libpcap's pcap_stats function might or might not do what you might or might not want it to do.

However, it might or might not do it depending on the positions of certain celestial objects or not.

Are you a #rust developer?
are you working on a #FLOSS project in Rust?

Even if not, please :boost_ok:​ my informal mini survey far and wide!

Are you…

deraadt@ changed lib/libc/sys: Document msyscall(2): ld.so can use this (once only) to tell the kernel where libc.so's text segment is, thereby allowing invocation of system calls from that region. An upcoming change will kill the process if a system call is invoked from addresses not explicitly permitted.
ok guenther kettenis mortimer

marc.info/?l=openbsd-cvs&m=157

Very cool. :flan_cool:

#OpenBSD #security

@_xhr_ The holy grail is remote code execution. Crashes, denial of service, steals data via javascript (i.e. local code exectuion), and other such bugs won't be big news. We find such problems all the time during delveopment. Just look at the most recent errata: Number 004 for 6.6. is a non-root user denial of service via a bug in net80211.

Most mitigations are intended to make launching remote code execution attacks really hard. So that's what they should be measured against.

@_xhr_ The thing is there will always be bugs. There's no guarantee that OpenBSD can't be hacked, especially via the firmware/kernel level. Firmware can attack via DMA, and the drivers have race conditions even in the single-threaded kernel model. The basic claim is that having layers and layers of mitigations will make attacking it harder overall. Choice of hardware platform also matters. OpenBSD on ARM64 is virtually free of ROP-gadgets, others "only" have a reduced amount of gadgets.

"OpenBSD markets itself as a secure operating system, but doesn't provide much evidences to back this claim."
Hahahahahaha *sob* hahahahaha.
:flan_tired:

Sometimes the normal day at the office turns into furious investigation and to something worth writing blog post about: "How my application ran away and called home from Redmond" medium.com/sensorfu/how-my-app

The month of O(horrible) continues with this fine #openbsd ld.so commit to make things spooky fast.

https://marc.info/?l=openbsd-cvs&m=157008306621698&w=2

Untrusted is a cool crate to parse unsafe inputs. I have made an extension to it called untrustended. It provides simple parsers while being as safe as possible! crates.io/crates/untrustended

The source code for several Infocom interactive fiction games was published on Github, e.g. The Hitchhiker's Guide to the Galaxy, by Steve Meretzky and Douglas Adams

github.com/historicalsource/hi

Firefox admits they will eventually be sending all of your DNS to Cloudflare. Cloudflare will monetize your internet browsing, no matter how much their PR people say they are.

If you want to disable that, go to "about:config", and set "network.trr.mode" to 5.

The values are: 0 - default off, 1 - race, 2 TRR first, 3 TRR only, 4 shadow, 5 off by choice

Show more
Mastodon

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!