===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/57.html,v
retrieving revision 1.49
retrieving revision 1.50
diff -u -r1.49 -r1.50
--- www/57.html 2015/03/12 01:03:33 1.49
+++ www/57.html 2015/03/12 01:41:20 1.50
@@ -141,7 +141,7 @@
fdisk(8) now zeros out GPT signatures found when writing out an MBR that has been re-initialzed and has no EFI or EFISYS partition.
Fixed manipulation of 'ro' and 'rw' fstab options to avoid damage to other options that happen to contain 'ro' or 'rw'.
- The ramdisk binary (one binary contains all the commands) is now compiled without optimization and security features. The benefit is a substantial savings in space, allowing more features in the future.
+ The ramdisk binary (one binary contains all the commands) is now compiled without optimization and security features. The benefit is a substantial savings in space, allowing more features in the future.
@@ -244,6 +244,13 @@
relayd(8) now uses "TLS" rather than "SSL" terminology to reflect the deprecation of the latter.
relayd(8) now supports the random and source-hash modes with redirections.
relayd(8) now supports the OPENBSD-RELAYD-MIB via agentx with snmpd(8).
+ Added interfaces for setting the close-on-exec flag and/or non-blocking mode on new file descriptors: pipe2(2), dup3(2), accept4(2), mkostemp(3), mkostemps(3), the SOCK_CLOEXEC and SOCK_NONBLOCK flags for socket(2) and socketpair(2), and the MSG_CMSG_CLOEXEC flag for recvmsg(2). In addition, posix_spawn_file_actions_adddup2(3) now always clears the close-on-exec flag.
+ Added interfaces for setting the close-on-exec flag on new FILE handles and for requesting exclusive creation via the the 'o' and 'x' mode letters for fopen(3), fdopen(3), freopen(3), and popen(3).
+ Many library functions and programs changed to use the above for safety or simplicity.
+ Added chflagsat(2), sockatmark(3), and stravis(3).
+ Merged performance and safety fixes for fts(3) from FreeBSD.
+ Merged fixes for file descriptor leaks in various rpc(3) functions from NetBSD.
+ Added kern.global_ptrace sysctl(1) to disable by default the ability to ptrace(2) processes that aren't your descendent.
...