My good friends over at SecBSD have launched their new website.

What is SecBSD?

It's a security-hardened operating system for modern security assessment.

It is engineered as a ready-to-use environment for penetration testers, ethical hackers, red and blue teams, bug bounty hunters, and analysts —basically any security professional that requires specialized security tools on a daily basis.

SecBSD is based on OpenBSD and inherits it's robust security architecture including proactive hardening, code auditing, and exploit mitigation.

You can find out more here: https://secbsd.org

#SecBSD #InfoSec #OSINT #Cybersecurity #OpenBSD #RedTeam #BlueTeam #Privacy

#introduction
Hi, I am new on here. I used to use #openbsd and #freebsd back in the day, but I want to start to using them again because I love their documentation and how consistent everything in their systems are.

Another thing I love about bsds is their gradual evolution, they don't move fast and break things! In fact, breaking things seem to be their anti-modus operandi!

Currently I use #nixos, and while I might keep it for my main pc, just for gaming, we shall see.

My current PC specs:
Intel i5
Radeon GPU, 7600 XT w/ 16 vram
32 GB RAM
4 TB Nvme, 2 TB nvme, 1 TB 2.5 inch SSD, 2 TB 2.5 inch

I also run a server on Hetzner and a home server!

I love playing games like Street Fighter 6, Guilty Gear Strive, Granblue Fantasy Versus Rising, Dragon Quest series, Final Fantasy series, Shin Megami Tensei series, Mega Man series and the Castlevania series and many more!

Thanks for having me and nice to meet you all!

@passthejoe

What's the problem you're having with #Syncthing #OpenBSD?

I found that I had to just turn off the file watching feature and just set it to poll every minute or so. OpenBSD just can't seem to handle that many open files.

I'm running my OpenBSD laptop all the time right now. I'd like to get started with the 20+ desktop how-to posts I'm planning.

I also broke my foot.

While I can't move around, I can't sync the user files in the OpenBSD system with my Debian desktop (via Syncthing) and back to my Fedora disk on the laptop, so that's a big reason to stay in OpenBSD.

#OpenBSD #Syncthing

#OpenBSD folks - can anyone offer any pointers about compiling bsd.rd with custom kernel patches?
https://marc.info/?l=openbsd-misc&m=175025312301575&w=2

(Pinging @brynet @solene)

Since the switch from #OpenBSD -current to -stable, the maintenance process has become easier and faster.

We only have to do a (quick) reboot now when the applied errata requires us to do so, which is not always the case.

With -current, we had to either upgrade the snapshot (and therefor package tree) or compile the patches ourselves, which both require extra effort.

Having said that, we do miss out on the latest and greatest from the OpenBSD devs. If need be, we can always create a staging as a playground.

We did perform some maintenance last night :flan_hacker: @h3artbl33d's Unix beard did grow a bit by that; @mischa is extremely skilled but prefers to obfuscate it by not wearing his beard :flan_XD:

This round of maintenance includes:

• More stability and security, as we rolled out the #OpenBSD errata on our Exquisite.social #Mastodon instance,
• Bugfixes as we updated Mastodon itself,
• More bugfixes as we updated our Exquisite.tube #Peertube instance to v7.2.1.

Happy tooting, happy streaming, happy hacking and have a lovely day you all! :flan_guns:

The evenings this week have been a bit of an adventure with the home lab. I'm migrating a number of random services onto a pair of new VM's, one on each of my two Proxmox hosts. They'll become DNS servers (authoritative using nsd and recursive using Unbound), including basic DNS filtering of the bad stuff as well as DNS64/NAT64 services so I can move to more IPv6 mostly systems at home. They'll probably also pickup NTP and any other services that make sense along the way.

My challenge has been to perform as much of the setup as possible using Ansible. I'm still very much a beginner but I seem to be making good progress.

I've been fighting with NSD/Unbound and reverse DNS but after a couple of days that's on hold. Forward resolution is working so I've moved some of the home VLAN's over to add some load. Holy crap they are fast. There's a little delay for a new site not in the cache but it soon picks up. It feels like an order of magnitude faster than my venerable pi 3b+ running pihole with the same DNS filtered list.

I'll crack the reverse DNS stuff at some point and now I've realised the reason I couldn't restart NSD after a change (so I was rebooting the VM) was because I didn't realise the "remote control" options are also needed for local control on the VM, it's a lot faster to get updates on place.

More work tomorrow night on the Ansible playbook with some better tags to manage operations without updating everything.

#HomeLab #OpenBSD #Unbound #nsd #Proxmox #ipv6 #ansible

You should know #OpenBSD released 3 patches today:

006 2025-06-17 SECURITY Multiple X11 server issues.

005 2025-06-17 RELIABILITY In acme-client(1), handle as yet unobserved "processing" state when fetching an issued certificate by retrying instead of giving up.

004 2025-06-17 RELIABILITY When using syncookies in pf(4), new TCP connections could run into timeout due to integer underflow.

Update! :openbsd:

📢 Time is running out!! 📢
For you to share your wisdom and wits at the *BSD 😈⛳🐡 conference of Europe!

https://events.eurobsdcon.org/2025/cfp

Deadline: June 21, 2025 🕒

See you in Zagreb! 🌟

EuroBSDCon 2025 in Zagreb, Croatia 🇭🇷
September 25-28, 2025

#RUNBSD #FreeBSD #NetBSD #OpenBSD #EuroBSDCon #EuroBSDCon2025 #BSD #CFP #Conference

From the #eurobsdcon 2025 program committee:

We have a number of high quality submissions in, but we welcome more still!

Submission deadline 2025-06-21 via https://events.eurobsdcon.org/2025/
General info https://2025.eurobsdcon.org/
Sponsoring: https://2025.eurobsdcon.org/sponsorship.html
See you in Zagreb!

#conference #freebsd #openbsd #netbsd #unix #development #devops #freesoftware #libresoftware

From the #eurobsdcon 2025 program committee:

We have a number of high quality submissions in, but we welcome more!

Submission deadline 2025-06-21 via https://events.eurobsdcon.org/2025/
General info https://2025.eurobsdcon.org/
Sponsoring: https://2025.eurobsdcon.org/sponsorship.html
See you in Zagreb!

#eurobsdcon #bsd #conference #freebsd #openbsd #netbsd #unix #development #devops #freesoftware #libresoftware

OpenBSD 7.7 // XSERVER // ERRATA 006

Date: June 17, 2025
Name: 006_xserver.patch
Description: Multiple X11 server issues. CVE-2025-49175 CVE-2025-49176 CVE-2025-49177 CVE-2025-49178 CVE-2025-49179 CVE-2025-49180

Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.7/common/006_xserver.patch.sig

#OpenBSD #Security #Update

OpenBSD 7.7 // ACME // ERRATA 005

Date: June 17, 2025
Name: 005_acme.patch
Description: In acme-client(1), handle as yet unobserved "processing" state when fetching an issued certificate by retrying instead of giving up.
Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.7/common/005_acme.patch.sig

#OpenBSD #Security #Update

OpenBSD 7.7 // PFSYNCOOK // ERRATA 004

Date: June 17, 2025
Name: 004_pfsyncook.patch
Description: When using syncookies in pf(4), new TCP connections could run into timeout due to integer underflow.
Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.7/common/004_pfsyncook.patch.sig

#OpenBSD #Security #Update

OpenBSD 7.6 // XSERVER // ERRATA 019

Date: June 17, 2025
Name: 019_xserver.patch
Description: Multiple X11 server issues. CVE-2025-49175 CVE-2025-49176 CVE-2025-49177 CVE-2025-49178 CVE-2025-49179 CVE-2025-49180

Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.6/common/019_xserver.patch.sig

#OpenBSD #Security #Update

OpenBSD 7.6 // ACME // ERRATA 018

Date: June 17, 2025
Name: 018_acme.patch
Description: In acme-client(1), handle as yet unobserved "processing" state when fetching an issued certificate by retrying instead of giving up.
Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.6/common/018_acme.patch.sig

#OpenBSD #Security #Update

OpenBSD 7.6 // PFSYNCOOK // ERRATA 017

Date: June 17, 2025
Name: 017_pfsyncook.patch
Description: When using syncookies in pf(4), new TCP connections could run into timeout due to integer underflow.
Link: https://cdn.openbsd.org/pub/OpenBSD/patches/7.6/common/017_pfsyncook.patch.sig

#OpenBSD #Security #Update

@snikket_im I was using it with Prosody (as there's no Snikket package/port for #OpenBSD to my knowledge). Is there a particular XEP that needs enabling for the traffic optimizations?
@neil

"Where have you been for the last 20 years?" - The question that changed everything. This isn't a BSDCan report, but a personal reflection on how impostor syndrome stole decades from me, and why it's never too late to find your community and live life fully.

https://my-notes.dragas.net/2025/06/17/where-have-you-been-for-the-last-20-years/

#BSDCan #FreeBSD #NetBSD #OpenBSD #MyNotes #Life #LifeReflections #LiveLife #Community #OpenSource #OSS #EuroBSDCon