Monday April 21 , 2014
TEXT_SIZE
   
Once You Know, You Newegg

TLS heartbeat read overrun (CVE-2014-0160)

FYI people:

OpenSSL Security Advisory [07 Apr 2014]
========================================

TLS heartbeat read overrun (CVE-2014-0160)
==========================================

A missing bounds check in the handling of the TLS heartbeat extension can be
used to reveal up to 64k of memory to a connected client or server.

Only 1.0.1 and 1.0.2-beta releases of OpenSSL are affected including
1.0.1f and 1.0.2-beta1.

Thanks for Neel Mehta of Google Security for discovering this bug and to
Adam Langley <
 This e-mail address is being protected from spambots. You need JavaScript enabled to view it
 > and Bodo Moeller <
 This e-mail address is being protected from spambots. You need JavaScript enabled to view it
 > for
preparing the fix.

Affected users should upgrade to OpenSSL 1.0.1g. Users unable to immediately
upgrade can alternatively recompile OpenSSL with -DOPENSSL_NO_HEARTBEATS.

1.0.2 will be fixed in 1.0.2-beta2.
 

FreeBSD 10

Hello all!

I have been busy at work and at home and I have not posted any new articles on 10 yet. I have not felt comfortable with 10 as I have had several unsuccessful attempts to update it to -STABLE to no avail. That being said I'm not testing anything on 10 until 10.1 comes out and that includes qmail as well. Feel free to try it at your own discretion. It appears as though Perl is now being pushed up to .16 so there will be a few qmail updates as well.As of today 3/11/14 there is no current release date for 10.1

Stay tuned!

   

Bsdmag.org article submitted!

Just submitted a new article for the Feb. http://bsdmag.org e-zine! This article will be dovecot and roundcube via SSL

   

FreeBSD qmail-scanner patch

I have just finished submitting a patch for the qmail-scanner freebsd port that has been submitted and you're more than welcome to start implementing it until it's committed.

cd /usr/ports/mail/qmail-scanner/files
rm patch-configure
fetch http://wolson.dyndns.info/files/patch-configure-qms
cd /usr/ports/mail/qmail-scanner/
make patch

   

Autoresponder article featured in the e-zine bsdmag.corg

I have been working on an exclusive autoresponder article that will ignore spams if you're using the vacation autoresponder. For those that use it this will be a very helpful tool. My next article will be how to configure dovecot and roundcube to communicate via the ssl protocol.

You can see the article here : http://bsdmag.org

   

Qmail on FreeBSD9 AMD64

Qmail on FreeBSD 9 AMD64 is now working. Basically you need to run the amd64 patch after running the qmail-fix. I have tested this a few times and it works flawlessly!

   

Page 1 of 6