Sébastien Marie is a user on maly.io. You can follow them or interact with them if you have an account anywhere in the fediverse. If you don't, you can sign up here.

Sébastien Marie @semarie@maly.io

# upobsd -u /auto_upgrade.conf -o /bsd && reboot

Fetches the latest installer, injects my answers, reboots into it, upgrades and reboots into new kernel.

How do you upgrade your #OpenBSD?

if you like one of them, you could like others (aka self-promoting of tools for OpenBSD - all available in ports):

- sysclean : list obsolete files between OpenBSD upgrades (aka delete old stuff between upgrades)

- checkrestart : help to find processes that need restarting after upgrade (aka which service to restart after pkg_add -u)

- upobsd : download, verify and patch bsd.rd image (aka upgrading the system without hands)

QPC à suivre comme du petit lait sur le feu concernant l’article 434-15-2 du code pénal qui contraint, sous menace de sanctions pénales, une personne suspectée dans le cadre d’une procédure pénale, à remettre aux enquêteurs la convention secrète de déchiffrement d’un moyen de cryptologie.

courdecassation.fr/jurispruden

Looking to do a firmware update to install the #Meltdown microcode, but don't have Windows?

On #OpenBSD: pkg_add geteltorito; geteltorito -o bios.img firmware-update.iso; then dd bios.img onto a usb stick.

Theo de Raadt comment on paper "How Robust is the Randomness?"

marc.info/?l=openbsd-misc&m=15

(technical reply without too much sarcasm)

For understanding privilege separation in WebExtensions, rtfm:

developer.mozilla.org/en-US/Ad

page script / content script / background script

[exim-announce] Critical Exim Security Vulnerability: disable chunking

lists.exim.org/lurker/message/

A remote code execution vulnerability has been reported in Exim, with
immediate public disclosure.

Exim 4.88 or newer (4.89 is current, 4.90 is upcoming).

JTAG Explained (finally!): Why "IoT", Software Security Engineers, and Manufacturers Should Care

blog.senr.io/blog/jtag-explain

old documentation (2016), but really valuable

cc @nailyk

J'entame une petite série de billets un peu "pratiques" sur le #CapeWrathTrail (randonnée longue distance dans les Highlands écossais).

Histoire de contenter ceux qui veulent savoir quoi préparer pour y aller :)

Le 1er billet porte sur l'itinéraire, et il est ici !

adriennecharmet.tumblr.com/pos mamot.fr/media/4VH-GnJmsVfsc10

Pour se prendre une exécution distante de code arbitraire en passant par le DNS, il y systemd.
Pour le tout le reste, il y a des résolveurs dont c’est le boulot de faire du DNS ;)
ubuntu.com/usn/usn-3341-1/

Useful reminder: modern CPUs are f...g *software*! They have bugs (and, here, serious bugs) lists.debian.org/debian-devel/ @rootkovska

Funny it was found by #Ocaml people :-)