OpenBSD 7.4 💾

The OpenBSD project produces a free, multi-platform 4.4BSD-derived UNIX-like operating system. Emphasizing portability, standardization, coherency, correctness, proactive security and integrated cryptography. It comes with almost 9000 software package in its ports, including a custom X11 environment (Xenocara), desktop environments, web and multimedia applications, compilers and programming languages. It also harbours the OpenBSD-maintained software projects OpenSSH, LibreSSL, OpenIKED, OpenBGPD

major feature: Fixed ssh-keygen(1) find-principals on allowed_signers files with blank lines. Disabled LRO in ix(4) on sparc64 by default for stability for the 7.5 release. Enabled dwxe(4) on riscv64. Added Allwinner D1 ethernet controller clocks and reset support to sxiccmu(4). Added SPI clocks for other 64-bit Rockchip SoCs in rkclock(4). Added backup of disklabel for softraid(4) chunks to security(8). Converted 't_lock', 'r_keypair_lock' and 'c_lock' rwlock(9)s to corresponding mutex(9)es. Switched to using for whois(1) -i. Added validation for IPv4 packet options in divert(4). Fixed detection of qcpas0 driver on x13s when booted in ACPI mode. Separated ssh(1) parsing of string array options from applying them to the active configuration. Fixed some cases where the config parser improperly rejected valid configuration. Started flushing the D-cache before disabling the cache on armv7 in efiboot. Added a workaround for an 88100 errata where FPU imprevise exceptions could be raised in error. Fixed awacs(4) audio on some iMac G3 models. Bumped smtpd(8) version to 7.5.0. Added support for attaching rkpmic(4) to an SPI bus. Added support for the RK806 PMIC which can attach to both I2C and SPI. Added rkspi(4), a driver for the SPI controller found on various Rockchip SoCs. Added clocks for the RK3588 SPI controller to rkclock(4). Made iked(8) trigger retransmission only for fragment 1/x to prevent each received fragment triggering retransmission of the full fragment queue. Bumped OpenIKED to 7.4. Bumped libressl to 3.9.0. Removed GOST and STREEBOG support from libressl. Added mktemp(1) suffix support for compatibility with the GNU version. It is now possible to use templates where the Xs are not at the end. Added mkdtemps(3), identical to mkdtemp(3) except that it permits a suffix to exist in the template. Allowed fdisk(8) to add GPT partitions of protected types, making it possible to provision virtual machine images that need a "BIOS Boot" partition.

ISC unix bsd kernel os openbsd operating-system

OpenSSH 9.7

OpenSSH is a BSD/Linux implementation of SSH1 and SSH2 for encrypted terminal connections, tunneling and file transfers. It includes the sshd server, scp and sftp, and various utility tools such as ssh-add, ssh-agent, ssh-keysign, ssh-keyscan, ssh-keygen, and the sftp-server.

htop 3.3.0

This is htop, an interactive process viewer for Unix systems. It is a text-mode application (for console or X terminals) and requires ncurses.

rawhide 3.3

rawhide - find files using pretty C expressions. Rawhide (rh) lets you search for files on the command line using expressions and user-defined functions in a mini-language inspired by C. It's like find(1), but more fun to use. Search criteria can be very readable and self-explanatory and/or very concise and typeable, and you can create your own lexicon of search terms. The output can include lots of detail, like ls(1).

d11amp 0.61

d11amp is a frontend to MPG123, trying to resemble WinAmp, utilizing its treasure trove of themes. It looks oldskool and is fun to use!

fwknop: Single Packet Authorization and Port Knocking 2.6.9

fwknop implements an authorization scheme known as Single Packet Authorization (SPA) for strong service concealment. SPA requires only a single packet which is encrypted, non-replayable, and authenticated via an HMAC in order to communicate desired access to a service that is hidden behind a firewall in a default-drop filtering stance. The main application of SPA is to use a firewall to drop all attempts to connect to services such as SSH in order to make the exploitation of vulnerabilities (bot

WendzelNNTPd 2.0.5

The WendzelNNTPd is a IPv6-ready NNTP usenet-server with the main goal to be as easy to use as possible. It is portable (Linux/*BSD/*nix), supports AUTHINFO authentication, contains ACL as well as role based ACL and supports invisible newsgroups. It currently supports MySQL and SQLite backends.

Luksus 1.6

LUKSUS is a text-based program for Linux and BSD which runs in a terminal window or console. LUKSUS lets you encrypt your files, hardrives, usb sticks and virtual container using your operating system's internal encryption mechanism and acts as the frontend to the internal encryption mechanism. It can use the following encryption facilities: LUKS, Truecrypt, GELI and GNUPGP. It works on Linux, DragonflyBSD and FreeBSD. LUKSUS can also encrypt single files with GNU Privacy Guard or OpenSSL. Thi