket now that I think of it (fingers crossed that adding that to the PR is sufficient, since I forgot to add that note to the commit message as is typically preferred: https://trac.macports.org/ticket/73084).#OpenSSH #MacPorts #SecureShell #macOS #encryption #security #infosec
  • pitrh@mastodon.socialundefined

    On Thursday, September 25, 2025, Tom Smyth and I will be giving a "Network Management with the OpenBSD Packet Filter Toolset" tutorial https://events.eurobsdcon.org/2025/talk/FW39CX/ at #eurobsdcon in #zagreb.

    Uncategorized eurobsdcon zagreb openbsd freebsd networking packetfilter security
    2
    0 Votes
    2 Posts
    16 Views
    pitrh@mastodon.socialundefined
    And I should add - * we are making final tweaks to labs and slides still* we will be covering #FreeBSD 14 as well as #OpenBSD, with labs supporting both.You could see the session as a Book of PF, 4th edition preview, however physical copies will not yet be available at the conference, see https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html (also https://bsdly.blogspot.com/2025/07/yes-book-of-pf-4th-edition-is-coming.html) #bookofpf