My backup account :
Port Knocking :
"With fwknop deployed, anyone using nmap to look for SSHD can't even tell that it is listening - it makes no difference if they want to run a password cracker against SSHD or even if they have a 0-day exploit."
Available as an #OpenBSD port.
Modern #Debugging: The Art of Finding a Needle in a Haystack
I finally got around to sending my tcpdump(8) privdrop diff, which along with my recent commits to reduce pledge(2)  promises and mestre@'s unveil support . #OpenBSD's privsep tcpdump(8) runs completely without root privileges at runtime!
Sensitive data? memset(p, 0, sz); free(p); does not do want you think it does. The compiler is allowed to optimise the memset away. Use freezero(p, sz). For large allocations #OpenBSD just unmaps the pages, avoiding the clearing and still making the memory inaccessible.
"My #Emacs journey"
"I have been using Emacs for the last 20 years. At this point, I don't even know Emacs, my fingers do. If you ask me the shortcut for something, I will need to let my fingers do it and try to observe what they are doing. And sometimes [...] I forget about how to do something when I try to attempt it consciously."
"Formal Methods for Kernel Hackers"
New Attacks on Graphics Processors Endanger User Privacy
Researchers discover seven new Meltdown and Spectre attacks:
#OpenBSD/arm64 on the NanoPi NEO2
"the smallest possible device one can run OpenBSD on"
Unikernels as processes.
"So instead of a battle between containers and unikernels, we might be able to run unikernels inside containers!"
SecNumCloud – La nouvelle référence pour les prestataires d’informatique en nuage de confiance
Follow friends and discover new ones. Publish anything you want: links, pictures, text, video. This server is run by the main developers of the Mastodon project. Everyone is welcome as long as you follow our code of conduct!