114 min listen
Episode 270: Ghostly Releases | BSD Now 270
FromBSD Now
ratings:
Length:
69 minutes
Released:
Nov 1, 2018
Format:
Podcast episode
Description
OpenBSD 6.4 released, GhostBSD RC2 released, MeetBSD - the ultimate hallway track, DragonflyBSD desktop on a Thinkpad, Porting keybase to NetBSD, OpenSSH 7.9, and draft-ietf-6man-ipv6only-flag in FreeBSD.
##Headlines
OpenBSD 6.4 released
See a detailed log of changes between the 6.3 and 6.4 releases.
See the information on the FTP page for a list of mirror machines.
Have a look at the 6.4 errata page for a list of bugs and workarounds.
signify(1) pubkeys for this release:
base: RWQq6XmS4eDAcQW4KsT5Ka0KwTQp2JMOP9V/DR4HTVOL5Bc0D7LeuPwA
fw: RWRoBbjnosJ/39llpve1XaNIrrQND4knG+jSBeIUYU8x4WNkxz6a2K97
pkg: RWRF5TTY+LoN/51QD5kM2hKDtMTzycQBBPmPYhyQEb1+4pff/H6fh/kA
###GhostBSD 18.10 RC2 Announced
This second release candidate of GhostBSD 18.10 is the second official release of GhostBSD with TrueOS under the hood. The official desktop of GhostBSD is MATE. However, in the future, there might be an XFCE community release, but for now, there is no community release yet.
What has changed since RC1
Removed drm-stable-kmod and we will let users installed the propper drm-*-kmod
Douglas Joachin added libva-intel-driver libva-vdpau-driver to supports accelerated some video driver for Intel
Issues that got fixed
Bug #70 Cannot run Octopi, missing libgksu error.
Bug #71 LibreOffice doesn’t start because of missing libcurl.so.4
Bug #72 libarchive is a missing dependency
Again thanks to iXsystems, TrueOS, Joe Maloney, Kris Moore, Ken Moore, Martin Wilke, Neville Goddard, Vester “Vic” Thacker, Douglas Joachim, Alex Lyakhov, Yetkin Degirmenci and many more who helped to make the transition from FreeBSD to TrueOS smoother.
Updating from RC1 to RC2:
sudo pkg update -f
sudo pkg install -f libarchive curl libgksu
sudo pkg upgrade
Where to download:
All images checksum, hybrid ISO(DVD, USB) and torrent are available here: https://www.ghostbsd.org/download
[ScreenShots]
https://www.ghostbsd.org/sites/default/files/Screenshotat2018-10-2013-22-41.png
https://www.ghostbsd.org/sites/default/files/Screenshotat2018-10-20_13-27-26.png
###OpenSSH 7.9 has been released and it has support for OpenSSL 1.1
Changes since OpenSSH 7.8
This is primarily a bugfix release.
New Features
ssh(1), sshd(8): allow most port numbers to be specified using
service names from getservbyname(3) (typically /etc/services).
ssh(1): allow the IdentityAgent configuration directive to accept
environment variable names. This supports the use of multiple
agent sockets without needing to use fixed paths.
sshd(8): support signalling sessions via the SSH protocol.
A limited subset of signals is supported and only for login or
command sessions (i.e. not subsystems) that were not subject to
a forced command via authorizedkeys or sshdconfig. bz#1424
ssh(1): support "ssh -Q sig" to list supported signature options.
Also "ssh -Q help" to show the full set of supported queries.
ssh(1), sshd(8): add a CASignatureAlgorithms option for the
client and server configs to allow control over which signature
formats are allowed for CAs to sign certificates. For example,
this allows banning CAs that sign certificates using the RSA-SHA1
signature algorithm.
sshd(8), ssh-keygen(1): allow key revocation lists (KRLs) to
revoke keys specified by SHA256 hash.
ssh-keygen(1): allow creation of key revocation lists directly
from base64-encoded SHA256 fingerprints. This supports revoking
keys using only the information contained in sshd(8)
authentication log messages.
Bugfixes
ssh(1), ssh-keygen(1): avoid spurious "invalid format" errors when
attempting to load PEM private keys while using an incorrect
passphrase. bz#2901
sshd(8): when a channel closed message is received from a client,
close the stderr file descriptor at the same time stdout is
closed. This avoids stuck processes if they were waiting for
stderr to close and were insensitive to stdin/out closing. bz#2863
ssh(1): allow ForwardX11Timeout=0 to disable the untrusted X11
forwarding timeout and support X11 forwarding
##Headlines
OpenBSD 6.4 released
See a detailed log of changes between the 6.3 and 6.4 releases.
See the information on the FTP page for a list of mirror machines.
Have a look at the 6.4 errata page for a list of bugs and workarounds.
signify(1) pubkeys for this release:
base: RWQq6XmS4eDAcQW4KsT5Ka0KwTQp2JMOP9V/DR4HTVOL5Bc0D7LeuPwA
fw: RWRoBbjnosJ/39llpve1XaNIrrQND4knG+jSBeIUYU8x4WNkxz6a2K97
pkg: RWRF5TTY+LoN/51QD5kM2hKDtMTzycQBBPmPYhyQEb1+4pff/H6fh/kA
###GhostBSD 18.10 RC2 Announced
This second release candidate of GhostBSD 18.10 is the second official release of GhostBSD with TrueOS under the hood. The official desktop of GhostBSD is MATE. However, in the future, there might be an XFCE community release, but for now, there is no community release yet.
What has changed since RC1
Removed drm-stable-kmod and we will let users installed the propper drm-*-kmod
Douglas Joachin added libva-intel-driver libva-vdpau-driver to supports accelerated some video driver for Intel
Issues that got fixed
Bug #70 Cannot run Octopi, missing libgksu error.
Bug #71 LibreOffice doesn’t start because of missing libcurl.so.4
Bug #72 libarchive is a missing dependency
Again thanks to iXsystems, TrueOS, Joe Maloney, Kris Moore, Ken Moore, Martin Wilke, Neville Goddard, Vester “Vic” Thacker, Douglas Joachim, Alex Lyakhov, Yetkin Degirmenci and many more who helped to make the transition from FreeBSD to TrueOS smoother.
Updating from RC1 to RC2:
sudo pkg update -f
sudo pkg install -f libarchive curl libgksu
sudo pkg upgrade
Where to download:
All images checksum, hybrid ISO(DVD, USB) and torrent are available here: https://www.ghostbsd.org/download
[ScreenShots]
https://www.ghostbsd.org/sites/default/files/Screenshotat2018-10-2013-22-41.png
https://www.ghostbsd.org/sites/default/files/Screenshotat2018-10-20_13-27-26.png
###OpenSSH 7.9 has been released and it has support for OpenSSL 1.1
Changes since OpenSSH 7.8
This is primarily a bugfix release.
New Features
ssh(1), sshd(8): allow most port numbers to be specified using
service names from getservbyname(3) (typically /etc/services).
ssh(1): allow the IdentityAgent configuration directive to accept
environment variable names. This supports the use of multiple
agent sockets without needing to use fixed paths.
sshd(8): support signalling sessions via the SSH protocol.
A limited subset of signals is supported and only for login or
command sessions (i.e. not subsystems) that were not subject to
a forced command via authorizedkeys or sshdconfig. bz#1424
ssh(1): support "ssh -Q sig" to list supported signature options.
Also "ssh -Q help" to show the full set of supported queries.
ssh(1), sshd(8): add a CASignatureAlgorithms option for the
client and server configs to allow control over which signature
formats are allowed for CAs to sign certificates. For example,
this allows banning CAs that sign certificates using the RSA-SHA1
signature algorithm.
sshd(8), ssh-keygen(1): allow key revocation lists (KRLs) to
revoke keys specified by SHA256 hash.
ssh-keygen(1): allow creation of key revocation lists directly
from base64-encoded SHA256 fingerprints. This supports revoking
keys using only the information contained in sshd(8)
authentication log messages.
Bugfixes
ssh(1), ssh-keygen(1): avoid spurious "invalid format" errors when
attempting to load PEM private keys while using an incorrect
passphrase. bz#2901
sshd(8): when a channel closed message is received from a client,
close the stderr file descriptor at the same time stdout is
closed. This avoids stuck processes if they were waiting for
stderr to close and were insensitive to stdin/out closing. bz#2863
ssh(1): allow ForwardX11Timeout=0 to disable the untrusted X11
forwarding timeout and support X11 forwarding
Released:
Nov 1, 2018
Format:
Podcast episode
Titles in the series (100)
1: BGP & BSD: We kick off the first episode with the latest BSD news, show you how to avoid intrusion detection systems and talk to Peter Hessler about BGP spam blacklists! by BSD Now