===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/57.html,v
retrieving revision 1.55
retrieving revision 1.56
diff -c -r1.55 -r1.56
*** www/57.html 2015/03/12 07:06:05 1.55
--- www/57.html 2015/03/12 15:49:55 1.56
***************
*** 118,123 ****
--- 118,124 ----
bridge(4).
Traffic destinated to link-local IPv6 addresses can now be seen with
tcpdump(8).
+ A carp(4) now needs to be configured with an explicit carpdev parent interface.
...
***************
*** 153,159 ****
- nginx and sliplogin have been removed.
- IPv6 router solicitations are now sent by the kernel ("inet6 autoconf"); rtsol(8) and rtsold(8) are no longer necessary and have been removed.
!
- ...
--- 154,161 ----
- nginx and sliplogin have been removed.
- IPv6 router solicitations are now sent by the kernel ("inet6 autoconf"); rtsol(8) and rtsold(8) are no longer necessary and have been removed.
!
- Enhancements and bugfixes in arp(8) and ndp(8)
!
- ...
***************
*** 184,189 ****
--- 186,196 ----
At resume (or unhibernate) time, use a variety of methods to reseed the random number generator. This also works on VM's which wake up (if a wakeup event is seen).
All architectures have been transitioned so to static PIE, meaning the statically linked binaries in /bin and /sbin now have randomly located text segments.
Allow larger .openbsd.randomdata ELF segments.
+ Sync kernel AES code and ssh(1) AES code to the one shipped with OpenSSL/LibreSSL.
+ removed passwd(1) support for all password cyphers except blowfish(3)
+ Use sha512 instead of md5 for tcp(4) initial sequence number.
+ Use sha512 instead of md5 in the random number generator.
+ Delete secret or secret-derived data in many base utilities with explicit_bzero(3).
...
***************
*** 252,257 ****
--- 259,265 ----
Added kern.global_ptrace sysctl(1) to disable by default the ability to ptrace(2) processes that aren't your descendent.
kdump(1) now always displays both the numeric and the textual forms for users, groups, timestamps, and sysctl ids, eliminating the -r option. It also auto-selects between decimal and hex format for arguments, renders more types of flags, and is more robust when parsing corrupt ktrace files.
chmod(1)/chgrp(1)/chown(8) now comply with POSIX's requirements when they encounter symlinks when the -R option is used, and are safe from race conditions when doing so.
+ The dmesg(8) utility can now display the console message buffer in addition to the system message buffer.
...